Privacy Analyst (Analyst, Senior, or Lead) - Technology Services (146381)
University of Illinois

Champaign, Illinois

Posted in Education and Training


This job has expired.

Job Info


Job Details

Description:

Privacy Analyst (Analyst, Senior, or Lead)

Technology Services

University of Illinois at Urbana-Champaign

The Technology Services Privacy and Security Office has an opening for a Privacy Analyst. This position provides consultative and direct support enabling the use of data and technology assets in a privacy-principled and security controlled manner. We are looking for candidates with high privacy awareness, experience and interest, technical competency, strong collaboration skills, and an interest in learning and a willingness to partner within and across the organization to support, grow, and create a culture of privacy at Illinois. If you have a passion for privacy, consider applying to this exciting role on a growing and maturing team. Illinois is a world leader in research, teaching, and public engagement. We serve the state, the nation, and the world by creating knowledge, preparing students for lives of impact, and addressing critical societal needs through the transfer and application of knowledge. Illinois is the place where we embrace difference. We embrace it because we value it. Illinois is especially interested in candidates who can contribute, through their research, teaching, and/or service, to the diversity and excellence of the Illinois community.

Why Work at Technology Services?
Highlights of Employee Benefits
(PDF)

The University of Illinois is an Equal Opportunity, Affirmative Action employer that recruits and hires qualified candidates without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability or veteran status. For more information, visit http://go.illinois.edu/EEO.

Primary Position Function: Propose and develop strategic solutions that support data management, privacy principles, and policy, align privacy with compliance and identity and access management needs, and support tracking of authorized, appropriate, and consented use of data throughout the University. Act as subject-matter expert in privacy matters in Technology Services. Develop a culture of privacy awareness and act as partner and liaison in support of enabling the use of data in the University in a privacy-aligned manner.

Major Duties and Responsibilities - Privacy Analyst:

Privacy consulting & organizational planning

  • Provide information, guidance, and support for university units related to data management, data use, and privacy inquiries. Provide privacy review, considerations, impact assessments for requests related to various University operations including research data, procurement, contracts, data use agreements (DUAs), FOIA, and GDPR (such as data subject access requests (DSARs)).
  • Contribute to Privacy Office planning and operations:
    • Develop Objectives and Key Results (OKRs) and deliver on OKRs as part of Privacy Office portfolio of services.
    • Contribute to the three-year service roadmap? strategic and operational plans? and designs of large enterprise or university projects. Participate in Technology Services MMO, PMO, and service / project management frameworks as appropriate.
    • Implement services toward alignment with the organization's vision and strategic goals through architectural reviews and interoperability evaluations.
  • Advise leadership of established best practices and work with them to align processes and frameworks with those best practices.
Collaboration and outreach
  • Represent the IT Privacy and Security office in collaborative and strategic initiatives, applying expertise independently on projects and programs.
  • Participate in and facilitate internal and external meetings. Drive discussions as needed to represent the needs of the assigned domain(s). Present findings/reports to technical and non-technical audiences.
  • Provide excellent customer service on behalf of the IT Privacy and Security office.
  • Advocate for Technology Services or other clients and partners in service planning and deployment across the organization.
  • Provide recommendations for continual process improvement across Privacy and Security workflows.
  • Draft and review documentation such as analyses of technical, administrative, or procedural security issues? procedural documentation/playbooks? and team documentation.
  • Develop and maintain personal and professional excellence through university-provided and external training/seminars/courses? staying abreast of industry trends, methods, and published literature? and participating in manager-approved innovation programs and individual development initiatives.
  • Work closely with the IRB office and serve as privacy liaison to one or more IRB data governance boards.
  • Serve on multiple data governance boards and advocate for privacy-related considerations in support of best practices for data management, protection of personally identifiable information (PII).
  • Establish and maintain relationships with vendors and engage with peers at other research institutions and professional organizations.
  • Act as liaison to the campus community, including IT professionals, business professionals, unit leadership and stakeholders, on matters of privacy training, awareness, advocacy, and services. Share knowledge with the university community through participation in public forum IT events, web forums, and presentations as an advocate for aligned technology positions.
Policy, compliance, and incident response
  • Participate in data classification and incident/breach reporting for Privacy Office.
  • Contribute to the development of privacy policy, guidelines, and standards.
  • Maintain knowledge of current and emerging privacy law, privacy frameworks and standards including GDPR, HIPAA, Illinois PIPA, FERPA, biometrics law, and emerging privacy law and practices.
  • Understand and apply the ethical, moral, legal, and compliance aspects of informed consent, re-consent, transparency, and their application in support of research, academic, clinical, and operational settings.
  • Adopt a strategic view of current and future data management systems, data warehouses, and data lakes, as well as controlled unclassified information environments and secure data environments.
  • Understand and adhere to legal constraints of non-disclosure and other strategic relationships with major vendors of the university.
  • Work with customers, service admins, and key stakeholders to establish and implement good privacy practices and document these practices so that they are measurable and repeatable.
  • Implement and support privacy practices and the configuration and maintenance of existing tools that support the privacy office.
  • Perform assessments of existing privacy procedures and technology use and inform customers and services owners of recommended improvements to these practices.

