Sr. IT Compliance Manager - Privacy
We're currently looking
for an Sr. IT Compliance Manager to focus on Privacy Compliance of the NetSuite
platform based out of our Durham NC office.
Provide development guidance and lead theidentification, implementation, and maintenance of information policies andprocedures in coordination with appropriate organization management andadministration for privacy.
Perform gap and readiness assessments forcompliance obligations focused on privacy (i.e. Privacy assessments, EUSafeHarbor/ Privacy shield, Global Data Protection Regulation, ISO 27018, etc):
Agree objective, goals,and scope of the project with senior management. Obtain management support andcommitment of resources for the assessment
Build audit programs,including audit plan, process, scope, procedures, questionnaires and schedules
Assess adequacy ofexisting policies, processes, and controls against the requirements of thecompliance obligation
Work with management todraft and implement remediation plans to mitigate identified issues and risks,and improve processes and controls
If working with staff,review staff output, provide guidance on project next steps, and supervise andguide staff in working with internal customers
Perform periodic privacyaudits of websites, products, applications, operations and environments foradherence to corporate privacy policies and guidelines.
Work closely with Legal departmentand/or external consultants to ensure the organization is up-to-date on privacyrequirements, identify areas of concern, develop the relevant solutions,provide management response, track progress and drive actions to completion.
Enforce compliance withpolicies in conjunction with internal audit, developing, managing andmonitoring security over business processes.
Maintain controlsdocumentation with SMEs and ensure compliance with Internal and External Audit.
Provide guidance andadvice to the organization with current information on related regulatoryissues and compliance technologies.
Highly independent, with high ethical standardsand integrity
Experience in program or project management
Experience with EU Safe Harbor, ePHI, PII and/orother data privacy and related security regulatory and compliance requirementsrequired
7-10 years of experience in privacy compliance,focused on information security, risk, privacy, and controls, of which at least
3 years is in a project or program managementposition
Knowledge or exposure to Binding CorporateRules, Model Clauses, Global Data Protection Regulation and/or Privacy Shieldan advantage
Effective communication and presentation skills
Experience dealing with all levels of managementand across different teams, including managing conflicts
Working knowledge of ERP systems (e.g. NetSuite,PeopleSoft FDM and Oracle eBusiness) essential
Exposure to cloud environment security standardsand implementation an advantage
The job description above is the most relevant
for this position. Disregard information below.
Detailed Description and Job Requirements
Executes security controls to prevent hackers from infiltrating company information or jeopardizing e-commerce programs.
Researches attempted efforts to compromise security protocols. Maintains security systems for routers and switches. Administers security policies to control access to systems. Maintains the company’s firewall. Uses applicable encryption methods. Provides information to management regarding the negative impact on the business caused by theft, destruction, alteration or denial of access to information.
Leading contributor individually and as a team member, providing direction and mentoring to others. Work is non-routine and very complex, involving the application of advanced technical/business skills in area of specialization. Prefer 8 years relevant experience and BA/BS degree.
Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans status or any other characteristic protected by law.
Regular Employee Hire