*Hybrid, 3 days onsite, 2 days remote*

A prestigious company is looking for an Associate Principal, Information Governance (Data Protection). This individual will help support the development and implementation of information governance data protection privacy program. This position will focus on strategies, policies, procedures, controls, compliance, etc. This person will need to have experience working on risk, audit, support of applications, network, databases, and other technical domains.

Responsibilities:

• Implementation of the information governance, data protection, and privacy program including the development of policies, procedures, and job aids
• Identification, implementation, and use of technologies to support program objectives and classification standards
• Execution of controls and risk assessments (eg, third-party risk, privacy, data protection)
• Responsible in performing the privacy impact assessment on data incidents and working with relevant stakeholders like Security Services and Legal to help closing the incident.
• Creation and execution of strategies to identify information across the organization and throughout its life cycle
• Preparation of program for regulatory and internal audits/examinations and timely remediation of any findings
• Use of technology/tools to track projects, manage deliverables and create reporting that support the program and its objectives
• Support of compliance assessments for information governance, data protection, and privacy including development of controls to measure risk
• Development and maintenance of the organization's Records and Information Management (RIM) program, ensuring information across all media and formats is properly retained and disposed including remediation of Legacy information
• Ensure retention, disposition, protection, and classification are addressed in new applications, platforms, and systems
• Support and develop training and awareness programs for information governance, data protection, and privacy.
• Identify trends in privacy and regulatory requirements, compliance enforcement, and action the necessary changes in the program

Qualifications:

• Bachelor's degree or higher in information management, information systems, law, computer science or BA/BS in another discipline with equivalent experience
• Previous work with information or data governance control activities in the financial services industry.
• Office 365 (Word, Excel, PowerPoint)
• Experience with systems supporting Compliance, Risk, Audit, Privacy, and Management such as ServiceNow, Archer, etc.
• Project/Program Management
• Business Intelligence tool experience
• Strong interest in understanding and solving data challenges with experience in information governance, data protection, and privacy policy
• Knowledge of and work experience with enterprise systems, networks, databases, and other technical domains
• Strong experience in building the capabilities for auto data classification, data security and data protection.
• Experience with classification standard definitions and settings
• Experience with Privacy requirements and work with personal information and its protection
• Experience working in a highly regulated environment including an understanding of audit and compliance requirements
• Understanding of and interest in technology selection and implementation
• Experience in Information Security related policy, procedure and control writing