Major Duties and Responsibilities - Senior Privacy Analyst:

Privacy consulting & organizational planning
  • Provide information, guidance, and support for university units related to data management, data use, and privacy inquiries. Provide privacy review, considerations, impact assessments for requests related to various University operations including research data, procurement, contracts, data use agreements (DUAs), FOIA, and GDPR (such as data subject access requests (DSARs)).
  • Contribute to Privacy Office planning and operations:
    • Develop Objectives and Key Results (OKRs) and deliver on OKRs as part of Privacy Office portfolio of services.
    • Contribute to the three-year service roadmap? strategic and operational plans? and designs of large enterprise or university projects. Participate in Technology Services MMO, PMO, and service / project management frameworks as appropriate.
    • Implement services toward alignment with the organization's vision and strategic goals through architectural reviews and interoperability evaluations.
    • Represent one or more assigned domain(s) of privacy expertise.
  • Advise leadership of established best practices and work with them to align processes and frameworks with those best practices.
  • Lead assigned projects to develop, implement, and manage privacy-related services related to assigned domain(s).
Collaboration and outreach
  • Work closely with the IRB office and serve as privacy liaison to one or more IRB data governance boards.
  • Serve on multiple data governance boards and advocate for privacy-related considerations in support of best practices for data management, protection of personally identifiable information (PII).
  • Establish and maintain relationships with vendors and engage with peers at other research institutions and professional organizations.
  • Act as liaison to the campus community, including IT professionals, business professionals, unit leadership and stakeholders, on matters of privacy training, awareness, advocacy, and services. Share knowledge with the university community through participation in public forum IT events, web forums, and presentations as an advocate for aligned technology positions.
  • Represent the IT Privacy and Security office in collaborative and strategic initiatives, applying expertise independently on projects and programs.
  • Participate in and facilitate internal and external meetings. Drive discussions as needed to represent the needs of the assigned domain(s). Present findings/reports to technical and non-technical audiences.
  • Provide excellent customer service on behalf of the IT Privacy and Security office.
  • Advocate for Technology Services or other clients and partners in service planning and deployment across the organization.
  • Provide recommendations for continual process improvement across Privacy and Security workflows.
  • Draft and review documentation such as analyses of technical, administrative, or procedural security issues? procedural documentation/playbooks? and team documentation.
  • Develop and maintain personal and professional excellence through university-provided and external training/seminars/courses? staying abreast of industry trends, methods, and published literature? and participating in manager-approved innovation programs and individual development initiatives.
  • Develop training and other educational material in conjunction with support & training staff, particularly related to assigned domain(s) of expertise.
Policy, compliance, and incident response
  • Lead data classification and incident/breach reporting for Privacy Office.
  • Represent one or more assigned domain(s) in the development of privacy policy, guidelines, and standards.
  • Maintain knowledge of current and emerging privacy law, privacy frameworks and standards including GDPR, HIPAA, Illinois PIPA, FERPA, biometrics law, and emerging privacy law and practices.
  • Understand and apply the ethical, moral, legal, and compliance aspects of informed consent, re-consent, transparency, and their application in support of research, academic, clinical, and operational settings.
  • Adopt a strategic view of current and future data management systems, data warehouses, and data lakes, as well as controlled unclassified information environments and secure data environments.
  • Understand and adhere to legal constraints of non-disclosure and other strategic relationships with major vendors of the university.
  • Work with customers, service admins, and key stakeholders to establish and implement good privacy practices and document these practices so that they are measurable and repeatable.
  • Implement and support privacy practices and the configuration and maintenance of existing tools that support the privacy office.
  • Perform assessments of existing privacy procedures and technology use and inform customers and services owners of recommended improvements to these practices.

