Global Data Protection & Privacy Analyst
- Genova
- Tempo indeterminato
- Full time
- Assist Data Security Audits: Assist during regular audits to ensure compliance with data protection regulations and internal policies.
- Support to Privacy Risk Assessment: Identify, assess, and mitigate potential security risks to organizational data.
- Policy Development and Enforcement: Develop and enforce RINA data protection policies, procedures, and standards.
- Incident Response: execute protocols for responding to data breaches and security incidents.
- Training and Awareness: Educate employees on data protection best practices and policies.
- Data Governance: Support proper management and use of data within the organization.Privacy Management
- Regulatory Compliance: Support in developing policies ensuring compliance with privacy laws and regulations such as GDPR, CCPA, HIPAA, etc.
- Privacy Impact Assessments (PIAs): Drafting PIAs to identify and mitigate privacy risks for new projects, systems, and processes.
- Data Subject Rights Management: Assist the management of processes related to data subject rights, including access, rectification, and erasure requests.
- Privacy by Design: verify the application of privacy by design principles in the development of RINA new products and services.
- Data Mapping and Inventory: Maintain data inventories and conduct data mapping to understand data flows within the organization.
- Third-Party Risk Management: Assess and manage privacy risks associated with third-party vendors and partners.EducationBachelor's Degree in LawQualifications
- 1-2 years of experience in data protection, privacy management, or a related field
- Strong knowledge and understanding of global data protection and privacy laws and regulations
- Good knowledge of data protection and privacy tools and technologies
- Strong analytical skills to assess and mitigate data protection and privacy risks
- Meticulous in ensuring compliance with all regulatory and policy requirements
- Excellent written and verbal communication skills to effectively communicate with both technical and non-technical stakeholders
- High level of integrity and adherence to ethical standards
- Preferred certifications include CISSP, CIPP, CIPM, CISM, CDPO, or similar
- Fluent in Italian and good working knowledge of English
- ADDRESS THE WAY - Have a big picture of different situations and reinterpret it in a perspective way
- BUILD NETWORK - Forge trust relationships, across departments, and outside the organization
- CLIENT INTIMACY - Embrace internal and external client needs, expectations, and requirements to ensure maximum satisfaction
- EARN TRUST - Take everyone's opinion into account and remain open to diversity
- MAKE EFFECTIVE DECISIONS - Structure activities according to priorities, actions, resources and constraint
- MANAGE EMOTIONS - Recognise one's and other's emotions and express and regulate one's reactions
- PIONEER CHANGE - Actively embrace change and benefit from the new circumstances
- PROMOTE SUSTAINABLE DEVELOPMENT - Promote commitment by keeping promises as a Role Model
- THINK FORWARD - Capitalise on experiences and translate them into action plans for the future