×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Information Security Data Security

Privacy Analyst

Job in Stony Brook, Suffolk County, New York, 11790, USA
Listing for: ISACA
Full Time position
Listed on 2025-12-02
Job specializations:
  • IT/Tech
    Information Security, Data Security
Job Description & How to Apply Below

Job Description Required Qualifications (as evidenced by an attached resume)

  • Bachelor's degree (foreign equivalent or higher) in Information Systems, Compliance, Legal Studies, Public Policy, Risk Management, or a related field.
  • Three (3) years of full-time experience in privacy, compliance, or related field.
  • Knowledge of and experience working with privacy regulations and standards (e.g., FERPA, PIPL, HIPAA, GDPR, CCPA, GLBA).
  • Experience providing education and training to constituents, including content development and delivery of public speaking presentations.
  • Maintains a valid NYS Driver's License without major violations or a pattern of repeat violations.
  • Out-of-State Applicants: see "Special Notes".
Preferred Qualifications
  • Master's degree (foreign equivalent or higher) or an Advanced Certification in a relevant field.
  • Professional certifications such as CIPP/US, CIPP/E, CIPM, or equivalent.
  • Experience in higher education, healthcare, or research-intensive organizations.
  • Familiarity with information security frameworks (e.g., NIST, ISO).
Brief Description of Duties

The Privacy Analyst supports the Chief Privacy Officer in maintaining and enhancing the University's privacy program. This role focuses on assessing policies, procedures, and operational practices to ensure compliance with federal, state, and international privacy regulations. The Privacy Analyst plays a significant role in safeguarding the privacy and security of sensitive information by conducting ongoing privacy risk assessments, implementing improvements, and assisting in training stakeholders to safeguard sensitive information across academic, research, clinical, and administrative functions.

The successful candidate will demonstrate strong analytical, organizational, and problem-solving skills as well as excellent written and verbal communication skills. The incumbent will explain privacy concepts to diverse audiences and collaborate effectively across multiple departments and with senior leadership.

  • Privacy and Compliance:
    • Work with the CPO, the Director of Risk Management and Policy Compliance and all policy owners across the enterprise to assess institutional policies, procedures, and operations to ensure compliance with applicable privacy laws, regulations, and best practices.
    • Support the development, implementation, and continuous improvement of privacy policies, guidelines, and procedures, while providing feedback and recommendations.
    • Monitor changes in privacy regulations and advise the CPO on implications and required actions.
    • Respond to general privacy inquiries from employees, students, and third parties; provide accurate information and sound guidance as appropriate.
    • Maintain current knowledge of applicable federal, state, and international privacy and other compliance-related laws and accreditation standards.
  • Risk Assessment and Reporting:
    • Conduct risk assessments to identify potential privacy vulnerabilities.
    • Participate in privacy audits, compliance reviews, and mitigation strategies which may include privacy impact assessments (PIAs) for new systems, technologies, and business processes.
    • Prepare reports and metrics to inform the CPO and leadership on privacy risks and trends. Assist with the development and management of privacy program metrics, reports, and dashboards, and provide recommendations for program enhancement.
    • Work on projects and initiatives with the Data Governance Council on projects and initiatives involving data ownership and transfer, data inventory and mapping, data classification to ensure alignment with privacy policy and regulations.
    • Coordinate initial and periodic privacy risk assessments and conduct related ongoing compliance monitoring activities in coordination with the university's other compliance and operational assessment functions.
  • Training and Awareness:
    • Support the development and delivery of training programs through various methods and modalities for faculty, staff, and others on privacy policies and best practices.
    • Promote a culture of privacy awareness across the University.
    • Work collaboratively with the Division of Information Technology, Office of General Counsel, Procurement, OVPR, and…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search