Ascensus Privacy Officer in Remote, Massachusetts
Section 1: Position Summary
The Privacy Officer will be responsible for ensuring company compliance with privacy laws and the company’s privacy policies. The Privacy Officer will lead Ascensus’s privacy function, monitor changes in privacy laws, draft and update policies, and advise business leaders on privacy matters. Other key responsibilities include responding to client and prospect due diligence requests and RFPs; reviewing privacy provisions of contracts; interacting with state and federal regulators; and overseeing incident response and remediation.
Section 2: Job Functions, Essential Duties and Responsibilities
Serve as the leader of Ascensus’ privacy center of excellence, ensuring company compliance with all applicable privacy laws and regulations, company’s privacy policies, and best practices.
Be the dedicated privacy subject matter expert and go-to resource for all company departments, staying current with privacy laws and regulations.
Understand Ascensus’ businesses and give practical advice to business leaders.
Represent Ascensus' privacy interests to external parties including clients, prospects, vendors, and regulators.
Lead privacy risk assessments, vendor due diligence, internal and external audits, and response to regulatory inquiries and client and prospect RFPs, ensuring satisfactory results.
Develop and update privacy training and communications for Ascensus' workforce.
Manage privacy incident determination, response, and notification processes and drive investigation of and response to privacy incidents and complaints.
Facilitate and promote activities to foster a culture of information privacy awareness.
Responsible for protecting, securing, and proper handling of all confidential data held by Ascensus to ensure against unauthorized access, improper transmission, and/or unapproved disclosure of information that could result in harm to Ascensus or our clients.
Work effectively independently with minimal instruction, and as part of a team with the willingness and desire to collaborate across all levels of the organization.
Works in a fast-paced, demanding environment under tight deadlines.
Ability and willingness to travel occasionally is required.
Regular, reliable, and punctual attendance.
Support Ascensus’ culture by demonstrating our Core Values of People Matter, Quality First and Integrity Always®.
Assist with other tasks and projects as assigned
Section 3: Experience, Skills, Knowledge Requirements
In-depth knowledge of U.S. state and federal privacy laws and regulations, including CCPA and GLB.
Familiarity with GDPR and other important privacy frameworks.
Communicate effectively, verbally and in writing, with business leaders, clients, prospects, business partners, vendors, regulators, and others.
Exhibit adaptability and lead change.
Think creatively, solve problems effectively, and act decisively.
Be proactive and entrepreneurial.
Multitask and prioritize while producing high-quality, on-time work.
Bachelor's degree with minimum of 3 years of privacy experience.
Relevant privacy or information security certifications (e.g., CIPP, CIPT, CISSP) are desired.
Juris Doctor (JD) degree is a plus.
Experience in the financial services industry is preferred
We are proud to be an Equal Opportunity Employer
Be aware of employment fraud. All email communications from Ascensus or its hiring managers originate from @ascensus.com or @futureplan.com email addresses. We will never ask you for payment or require you to purchase any equipment. If you are suspicious or unsure about validity of a job posting, we strongly encourage you to apply directly through our website.