Privacy and Compliance Analyst (Remote)
About The Position
BIS Safety Software is a SaaS company focused on changing how organizations manage safety, learning, and compliance. As the company grows, there's an increasing need to strengthen risk management, protect client data, and meet evolving regulatory standards. The Privacy and Compliance Analyst will be instrumental in supporting Risk & Compliance (R&C) initiatives, ensuring operations align with privacy laws and industry standards. This role involves working closely with various teams to provide guidance, manage projects, and facilitate risk processes to support growth and scalability. The ideal candidate is detail-oriented, enjoys building new processes, and improving existing ones.
Requirements
- 5+ years of experience in privacy, data security, compliance, and risk management.
- Postgraduate education in cybersecurity or a related field.
- Strong understanding of Canadian privacy laws and regulations.
- Experience in providing training and developing policy documents related to privacy and compliance.
- Project management experience.
- Strong proficiency in Microsoft 365.
- Interest in IT and technology.
Nice To Haves
- PMP certification
- CIPP/C, CIPM, or other relevant privacy/security certifications
- IT background
Responsibilities
- Manage and deliver privacy, security, and compliance projects, ensuring alignment with organizational goals and timelines.
- Proactively assess operational, IT, and data privacy risks, partnering with cross-functional teams to implement effective mitigation strategies.
- Develop, maintain, and enhance compliance frameworks, policies, and procedures aligned with evolving regulations (PIPEDA, COPPA, GDPR) and industry standards.
- Coordinate third-party audits (e.g., SOC 2, PCI DSS) and conduct internal assessments to ensure ongoing compliance.
- Support software security improvements and contribute to initiatives that enhance controls and reduce risk exposure.
- Lead or support incident response activities, including investigation, documentation, communication, and remediation.
- Triage and respond to compliance-related tickets and inquiries, providing timely guidance and solutions to internal teams.
- Stay current on privacy laws and industry requirements, translating them into practical policies and operational processes.
- Prepare clear, accurate compliance documentation and reports for internal stakeholders, clients, and auditors.
- Liaise with clients, vendors, auditors, and internal teams to address compliance requirements and support ongoing initiatives.
- Support training efforts and help foster a culture of data security and compliance across the organization.
Benefits
- Employee Stock Ownership Plan (ESOP)
- Full medical, dental, and vision coverage
- Life insurance and disability insurance
- Health spending account
- Flexible working hours
- On-the-job training and growth opportunities
- Free on-site parking
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
