Open Insights is a Global Data firm that specializes in strategizing and implementing Data-As-A-Service. Our Data Ninjas help organizations understand and generate value from their data, this leads to improved revenues whilst using open-source technologies reduces costs.

Open Insights operates across the world, with current operations in the United States, India, South Africa, Chile, United Kingdom, Middle East, and Europe. Open Insights was founded by Dr. Usama Fayyad to help change the world of Data and what it means for data to be an asset in an organization. Our team includes top experts in Analytics and Insights, Big Data Technology and Data Integration, Data Activation and Customer Retention and a team of data science and applied machine learning experts.

Open Insights is committed to providing all employees with engaging and challenging work, opportunity for growth, an equal voice to drive innovation, and an environment that cultivates authenticity. In return, we look for people who are inquisitive, enjoy solving complex problems, collaborate effectively, think creatively, and provide diverse insights to help us all think better and differently.

Position Overview:

The Data Privacy Professional will be responsible for ensuring the protection and privacy of our data assets. This role involves understanding and applying various security regulations, conducting security assessments, creating data inventories, and developing comprehensive data security policies. The ideal candidate will have a strong background in data privacy and data security, relevant certifications, and the ability to implement effective security measures.

Key Responsibilities:

• Security Regulations Compliance:
  

  • Ensure compliance with various security regulations including SOC 2,  GDPR, CCPA, and others.
  • Stay updated on changes in regulatory requirements and adjust security measures accordingly.
  • Collaborate with legal teams and external auditors to ensure compliance.

• Security Assessment Methodologies:
  

  • Discover and document the organization’s existing data management policies and procedures for personal data.
  • Conduct Data Protection Impact Assessments (DPIA) and Records of Processing Activities (ROPA).
  • Identify and assess security risks and vulnerabilities.

• Data Inventory and Classification:
  

  • Create and maintain an inventory of data assets.
  • Identify and classify personal, private and sensitive information.
  • Implement data protection measures for sensitive information.

• Policy Development:
  

  • Develop, review, and update data security and privacy policies, procedures and roadmap.
  • Develop data retention, consent management, data breach handling policies and procedures.
  • Ensure policies are communicated and enforced across the organization.

• Security Operations:
  

  • Monitor data security systems and respond to security incidents.
  • Collaborate with IT and other departments to implement security controls.
  • Conduct regular security audits and assessments.

• Training and Awareness:
  

  • Develop and conduct training programs for employees on data security best practices.
  • Promote a culture of data protection and compliance within the organization.

Skills and Abilities:

• Strong analytical and problem-solving skills.
• Excellent communication and documentation skills.
• Ability to work independently and as part of a team.
• Detail-oriented with a strong commitment to data security.
• Familiarity with data security tools and technologies.

Work Experience:

• Minimum of 5 years of experience in data security or a related role.
• In-depth knowledge of security regulations such as SOC 2, GDPR, CCPA, etc.
• Proficiency in security assessment methodologies like DPIA and ROPA.
• Strong understanding of data classification and protection techniques.
• Ability to write and implement data security and privacy policies.
• Relevant certifications such as CISSP, CIPM, CIPP, or equivalent.

Preferred Qualifications:

• Master’s degree in Information Security or related field.
• Bachelor’s degree in Information Security, Computer Science, or a related field.
• Additional certifications or training in data privacy laws and regulations.
• Experience with cloud security and data encryption techniques.