Note: The job is a remote job and is open to candidates in USA. BIS Safety Software is a SaaS company on a mission to change how organizations manage safety, learning, and compliance. They are seeking a Privacy and Compliance Analyst to support their Risk & Compliance initiatives by ensuring operations align with privacy laws and industry standards, managing projects, and facilitating risk processes.
Responsibilities
- Manage and deliver privacy, security, and compliance projects, ensuring alignment with organizational goals and timelines
- Proactively assess operational, IT, and data privacy risks, partnering with cross-functional teams to implement effective mitigation strategies
- Develop, maintain, and enhance compliance frameworks, policies, and procedures aligned with evolving regulations (PIPEDA, COPPA, GDPR) and industry standards
- Coordinate third-party audits (e.g., SOC 2, PCI DSS) and conduct internal assessments to ensure ongoing compliance
- Support software security improvements and contribute to initiatives that enhance controls and reduce risk exposure
- Lead or support incident response activities, including investigation, documentation, communication, and remediation
- Triage and respond to compliance-related tickets and inquiries, providing timely guidance and solutions to internal teams
- Stay current on privacy laws and industry requirements, translating them into practical policies and operational processes
- Prepare clear, accurate compliance documentation and reports for internal stakeholders, clients, and auditors
- Liaise with clients, vendors, auditors, and internal teams to address compliance requirements and support ongoing initiatives
- Support training efforts and help foster a culture of data security and compliance across the organization
Skills
- 5+ years of experience in privacy, data security, compliance, and risk management
- Postgraduate education in cybersecurity or a related field
- Strong understanding of Canadian privacy laws and regulations
- Experience in providing training and developing policy documents related to privacy and compliance
- Project management experience
- PMP certification is a strong asset but not required
- Bonus points if you have a CIPP/C, CIPM, or other relevant privacy/security certifications
Benefits
- Employee Stock Ownership Plan (ESOP)
- Full medical, dental, and vision coverage
- Life insurance and disability insurance
- Health spending account
- Flexible working hours
- On-the-job training and growth opportunities
- Free on-site parking
Company Overview