Major Duties and Responsibilities - Lead Privacy Analyst:

Privacy consulting & organizational planning
  • Provide information, guidance, and support for university units related to data management, data use, and privacy inquiries. Provide privacy review, considerations, impact assessments for requests related to various University operations including research data, procurement, contracts, data use agreements (DUAs), FOIA, and GDPR (such as data subject access requests (DSARs)).
  • Lead Privacy Office planning and operations:
    • Develop Objectives and Key Results (OKRs) and deliver on OKRs as part of Privacy Office portfolio of services.
    • Contribute to the three-year service roadmap? strategic and operational plans? and designs of large enterprise or university projects. Participate in Technology Services MMO, PMO, and service / project management frameworks as appropriate.
    • Implement services toward alignment with the organization's vision and strategic goals through architectural reviews and interoperability evaluations.
    • Represent one or more assigned domain(s) of privacy expertise.
    • Provide recommendations on emerging issues and the resources needed to address them, anticipating impact across multiple privacy domains to inform management decision-making.
  • Advise leadership of established best practices and work with them to align processes and frameworks with those best practices.
  • Lead major projects to develop, implement, and manage privacy-related services related to assigned domain(s). Assign and prioritize work among staff working on the project(s) led by the incumbent.
Collaboration and outreach
  • Represent the IT Privacy and Security office in collaborative and strategic initiatives, applying expertise independently on projects and programs.
  • Participate in and facilitate internal and external meetings. Drive discussions as needed to represent the needs of the assigned domain(s). Present findings/reports to technical and non-technical audiences.
  • Provide excellent customer service on behalf of the IT Privacy and Security office.
  • Advocate for Technology Services or other clients and partners in service planning and deployment across the organization.
  • Provide recommendations for continual process improvement across Privacy and Security workflows.
  • Draft and review documentation such as analyses of technical, administrative, or procedural security issues? procedural documentation/playbooks? and team documentation.
  • Develop and maintain personal and professional excellence through university-provided and external training/seminars/courses? staying abreast of industry trends, methods, and published literature? and participating in manager-approved innovation programs and individual development initiatives.
  • Work closely with the IRB office and serve as privacy liaison to one or more IRB data governance boards.
  • Serve on multiple data governance boards and advocate for privacy-related considerations in support of best practices for data management, protection of personally identifiable information (PII).
  • Establish and maintain relationships with vendors and engage with peers at other research institutions and professional organizations.
  • Act as liaison to the campus community, including IT professionals, business professionals, unit leadership and stakeholders, on matters of privacy training, awareness, advocacy, and services. Share knowledge with the university community through participation in public forum IT events, web forums, and presentations as an advocate for aligned technology positions.
  • Develop training and other educational material in conjunction with support & training staff, particularly related to assigned domain(s) of expertise.
Policy, compliance, and incident response
  • Lead data classification and incident/breach reporting for Privacy Office.
  • Represent one or more assigned domain(s) in the development of privacy policy, guidelines, and standards.
  • Maintain knowledge of current and emerging privacy law, privacy frameworks and standards including GDPR, HIPAA, Illinois PIPA, FERPA, biometrics law, and emerging privacy law and practices.
  • Understand and apply the ethical, moral, legal, and compliance aspects of informed consent, re-consent, transparency, and their application in support of research, academic, clinical, and operational settings.
  • Adopt a strategic view of current and future data management systems, data warehouses, and data lakes, as well as controlled unclassified information environments and secure data environments.
  • Understand and adhere to legal constraints of non-disclosure and other strategic relationships with major vendors of the university.
  • Work with customers, service admins, and key stakeholders to establish and implement good privacy practices and document these practices so that they are measurable and repeatable.
  • Implement and support privacy practices and the configuration and maintenance of existing tools that support the privacy office.
  • Perform assessments of existing privacy procedures and technology use and inform customers and services owners of recommended improvements to these practices.

