Data Protection and Privacy Analyst

About The Position

Requirements

• Paralegal Certificate or Bachelor’s degree in Information Privacy, Cybersecurity, Law, Business, or related field (or equivalent experience).
• At least 2–4 years of relevant experience in privacy, compliance, risk management, or data governance.
• Familiarity with major privacy regulations and frameworks.
• Experience drafting contracts, policies, and providing support for business operations
• Technology Proficiency: Familiarity with compliance management software and tools. Understanding how technology can automate compliance processes, track compliance metrics, and facilitate reporting.
• Strong analytical, communication, and documentation skills.

Nice To Haves

• Certifications such as CIPP/US, CIPP/E, CIPM, or CIPT are a plus.

Responsibilities

• Monitor and interpret global privacy regulations (e.g., GDPR, CCPA/CPRA, HIPAA, GLBA) and assess their impact on business operations.
• Support the development, implementation, and maintenance of global privacy policies, standards, and procedures.
• Conduct privacy impact assessments (PIAs), data protection impact assessments (DPIAs) and gap assessments.
• Partner with business and privacy leaders to develop and maintain records of processing activities (RoPA) and data mapping initiatives.
• Manage data privacy certifications.
• Review data privacy contractual provisions.
• Identify privacy risks and recommend mitigation strategies.
• Support incident response activities, including documentation, triage, and coordination with security teams.
• Participate in or prepare responses to vendor privacy questionnaires, reviews and third‑party risk assessments.
• Provide support for data privacy and cybersecurity audits
• Administer data privacy technology platform
• Partner with product, engineering, HR, legal, and security teams to embed privacy‑by-design principles.
• Review new projects, tools, and processes for privacy implications.
• Assist with data subject access rights request (DSR/DSAR) workflows, including access, deletion, and correction requests.
• Assist with Arrow's information governance, including record retention schedule
• Contribute to privacy training materials and awareness programs.
• Provide guidance to internal teams on privacy best practices and regulatory obligations.
• Assist with data privacy and technology initiatives.

Benefits

• Medical, Dental, Vision Insurance
• 401k, With Matching Contributions
• Short-Term/Long-Term Disability Insurance
• Health Savings Account (HSA)/Health Reimbursement Account (HRA) Options
• Paid Time Off (including sick, holiday, vacation, etc.)
• Tuition Reimbursement
• Growth Opportunities
• And more!