Corporate Privacy Advisor

About The Position

Requirements

• University degree in Library Sciences, Archival Studies, Information Management, Law, or a related field of study
• Certificate in regulatory investigations or willingness to obtain
• A minimum of four (4) years of progressively responsible experience in a privacy-related role
• Equivalencies include: A related two-year diploma and a minimum of six (6) years of related experience; a related one-year certificate and a minimum of seven (7) years of related experience; or a minimum of eight (8) years of related experience
• Proven experience conducting regulatory investigations and investigative interviews
• Demonstrated ability to manage highly sensitive and confidential information
• Deep understanding of information safeguarding and privacy legislation
• Exceptional negotiating and mediation skills, especially when dealing with oversight bodies or emotionally charged situations
• Strong verbal and written communication skills for reporting to senior leadership and presenting complex information clearly
• Ability to remain calm and solution-oriented when conducting intense interviews or managing escalated issues
• Skilled at nurturing collaborative partnerships with community partners and internal collaborators at all levels of the organization

Nice To Haves

• Information Access and Protection of Privacy (IAPP) certificate or equivalent from the University of Alberta, a recognized post secondary institution or a recognized professional association is an asset
• A Graduate degree in a related field is preferred
• Professional certification in information access and privacy (e.g., CIPP/C from IAPP.org, University of Alberta IAPP certificate)
• Recent experience in regulatory investigations
• Recent experience in privacy impact assessments, especially involving automated systems

Responsibilities

• Intake, triage, and manage privacy incident (potential breach or complaint) files, taking immediate steps to contain incidents, provide advice, coordinate regulatory and courtesy notifications of affected individuals, the Office of the Information and Privacy Commissioner (OIPC) and the Minister
• Lead the preparation and submission of complex and significant Privacy Impact Assessments to ensure new programs are designed with "privacy by design" principles
• Act as mentor to other staff with regard to privacy protection, foster a privacy-aware culture by acting as subject matter expert in privacy, administrative security measures, data governance
• Liaise with the OIPC with regard to incident reporting and PIA submission files
• Deliver and develop internal training on specialized privacy topics
• Provide informed recommendations to senior leadership on practices impacting personal information and non-personal data (as defined in POPA)
• Provide expert guidance to senior leadership, including the City Clerk and City Manager, regarding POPA, relevant examples from other Canadian jurisdictions, regulatory orders and cases
• Perform other related duties as assigned

Benefits

• Alignment to our Cultural Commitments and Leadership Competencies (https://bit.ly/4brRrXm)
• Embracing a culture of equity, diversity, reconciliation, and inclusion
• Alignment with the goals of the City Plan
• Learn more about our benefits https://bit.ly/COEbenefits