DATA GOVERNANCE (PRIVACY AND SECURITY) EXPERT

Job Responsibilities Ensure ongoing compliance with the organization's policies and procedures, legal, regulatory, and contractual requirements. Integrate security and data protection with business strategies and privacy requirements. Collaborate with operational and support units to protect PHI, including managing identity programs. Identify data sets and review sources to address coverage gaps requiring additional data collection. Implement, manage, and enforce information security measures within regulatory mandates to protect PHI and PII. Conduct privacy impact analyses to assess risks and organizational impacts. Develop and enforce data security policies to prevent unauthorized data access or use. Establish data standards for database environments, including defining fields and rules for data entry and retrieval. Review data use across departments to ensure compliance with privacy laws and regulations. Create reports on data trends to identify opportunities for improvement. Collaborate with business managers to maintain data quality over time. Develop policies for reporting and presenting data findings to stakeholders. Maintain databases by adding or updating data sets in coordination with IT staff. Identify critical privacy risks and recommend corrective actions. Evaluate and improve the data protection framework to ensure compliance. Promote a culture of data protection and compliance organization-wide. Implement privacy governance frameworks, including data collection templates, data mapping, and vendor reviews. Ensure project and data compliance with local privacy laws, including privacy impact assessments. Experience/Qualifications Bachelor’s degree in computer science or related field, with ongoing education and training. 15+ years of experience in data privacy, protection compliance, or related fields, with expertise in cybersecurity laws and frameworks. Knowledge of cloud environments, preferably Azure. Certifications such as CIPP, CDPSE, or equivalents preferred. Strong understanding of compliance, security frameworks such as ISO 27001, 27701, 27018, NIST, CIS benchmarks. Experience in the healthcare sector is preferred, along with advanced Microsoft Office skills. Technical knowledge of data governance solutions, preferably Microsoft Purview. Hands-on experience with data protection, privacy, and discovery tools. #J-18808-Ljbffr