Position Overview
β’ Read, understand, and reference policies, standards, and guidelines as they pertain to information security, and identify instances of non-conformity
β’ Create and update all documents related to ISO27001 and assist with ISO27001 audits
β’ Develop, implement, and update the Firm's US and international privacy policies, procedures, and processes
β’ Organize initial and ongoing information privacy training for all staff
β’ Perform periodic risk assessments and ongoing compliance monitoring
β’ Participate in the development and review of business associate and qualified service organization agreements to ensure that all privacy concerns, requirements, and responsibilities are addressed
β’ Develop, implement, and manage data governance policies, procedures, and process to ensure availability, usability, integrity, and security of the data employed in the Firm
β’ Identify old data and create lifecycle governance around all data in the Firm.
β’ Create polici...