JOB SUMMARY

The Manager will support the implementation, and maintenance of the Data Governance strategy for the Company. Further, supports the execution and monitoring of the data governance program to ensure compliance to Company policies, security standards and the common controls framework. This position will participate in various business and technology groups that advises stakeholders and drive adherence to requirements that ensure the quality, integrity, security, and availability of Company data throughout the organization.

CANDIDATE PROFILE

Education and Experience

Required:

• Bachelor’s degree in Computer Science or related field or equivalent experience/certification 
• 5 years progressive information technology and/or security experience that includes:
  • 2 years’ experience with implementing or assessing systems against industry security frameworks including NIST, Cloud Security Alliance, ISO, or PCI that also includes
    • Application of data governance techniques and principles to include applying data classifications or assigning security categorizations
    • Data management or mapping of data usage across business processes and services
    • Interpreting security requirements and communicating with engineering or technical staff
• Demonstrated experience using data modeling techniques and performing validation of the information created
• Experience with creating and writing security policies or standards in support of organizational security programs or system accreditations
• Working knowledge of global privacy standards to include GDPR or CCPA within a digital business 
• Knowledge of big data, cloud computing and data warehouses
• Experience implementing, managing, or governing security technologies, including encryption, network security or intrusion detection tools
• Demonstrated ability to apply information security and privacy policies 
• Experience in business systems and process planning

Preferred:

• Direct experience with data rights management, data loss prevention or data labeling tools
• Current information security and/or privacy certification, including Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified Information Privacy Professional (CIPP, CIPPT, CIPPM)
• Excellent communication and writing skills along with problem-solving ability
• Experience with Governance, Risk and Compliance (GRC) tools (i.e., ServiceNow or Archer)
• Demonstrated ability to work independently and with others
• Detail oriented with the ability to manage compliance requirements and expectations

CORE WORK ACTIVITIES

• Analyzes new and existing systems against data governance and classification policies to ensure adherence to data security requirements
• Supports the implementation of the organization’s data governance strategy
• Provides input to update security policies and procedures to support the data governance program
• Captures and provides input to metrics that support data governance team’s processes
• Collaborates with business and technology groups to map data within the organization 
• Coordinates with project teams to ensure security requirements are applied based on the data criticality and impact to the organization, including third-party vendors or as part of the software development lifecycle process
• Supports project deliverables by identifying and communicating risks throughout the project life cycle 
• Documents, tracks, and supports the development and implementation of remediation efforts to reduce risk within the organization
• Participates in the evaluations and research of tool sets that would support the governance, risk, and compliance teams
• Supports the execution of third-party vendors and service providers implementing tasks on behalf of the data governance team

Maintaining Goals

• Submits reports in a timely manner, ensuring delivery deadlines are met.
• Promotes the documenting of project progress accurately.
• Provides input and assistance to other teams regarding projects.

Managing Work, Projects, and Policies 

• Manages and implements work and projects as assigned.
• Generates and provides accurate and timely results in the form of reports, presentations, etc.
• Analyzes information and evaluates results to choose the best solution and solve problems.
• Provides timely, accurate, and detailed status reports as requested.

Demonstrating and Applying Discipline Knowledge 

• Provides technical expertise and support to persons inside and outside of the department.
• Demonstrates knowledge of job-relevant issues, products, systems, and processes.
• Demonstrates knowledge of function-specific procedures.
• Keeps up-to-date technically and applies new knowledge to job.
• Uses computers and computer systems (including hardware and software) to enter data and/ or process information.

Delivering on the Needs of Key Stakeholders

• Understands and meets the needs of key stakeholders.
• Develops specific goals and plans to prioritize, organize, and accomplish work.
• Determines priorities, schedules, plans and necessary resources to ensure completion of any projects on schedule.
• Collaborates with internal partners and stakeholders to support business/initiative strategies
• Communicates concepts in a clear and persuasive manner that is easy to understand.
• Generates and provides accurate and timely results in the form of reports, presentations, etc.
• Demonstrates an understanding of business priorities

Additional Responsibilities 

• Provides information to supervisors and co-workers by telephone, in written form, e-mail, or in person in a timely manner.
• Demonstrates self-confidence, energy and enthusiasm.
• Informs and/or updates leaders on relevant information in a timely manner.
• Manages time effectively and conducts activities in an organized manner.
• Presents ideas, expectations and information in a concise, organized manner.
• Uses problem solving methodology for decision making and follow up.

Performs other reasonable duties as assigned by manager.