Compliance & Privacy Analyst / Engineer

1 Month ago • 3 Years + • Software Development & Engineering • ~ $80,000 PA

Job Summary

Job Description

We are looking for an analyst or engineer to support our security program compliance, privacy and risk management needs. As a Compliance & Privacy Analyst/Engineer, you will be responsible for helping manage data privacy and compliance assessments, conducting data inventory and mapping exercises, and assessing and responding to data subject rights requests. You will also review compliance with our NIST 800-53 security program and take timely action to address compliance gaps. The Analyst/Engineer will have an understanding of data privacy and data protection issues and work collaboratively with compliance leadership and business stakeholders to manage data privacy and compliance operations, enable projects and enable & manage compliance and privacy risks across Internet Brands and WebMD businesses.
Must have:
  • Conduct data mapping & inventory requirements
  • Perform Data Protection Impact Assessments (DPIA) on products, processes and services
  • Understand data types and flows across businesses and their relation to policy
  • Support data privacy and compliance projects and proposed technology changes
  • Recommend process changes and internal projects for new data protection laws
  • Support handling for data subject right requests & privacy inquiries
  • Perform compliance assessments and report findings and recommended actions
  • Administer our annual compliance training program
  • Perform third-party risk assessments
  • Support preparations for SOC2, ISO 27001 and HiTrust certification audits
  • Communicate privacy and compliance risks and concerns to leadership
  • Participate in team problem solving efforts and offer ideas
  • Identify opportunities for efficiencies in program processes and policy improvements
  • Assess and review business continuity, contingency planning and incident response plans
  • Partner with business units and functional areas to facilitate risk assessment
Good to have:
  • strong background and understanding of data privacy regulations (GDPR, CCPA and state privacy regulations)
  • prior program management experience
  • professional data privacy certification (CIPP, CDPSE)
  • security certification (CISSP, CISM)
  • experience using OneTrust
Perks:
  • comprehensive benefits package
  • health insurance options (medical, dental, vision)
  • flexible spending accounts (FSA) for medical and dependent care
  • short-term and long-term disability insurance
  • life and AD&D insurance
  • 401(k) retirement savings plan with a company match
  • paid time off (PTO)
  • paid holidays
  • commuter benefits
  • Employee Assistance Program (EAP)
  • well-being coaching services
  • voluntary benefits (home, auto, pet insurance)
  • discounted legal and financial services

Job Details

Description

WebMD is the most recognized and trusted brand of health information and the leading provider of health information services, serving consumers, physicians, healthcare professionals, employers and health plans through our public and private online portals and WebMD the Magazine. The WebMD Health Network includes WebMD, Medscape, MedicineNet, eMedicine, RxList, theheart.org and Medscape Education. Our consumer portals and mobile health applications provide engaging, relevant and credible health and wellness information, personalized health assessment tools and access to online communities.

WebMD is an Equal Opportunity/Affirmative Action employer and does not discriminate on the basis of race, ancestry, color, religion, sex, gender, age, marital status, sexual orientation, gender identity, national origin, medical condition, disability, veterans status, or any other basis protected by law.

Summary

We are looking for an analyst or engineer to support our security program compliance, privacy and risk management needs. As a Compliance & Privacy Analyst/Engineer, you will be responsible for helping manage data privacy and compliance assessments, conducting data inventory and mapping exercises, and assessing and responding to data subject rights requests. You will also review compliance with our NIST 800-53 security program and take timely action to address compliance gaps. The Analyst/Engineer will have an understanding of data privacy and data protection issues and work collaboratively with compliance leadership and business stakeholders to manage data privacy and compliance operations, enable projects and enable & manage compliance and privacy risks across Internet Brands and WebMD businesses.

