Privacy Analyst - Ottawa, Canada - Canadian Medical Protective Association

Canadian Medical Protective Association

Verified Company

Ottawa, Canada

2 weeks ago

Posted by:

Sophia Lee

beBee Recruiter

Description

PRIVACY ANALYST

CONTRIBUTING TO THE CMPA

POSITION OVERVIEW

Reporting to the Manager, Privacy & Records Management, the Privacy Analyst provides Privacy program and departmental specific support for the analysis, design, development, and implementation of privacy processes and principles.

The incumbent applies best practices related to breach response, privacy access requests and data analysis in line with the organization's Privacy Governance Framework.

POSITION ACTIVITIES

Program Support_
Supports the Corporate Privacy Program that defines, maintains, and implements policies and processes that enable consistent and effective privacy practices which minimize risk and ensure the protection of personal information
Conducts analysis to identify opportunities to evolve and mature the Association's privacy program; promotes continuous process and program improvement meeting the everchanging privacy legislative landscape
Provides consultation and privacy advice for new and updated policies, programs, initiatives, proposals, contracts, data sharing agreements, technologies, and information systems
Supports the Privacy Access Request process including the collection of materials, consultation with business units and liaise with Legal Counsel for review
Participates in internal working groups, including the Privacy Operations Group, Data Governance Operations Group and RIM Working Group
Collaborates with Security Office to align risk management processes and reporting
Identifies privacy requirements for the management, retention, and destruction of corporate information, working closely with Records and Information Management (RIM)
Provides workload forecasts based on operational activities and upcoming projects, including budgeting and resource estimates and delivers quarterly and yearend reporting on Privacy activity
Privacy Analysis_
Facilitates needs assessments and requirements analysis, develops, and delivers reports on process improvements
Conducts analysis of internal breach and incident reports to determine trends, investigates and tests solutions, provides recommendations and works with applicable internal resources to operationalize risk mitigation measures
Develops a thorough understanding of our Members' privacy issues by analysing Members' privacy interactions to report trends and develop and recommend improvements
Consults and provides privacy advice for new and emerging technology initiatives including the use of data deidentification systems
Training and Awareness_
Delivers ad hoc training sessions, and/or provides coaching to staff as required
Promotes and encourages effective management of personal information in alignment with the corporate privacy program
Attends and participates in the Privacy Operations Group to report on privacy risk and to stay firmly connected to business units to maintain knowledge of departmental privacy activity

EDUCATION AND EXPERIENCE

Minimum fouryear Bachelor's Degree required, preferably in a related field of study
Minimum 5 years of experience in privacy management or another related field.
Industry recognized privacy certification such as Certified Information Privacy Professional, Certified Information Privacy Technologist (CIPP/C or CIPT),
Experience providing user support and advice, analyzing data, working in crossfunctional departments, facilitating meetings, and delivering presentations
Knowledge of Canadian health privacy laws and privacy trends.
Experience in quality control, audit, and monitoring methods, practices, and tools
Strong knowledge and experience in privacy concepts, principles, operations, legislation, and regulations
Knowledge of information technology or information security is an asset
Proven knowledge of privacy principles, processes, and legislative requirements.
Maintains personal professional development as a Privacy Analyst, including continuous vendor and industry training and attending conferences

SKILLS AND ABILITIES

Demonstrated experience developing privacy requirements and delivering privacy risk training content.
Thorough understanding of "privacybydesign" and privacy best practices
Ability to meet tight deadlines and perform well under pressure with competing priorities
Ability to work with internal clients on a regular basis, identifying their needs and investigating solutions
Analytical thinker with critical attention to detail and accuracy
Ability to handle confidential information with discretion and diplomacy
Ability to communicate with end users, business units and management.
Ability to analyze and provide solutions to both technical and nontechnical problems

POSTING DETAILS

Job Type: Regular Full-Time
Salary Range: $81,600 to $95,000 this role is classified as level
Location
:Hybrid
Primary Remote Job. You can work from a homebased office the majority of the time within the prov