Qualifications

Required Qualifications - Privacy Analyst
  • Bachelor's degree
  • One year of experience in information technology, privacy, compliance, auditing, data management, or closely related field. A Master's degree in a closely related field may substitute for one year of experience.

Required Qualifications - Senior Privacy Analyst
  • Bachelor's degree
  • Three years of experience in information technology, privacy, compliance, auditing, data management, or closely related field. A Master's degree in a closely related field may substitute for one year of experience.
  • Demonstrated experience in privacy or data management.

Required Qualifications - Lead Privacy Analyst
  • Bachelor's degree
  • Five years of experience in information technology, privacy, compliance, auditing, data management, or closely related field. A Master's degree in a closely related field may substitute for one year of experience.
  • Demonstrated experience implementing privacy programs.
  • Demonstrated experience leading or managing teams.

Preferred Qualifications
  • Bachelor's degree or higher in Privacy, Compliance, Law, Business, Computer Science, Information Systems, or a relevant field
  • Demonstrated experience in multiple related areas.
  • Demonstrated experience in higher education.
  • Demonstrated experience using one or more public cloud platforms to optimize service delivery, application reliability, and resource management.
  • Demonstrated experience in data management such as database / data lake architecture, data infrastructure development, and/or creation of data flow diagrams.
  • Demonstrated experience working on multiple projects and on project teams/efforts representing privacy interests.
  • CIPP, CIPM, or similar certifications
  • Leadership or management training
  • PMP or project management certification

Salary and Appointment Information

This is a full-time Civil Service Program Coordinator position appointed on a 12-month service basis. The expected start date is as soon as possible after June 1, 2021. Salary is commensurate with experience.

To Apply:

Applications must be received by June 1, 2021. Apply for this position using the "Apply for Position" button below. If you have not applied before, you must create your candidate profile at http://jobs.illinois.edu. If you already have a profile, you will be redirected to that existing profile via email notification. To complete the application process:

Step 1) Submit the Staff Vacancy Application using the "Apply for Position" button below.

Step 2) Submit the Voluntary Self-Identification of Disability forms.

Step 3) Upload your cover letter, resume (months and years of employment must be included), and academic credentials for any degree Bachelor's degree and higher including Master's degree (unofficial transcripts or diploma may be acceptable), and names/contact information for three references.

In order to be considered as a transfer candidate, you must apply for this position using the "Apply for Position" button below. Applications not submitted through this website will not be considered. For further information about this specific position, contact Phil Stanton, Technology Services HR at prstanto@illinois.edu or 217-333-4222. For questions about the application process, please contact 217-333-2137.

The University of Illinois conducts criminal background checks on all job candidates upon acceptance of a contingent offer. Conviction is not a bar to employment.

As a qualifying federal contractor, the University of Illinois System uses E-Verify to verify employment eligibility.

The University of Illinois System requires candidates selected for hire to disclose any documented finding of sexual misconduct or sexual harassment and to authorize inquiries to current and former employers regarding findings of sexual misconduct or sexual harassment. For more information, visit Policy on Consideration of Sexual Misconduct in Prior Employment.

College Name or Administrative Unit:

Technology Services

Category:

2-Administrative

Title:

Privacy Analyst (Analyst, Senior, or Lead) - Technology Services (146381)

Open Date:

05/17/2021

Close Date:

06/01/2021

Organization Name:

Technology Services - CIO


This job has expired.

More Education and Training jobs


The University of Chicago
Chicago, Illinois
Posted about 4 hours ago

Pima Community College
Tucson, Arizona
$59,500.00 - $67,700.00 per year
Posted about 3 hours ago

Pima Community College
Tucson, Arizona
$20.24 - $22.76 per hour
Posted about 3 hours ago

Get Hired Faster

Subscribe to job alerts and upload your resume!

*By registering with our site, you agree to our
Terms and Privacy Policy.