Duties and Responsibilities:

  • Conduct data mapping & inventory requirements
  • Perform Data Protection Impact Assessments (DPIA) on our products, processes and external/internal services
  • Understand data types and flows across the businesses (systems, processes and vendors), and how these relate to policy and regulatory requirements
  • Support data privacy and compliance projects and proposed technology changes
  • Recommend process changes and internal projects needed to address new and changing data protection laws, standards and regulations
  • Support handling for data subject right requests & privacy inquiries
  • Perform compliance assessments and report findings and recommended actions to leadership
  • Administer our annual compliance training program
  • Perform third-party risk assessments
  • Support preparations for SOC2, ISO 27001 and HiTrust certification audits
  • Communicate privacy and compliance risks and concerns to leadership
  • Participate in team problem solving efforts and offer ideas to solve risk related issues
  • Identify opportunities for efficiencies in program processes and policy improvements
  • Assess and review business continuity, contingency planning and incident response plans and participate in exercises as needed
  • Partner with business units and functional areas to facilitate risk assessment and risk management processes

Education and/or Experience:

  • A degree in computer science, information security or a technology-related field required
  • A minimum of 3 or more years of data privacy management experience is required
  • A strong background and understanding of data privacy regulations, including GDPR, CCPA and state privacy regulations and prior program management is desired
  • A minimum of 3 or more years of security compliance and risk management experience is required
  • A professional data privacy (e.g. CIPP, CDPSE, etc.) or security certification (e.g. CISSP, CISM, etc.) is desirable but not required
  • Experience using OneTrust is preferred but not required
  • Strong analytical skills and the ability to understand and solve complex problems
  • Experience working on global projects on cross-functional, multi-location teams
  • Experienced in documenting and implementing procedures and guidelines
  • High degree of accuracy and attention to details
  • Proficient in using Google and Microsoft productivity tools

At Internet Brands, we carefully consider a wide range of factors when determining compensation, including your background and experience. These considerations can cause your compensation to vary. We expect the compensation for this role to have a range that starts at $80,000 and will depend on your skills, qualifications, and experience. We encourage all interested candidates to apply.

In addition to our awesome culture, we offer a comprehensive benefits package designed to support the health and well-being of you and your family. Our benefits include health insurance options such as medical, dental, and vision coverage, flexible spending accounts (FSA) for medical and dependent care, short-term and long-term disability insurance, and life and AD&D insurance. We also provide a 401(k) retirement savings plan with a company match, paid time off (PTO), paid holidays, commuter benefits as well as access to our Employee Assistance Program (EAP) and well-being coaching services. In addition, employees can take advantage of voluntary benefits such as home, auto and pet insurance, and discounted legal and financial services. For more details, feel free to inquire during the interview process.

Similar Jobs

zeta - Lead Software Development Engineer - Backend

zeta

Hyderabad, Telangana, India (On-Site)
4 Months ago
Hasbro - Manager, Accounting Controls & Compliance

Hasbro

Pawtucket, Rhode Island, United States (Hybrid)
1 Month ago
Illumina - Senior Director, Product Management, Oncology Clinical Assays

Illumina

San Diego, California, United States (On-Site)
1 Month ago
Intel  - Connectivity Software Automation Development Engineer

Intel

Bengaluru, Karnataka, India (On-Site)
1 Year ago
Gloss Genius - Senior Software Engineer, Backend

Gloss Genius

Ontario, Canada (Remote)
3 Months ago
Zeeco, Inc. - Proposals Engineer (Applications Engineer) – Power Group

Zeeco, Inc.

Stamford, England, United Kingdom (On-Site)
9 Months ago
Jane Street - IT Operations Engineer

Jane Street

New York, United States (On-Site)
3 Months ago
Cadence - Software Engineer II

Cadence

Haifa, Haifa District, Israel (On-Site)
1 Year ago
Nagarro - Associate Principal Engineer, Delivery

Nagarro

New York, New York, United States (On-Site)
10 Months ago
ISS Stoxx - Desktop Engineer (Audit and Policy Engineer)

ISS Stoxx

Makati City, Metro Manila, Philippines (Hybrid)
1 Month ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Nice - Senior Software Engineer (Java)

Nice

Pune, Maharashtra, India (Hybrid)
1 Month ago
Progress - Demand Generation Campaign Manager

Progress

Burlington, Massachusetts, United States (Hybrid)
1 Month ago
Critical mass - Paid Search Director

Critical mass

Chicago, Illinois, United States (On-Site)
1 Month ago
Bragg - US Compliance Manager

Bragg

London, England, United Kingdom (Hybrid)
1 Month ago
Roblox - Litigation Paralegal

