Global Data Protection & Privacy Analyst
Genova, IT, 16128
RINA is currently recruiting for a Global Data Protection & Privacy Analyst to join its office in Genoa (Italy) within the Global ESG & Compliance Division.
Mission
This role combines aspects of both Data Protection and Privacy, to ensure that RINA data handling practices are compliant with regulatory requirements and industry best practices. This role typically involves ensuring that an organization's data is protected from unauthorized access, breaches, and other security threats. The role assist in managing and protecting personal and sensitive data in compliance with privacy laws and regulations. #LI-VB1
Key Accountabilities
Data Protection
- Assist Data Security Audits: Assist during regular audits to ensure compliance with data protection regulations and internal policies.
- Support to Privacy Risk Assessment: Identify, assess, and mitigate potential security risks to organizational data.
- Policy Development and Enforcement: Develop and enforce RINA data protection policies, procedures, and standards.
- Incident Response: execute protocols for responding to data breaches and security incidents.
- Training and Awareness: Educate employees on data protection best practices and policies.
- Data Governance: Support proper management and use of data within the organization.
Privacy Management
- Regulatory Compliance: Support in developing policies ensuring compliance with privacy laws and regulations such as GDPR, CCPA, HIPAA, etc.
- Privacy Impact Assessments (PIAs): Drafting PIAs to identify and mitigate privacy risks for new projects, systems, and processes.
- Data Subject Rights Management: Assist the management of processes related to data subject rights, including access, rectification, and erasure requests.
- Privacy by Design: verify the application of privacy by design principles in the development of RINA new products and services.
- Data Mapping and Inventory: Maintain data inventories and conduct data mapping to understand data flows within the organization.
- Third-Party Risk Management: Assess and manage privacy risks associated with third-party vendors and partners.
Education
Qualifications
- 1-2 years of experience in data protection, privacy management, or a related field
- Strong knowledge and understanding of global data protection and privacy laws and regulations
- Good knowledge of data protection and privacy tools and technologies
- Strong analytical skills to assess and mitigate data protection and privacy risks
- Meticulous in ensuring compliance with all regulatory and policy requirements
- Excellent written and verbal communication skills to effectively communicate with both technical and non-technical stakeholders
- High level of integrity and adherence to ethical standards
- Preferred certifications include CISSP, CIPP, CIPM, CISM, CDPO, or similar
- Fluent in Italian and good working knowledge of English
Competencies
- ADDRESS THE WAY - Have a big picture of different situations and reinterpret it in a perspective way
- BUILD NETWORK - Forge trust relationships, across departments, and outside the organization
- CLIENT INTIMACY - Embrace internal and external client needs, expectations, and requirements to ensure maximum satisfaction
- EARN TRUST - Take everyone's opinion into account and remain open to diversity
- MAKE EFFECTIVE DECISIONS - Structure activities according to priorities, actions, resources and constraint
- MANAGE EMOTIONS - Recognise one's and other's emotions and express and regulate one's reactions
- PIONEER CHANGE - Actively embrace change and benefit from the new circumstances
- PROMOTE SUSTAINABLE DEVELOPMENT - Promote commitment by keeping promises as a Role Model
- THINK FORWARD - Capitalise on experiences and translate them into action plans for the future
RINA is a multinational company providing a wide range of services in the energy, marine, certification, infrastructure & mobility, industry, research & development sectors. Our business model covers the full process of project development, from concept to completion.
At RINA, we endeavor to create a work environment where every single person is valued and encouraged to develop new ideas. We provide equal employment opportunities and are committed to creating a workplace where everyone feels respected and safe from discrimination or harassment of any kind. We are also compliant to the Italian Law n. 68/99.