Senior Privacy & Incident Management Analyst, Belfast

Job Description

DescriptionJob Overview The Senior Privacy Analyst is responsible for performing daily operational activities within the Privacy Office to assist with demonstrating compliance with Privacy laws, regulations and other obligations. In partnership with Legaland Global Information Security (GIS), this role will also work on investigation and remediation of privacy and confidentiality incidents. This role will also be responsible for conducting training and awareness activities related to Privacy and Confidentiality,in coordination with Corporate Compliance and GIS. The role reports to the Privacy Manager. Responsibilities and Duties

• Assists the privacy team in continually designing and implementing CME Groups privacy compliance program to provide reasonable assurances the organization is in compliance with the applicable global data privacy laws. This includes:
  • Assisting with updating and/or creating policies, procedures, and standards, and conducting applicable training and awareness activities.
  • Maintaining inventories for all processing activities and completing impact assessments as required.
  • Assisting with privacy risk assessments and advising on corrective actions.
  • Identifying, reporting, and monitoring privacy vulnerabilities and risks within RSA Archer.
  • Monitoring compliance with policies by conducting impact assessments on current and new processes.
  • Providing guidance and facilitating input into contractual agreements in collaboration with legal.
  • Tracking and managing required registrations and certifications (e.g. DPO, PCI, etc.).
• Supports investigations and resolution of tasks for most incident types and severities within Information Governance.
• Assists with breach investigations and remediation in collaboration with the business, Legal, and GIS.
• Escalates and engages with management, legal, and compliance officers and other relevant teams including GIS according to documented procedures.
• Keeps abreast of regulatory changes and work with the Manager to determine potential impacts to the business or relevant policies.
• Participates in continuing education, seminars, and professional organizations to maintain up-to-date knowledge of new issues and regulatory developments.
• Completes responsibilities with limited supervision while keeping management abreast of their activities and progress.
• Manages several ongoing projects and operational activities within the Privacy Office.
• Assists with cross training and mentoring colleagues.

Qualifications and Experience:

• Bachelors degree or equivalent educational or professional experience and/or qualifications in business, pre-law, or information security and privacy.
• Familiarity with privacy laws, regulations, frameworks, and industry practices.
• 2-5 years of privacy or compliance experience required.
• Experience with identifying and assessing risk and ability to drive improvements in identifying reasonable solutions.
• Strong communication, facilitation, and relationship building skills.
• Experience working with global teams having different skillsets such as Information Technology, Human Resources, Legal, Finance, etc.
• Comfortable dealing with all levels of management.
• Strong analytical and technical skills required.
• Highly organized with excellent time management and related organizational skills, including appropriate sense of urgency, a proactive approach, and a suitable ability to anticipate and manage project lifecycle events, issues and obstacles.
• Experience with RSA Archer and/or Jira a plus.

CME Group: Where Futures Are Made CME Group (www.cmegroup.com) is the worlds leading derivatives marketplace. But who we are goes deeper than that. Here, you can impact markets worldwide. Transform industries. And build a career shaping tomorrow. We invest in your success and you own it, allwhile working alongside a team of leading experts who inspire you in ways big and small. Problem solvers, difference makers, trailblazers. Those are our people. And were looking for more. At CME Group, we embrace our employees diverse experiences, cultures and skills, and work to ensure that everyones perspectives are acknowledged and valued. As an equal opportunity employer, we recognize the importance of a diverse and inclusive workplaceand consider all potential employees without regard to any protected characteristic. The Candidate Privacy Policy can be found here.