Privacy and Compliance Analyst (Remote)
About The Position
BIS Safety Software is a SaaS company focused on changing how organizations manage safety, learning, and compliance. As the company grows, there's an increasing need to strengthen risk management, protect client data, and meet evolving regulatory standards. This role is for a dynamic and proactive Privacy and Compliance Analyst who will be instrumental in supporting Risk & Compliance (R&C) initiatives, ensuring operations align with privacy laws and industry standards. The analyst will work closely with various teams, providing guidance, managing projects, and facilitating risk processes to support growth and scalability. This role is ideal for someone particular about details, who enjoys building new solutions and improving existing ones.
Requirements
- 5+ years of experience in privacy, data security, compliance, and risk management.
- Postgraduate education in cybersecurity or a related field.
- Strong understanding of Canadian privacy laws and regulations.
- Experience in providing training and developing policy documents related to privacy and compliance.
- Project management experience.
- Strong proficiency in Microsoft 365.
- Interest in IT and technology.
Nice To Haves
- PMP certification is a strong asset but not required.
- IT background is an asset.
- CIPP/C, CIPM, or other relevant privacy/security certifications.
Responsibilities
- Manage and deliver privacy, security, and compliance projects, ensuring alignment with organizational goals and timelines.
- Proactively assess operational, IT, and data privacy risks, partnering with cross-functional teams to implement effective mitigation strategies.
- Develop, maintain, and enhance compliance frameworks, policies, and procedures aligned with evolving regulations (PIPEDA, COPPA, GDPR) and industry standards.
- Coordinate third-party audits (e.g., SOC 2, PCI DSS) and conduct internal assessments to ensure ongoing compliance.
- Support software security improvements and contribute to initiatives that enhance controls and reduce risk exposure.
- Lead or support incident response activities, including investigation, documentation, communication, and remediation.
- Triage and respond to compliance-related tickets and inquiries, providing timely guidance and solutions to internal teams.
- Stay current on privacy laws and industry requirements, translating them into practical policies and operational processes.
- Prepare clear, accurate compliance documentation and reports for internal stakeholders, clients, and auditors.
- Liaise with clients, vendors, auditors, and internal teams to address compliance requirements and support ongoing initiatives.
- Support training efforts and help foster a culture of data security and compliance across the organization.
Benefits
- Employee Stock Ownership Plan (ESOP)
- Full medical, dental, and vision coverage
- Life insurance and disability insurance
- Health spending account
- Flexible working hours
- On-the-job training and growth opportunities
- Free on-site parking
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
