Senior Analyst – Privacy & Information Security Analyst (Part time / Job share)

Summary

Job ref: 13074

Job Type: IT

Location: Tramore Road, Cork

Contract type: Permanent

Closing Date: 30 January 2022



Senior Analyst - Privacy & Information Security Analyst (Part time / Job share)

As an organisation our success ultimately depends in our customer’s trust in us. Our reputation and success depend on our ability to effectively secure our data and our customer’s information, whilst meeting our compliance obligations with the General Data Protection Regulations (GDPR). In Musgrave we are continuously looking to enhance our security and privacy posture to ensure our retail, online, applications and data are secured whilst supporting a broad set of customer, retailer, and supplier interactions as seamlessly and conveniently as possible.

This is an excellent opportunity for innovative and motivated people with excellent communication skills and an interest in data protection, information security and the process and skills to kick start their careers with Ireland’s largest private sector employer.

Role Scope:   

Supporting the Information Security Risk Analyst, the Data Protection Officer and the wider Information Security and Privacy team in:

  • Fostering a data protection culture across Musgrave
  • Supporting Musgrave in implementing the essential elements of GDPR
  • Engaging with the relevant regulatory authorities for example the Data Protection Commission (DPC) on personal data breach reporting, complaints, and investigations
  • Monitoring GDPR compliance across Musgrave and reviewing documents that evidence Privacy by Design, including Records of Processing (ROPAs) and Data Protection Impact Assessments (DPIAs)
  • Providing data protection advice to business areas across the group, including supporting data protection projects across the organisation
  • Providing advice on behalf of the DPO to the wider business from a data protection perspective
  • Producing management information, communications, and ad-hoc reporting as required
  • Acting as a point of escalation for the Data Protection Officer (DPO)
  • Maintaining Policies and Procedures related to Data Protection and Security
  • Managing the Data Protection mailbox (DPO) 
  • Monitoring privacy & risk compliance across all of Musgrave’s 3rd Parties
  • Supporting the Information Security & Privacy team as required in identifying and managing IT and cyber security risks in an effective and efficient manner

The purpose of this role is to work with the Information Security Risk Analyst and the Data Protection Officer in identifying and managing IT, Privacy and Cyber security risks in an effective and efficient manner to enable the implementation of centrally driven initiatives that are aligned to business needs in an effective and efficient manner.

We are looking for talented individuals with a keen interest in information security, Data Protection, concepts and technologies.

Key Activities

  • Deliver activities related to the administration of data protection policies and processes
  • Manage and develop the Breach Management process, Data Access Requests (DAR’s), Data Protection Impact Assessments (DPIA’s), Mailbox management including personal data related queries and complaints, to ensure compliance with GDPR and other data protection requirements
  • Deliver activities related to data protection campaigns, including the delivery of training and awareness
  • Provide relevant, consistent, and timely data protection advice and support to the business
  • Manage the review of Third-Party Management / Data Processing Agreements (DPAs)

 

  • Support activities related the administration of policies and processes, privacy, governance and risk management program, third-party vendors, and compliance frameworks.
  • Assessing vendors from an IT risk point of view
  • Assist and support with audits and testing reports to ensure compliance with security policies and processes.
  • Support activities related to internal phishing campaigns, security announcements, and security awareness training.
  • Assist with the review and monitoring of the IT Privacy Impact Assessments
  • Monitoring privacy & risk compliance across all of Musgrave’s 3rd Parties

 

 

The ideal candidate will have/be:

Essential Criteria

  • Privacy / Security certification such as IAPP, CDPP, CIPP, CISSP, or equivalent third level qualification
  • Equivalent work-related experience
  • A good level of understanding of data protection regulations, directives, standards, and guidelines.

Desirable Criteria

  • Relevant third level qualification
  • Understanding and experience of the Grocery (preferred) or Retail sector
  • Experience of an equivalent regulatory role or work in supporting a legal/insurance business


Apply Now

What would you like to find?

Most popular stories

Noel Keeley appointed as new Musgrave CEO

Musgrave Group plc announced today that Noel Keeley, current Managing…

Drive-Thru First for Convenience Retail Brand

£1 million investment in reimagined Centra Store and Drive Thru…