Privacy Analyst II

3 days ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

This range is provided by Allegiant. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.

$/yr - $/yr

The Privacy Analyst II will lead governance, risk, and compliance initiatives with a strong focus on privacy program management, website cookie compliance, and data governance. This role ensures adherence to regulatory requirements, internal policies, and industry standards while driving continuous improvement in Allegiant’s privacy posture. The Privacy Analyst II will collaborate across Legal, Security, IT, Marketing, and business teams to strengthen privacy practices and support responsible data handling.

Visa Sponsorship Available:
No

• Combination of Education and Experience will be considered.
• Must be authorized to work in the US as defined by the Immigration Act of 1986.
• Must pass a Criminal Background Check.
• Bachelor’s Degree.
• Minimum four (4) years of experience in Internal Audit (IT Audit preferred), IT Risk, or Information Security.
• Knowledge of project management skills (task identification, prioritization, and documentation).
• Demonstrated ability to effectively balance multiple responsibilities which may frequently change.
• Ability to learn information quickly and apply risk/control considerations which impact downstream decisions.
• Ability to interface effectively with internal and external auditors.
• Critical thinking skills with strong attention to detail.
• High degree of professionalism and personal integrity.
• Ability to work with a high degree of independence.
• Excellent documentation skills (process, control, policy, and risk documentation).
• Excellent verbal and written communication skills across all levels of personnel.
• Knowledge of and experience with performing ongoing risk analysis to determine recovery needs.
• Familiarity with internet, networking (LAN and WAN), data and voice telecommunications, and cloud computing.
• Good knowledge of ISO 27001, PCI‑DSS.
• Good knowledge of TCP/IP and related protocols.
• Familiarity with intrusion detection and prevention techniques.
• Ability to conduct research into security issues and products as required.
• Familiarity with risk management/control frameworks such as COBIT, ISO 27005, COSO, NIST 800‑30, and ITIL.
• Understanding of internal audit and risk‑based methodologies.
• Sarbanes‑Oxley (SOX) experience.
• Understanding and experience with NIST and PCI standards.
• Strong experience in IT Audit, IT Risk and/or Information Security.
• Demonstrated proficiency in assessing risk and risk management practices.
• Knowledge of IT policies, standards and procedures, security frameworks and their development and implementation.

• Industry certifications.
• Familiarity with either GRC (Governance, Risk Management, and Compliance) or IRC (Integrated Risk Management) applications.

• Participate in all areas of IT Governance, Risk and Compliance.
• Perform risk assessments for IT and identify risks presented by technological and process changes.
• Gather relevant business, regulatory, process, and system information; validate and update process flows, risks, and controls.
• Participate in maintaining the risk register and support continuous improvement of IT risk management processes.
• Consult on risk management strategies and remediation plans.
• Support IT audits and manage testing request lists from internal and external auditors.
• Define action plans and timelines with process owners and manage implementation.
• Assist with Information Security Incident Management.
• Support the administration of IT policies, standards and procedures.
• Draft information security deliverables to internal and external partners.
• Conduct scheduled assessment to identify gaps in IT business continuity and disaster recovery plans.
• Coordinate IT disaster recovery testing.
• Participate in IT business continuity planning awareness training.
• Assist in the execution of information security programs, including PCI compliance requirements.
• Assist in the development and update of compliance standards.

Office/IT – required to stand, sit, talk, hear, see, reach, stoop, kneel, use hands and fingers. May be required to lift, push, pull, or carry up to 50 lbs. May require 24‑hour shifts and regular attendance. Exposure to moderate noise. Travel may be required.

We welcome all individuals from varied backgrounds and experiences to apply. Our company values the unique perspectives and talents that each person brings to our team. We are an Equal Opportunity

Employer:

Disability/Veteran.

Associate

Full‑time

Management and Manufacturing

Transportation, Logistics, Supply Chain and Storage