Roblox

San Mateo, California, United States (On-Site)
1 Month ago
Bazaar Voice - Machine Learning Engineer

Bazaar Voice

Belfast, Northern Ireland, United Kingdom (Hybrid)
2 Months ago
PayPal - Cybersecurity Metrics Analyst

PayPal

Chicago, Illinois, United States (Hybrid)
2 Months ago
Penrose studios - Business Development Manager

Penrose studios

San Francisco, California, United States (On-Site)
5 Years ago
CD PROJEKT RED - Lead PCG/Tools Engineer

CD PROJEKT RED

Boston, Massachusetts, United States (Hybrid)
3 Months ago
Moloco - Strategy & Operations Manager

Moloco

Beijing, China (On-Site)
3 Months ago

Get notifed when new similar jobs are uploaded

Jobs in Newark, New Jersey, United States

Fashionphile - Procurement Specialist I

Fashionphile

New York, United States (On-Site)
2 Months ago
Neolytix - Lead Development Representative (Healthcare Services)

Neolytix

Chicago, Illinois, United States (Hybrid)
1 Month ago
Shield AI - Software Simulation Lead (R3249)

Shield AI

Dallas, Texas, United States (On-Site)
4 Weeks ago
Bethesda - Senior Multiplayer Gameplay Programmer

Bethesda

Rockville, Maryland, United States (On-Site)
3 Months ago
Alten Technology - Embedded Firmware Engineer

Alten Technology

Pittsburgh, Pennsylvania, United States (On-Site)
2 Months ago
Side - Game Design - (Various Disciplines) - Talent Pool

Side

Fort Lauderdale, Florida, United States (On-Site)
3 Months ago
Toast - Territory Account Executive

Toast

Philadelphia, Pennsylvania, United States (On-Site)
1 Month ago
Patreon - Staff Product Designer, Podcast Tools

Patreon

New York, New York, United States (Hybrid)
4 Months ago
QuinStreet - Sr. Software Developer

QuinStreet

Foster City, California, United States (Remote)
3 Months ago
Apple - Computational Support for Machine Learning and Transformers

Apple

Cupertino, California, United States (On-Site)
3 Months ago

Get notifed when new similar jobs are uploaded

Software Development & Engineering Jobs

JMA - Mechanical Engineer - Antenna and RF

JMA

Hyderabad, Telangana, India (On-Site)
5 Months ago
Ion - Internship - Software Engineers/Developers - Italy

Ion

Pisa, Tuscany, Italy (On-Site)
10 Months ago
Shield AI - Staff Field Applications Engineer - R3631

Shield AI

New Delhi, Delhi, India (On-Site)
4 Weeks ago
Ethernovia - Principal Embedded Software Engineer

Ethernovia

Pune, Maharashtra, India (On-Site)
1 Month ago
Whatnot - Software Engineer, Account Integrity

Whatnot

Kraków, Lesser Poland Voivodeship, Poland (Remote)
2 Months ago
Enphase Energy - Sr. Engineer - Oracle APEX Developer

Enphase Energy

Bengaluru, Karnataka, India (On-Site)
8 Months ago
Ion - Senior Windows Engineer

Ion

Jersey City, New Jersey, United States (On-Site)
7 Months ago
Immutable - Senior Software Engineer

Immutable

Australia (Hybrid)
4 Months ago
Passive Logic - Head Protocol Nerd (a.k.a. I/O Subsystem Engineer)

Passive Logic

Salt Lake City, Utah, United States (On-Site)
1 Month ago
Riot Games - Principal Software Engineer, Services

Riot Games

Los Angeles, California, United States (On-Site)
2 Months ago

Get notifed when new similar jobs are uploaded

About The Company

Minneapolis, Minnesota, United States (Remote)

Eagan, Minnesota, United States (Hybrid)

El Segundo, California, United States (On-Site)

Seattle, Washington, United States (On-Site)

El Segundo, California, United States (On-Site)

Auburn Hills, Michigan, United States (On-Site)

Minneapolis, Minnesota, United States (On-Site)

Pleasanton, California, United States (Remote)

Auburn Hills, Michigan, United States (On-Site)

View All Jobs

Get notified when new jobs are added by Internet Brands

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug