Guide the development of risk identification processes specifically related to privacy, third party and export controls with products and services;
Apply DPP security standards to products and services;
Advise on implementation of policies, procedures, and standards to govern date protection, third party risk management and adherence to export control and trade sanctions
Maintain awareness of evolving security standards based on the industry and geographic jurisdiction
Actively research and learn current and latest regulatory requirements
Identify opportunities to mature and improve risk management capabilities
Assist leadership in definition and achievement of KPI in cooperation with Management
Support internal and external audit including follow up activities
What You Need to Bring
7+ years of compliance experience
Analysis experience working with product teams on privacy related topics
Strong written and verbal communication skills
Ability to engage on multiple topics and task and ability to prioritize
Familiarity with information systems and its architecture
Familiarity with legislation and regulations such as GDPR, CCPA
Familiarity with security standards such as ISO 27001/27002/27018, CSA STAR, and general security practices
Knowledge of ISACA audit programs
Security and privacy certifications like CISA, CIPP/e or CIPT certifications are an asset