Senior Data Protection and Compliance Analyst

About The Position

Requirements

• Bachelor’s Degree in Information Systems, Cybersecurity, or related field required.
• Minimum 5 years Work history in data security, governance, or information risk management field required.
• Minimum 1 years Work history in a financial institution or other regulated environment preferred.

Nice To Haves

• CISSP, CompTIA Security+, SSCP, CISA, CDMP, or equivalent data protection or security certification preferred.

Responsibilities

• Evaluate and test data protection controls including encryption, masking, data loss prevention (DLP), access management, and file transfer security across databases, data warehouses, and the Databricks platform.
• Assess logical access controls and role-based access configurations to ensure alignment with governance policies and least-privilege principles.
• Participate in reviews of new technologies and vendors to assess data security posture and compliance with governance standards.
• Contribute security findings and recommendations to governance policy development.
• Collaborate with the Data Governance Lead to ensure data protection requirements are embedded in governance policies, standards, and procedures.
• Support the data classification framework by ensuring consistent tagging and handling of sensitive data aligns with both governance definitions and security controls.
• Provide security input to the Data Governance Committee on access governance, data protection risks, and control effectiveness.
• Partner with Data Stewards, Data Quality Analysts, and IT Security to remediate issues that impact data integrity or confidentiality.
• Maintain awareness of regulatory requirements (GLBA, NCUA, CFPB, FFIEC, NIST) and assist in mapping data protection controls to those requirements.
• Support audit and regulatory examinations by providing documentation of data security controls, evidence of access reviews, and remediation actions.
• Support the implementation of privacy and security-by-design principles within data workflows and business applications.
• Participate in data-related risk assessments and contribute to security incident investigations involving data exposure, unauthorized access, or policy violations.
• Assist in developing and maintaining procedures for secure data handling, retention, and disposal aligned with the data governance retention framework.
• Contribute data protection and compliance metrics to data governance dashboards and reporting.
• Support awareness efforts that promote secure data practices across departments, reinforcing governance policies with practical security guidance.
• Work cross-functionally with Data Governance, IT, and business units to ensure security controls keep pace with platform changes, including the Databricks/Unity Catalog environment.
• Adhere to all Credit Union policies, procedures, and regulatory agency requirements.
• Participate in all required and recommended training and development including, but not limited to, Bank Secrecy Act training (BSA) and demonstrate attained knowledge.
• Participate on Credit Union teams, projects and strategic initiatives when the opportunity arises.
• Perform additional duties and special projects as assigned.
• Embrace and apply HVCU’s guiding principles to all activities and responsibilities. This includes the Credit Union’s Mission, Vision, Core Values, Employee and Member Value Propositions, Sales and Service Model, and commitment to Lean Six Sigma practices.
• Support the Credit Union’s initiatives by demonstrating teamwork and professionalism.
• Responsible for regular and predictable attendance including punctuality.

Benefits

• Base & Variable Pay Structures
• Paid Personal, Holiday & Volunteer Time Off
• Professional Development & Training
• Student Loan Repayment & Tuition Reimbursement Programs
• Medical, Dental & Vision Coverage
• 401(k) With Employer Match & Non-Elective Employer Contribution
• Life, Short-term & Long-term Disability Insurances
• Discounted Loan Rates & Fees