Executive Office of Technology Services and Security
Privacy Analyst
Executive Office of Technology Services and Security, Boston, Massachusetts, us, 02298
Base pay range
$35.00/hr - $45.00/hr This is a contract-based employment opportunity Overview
The Executive Office of Technology Services and Security (EOTSS) is the lead enterprise technology organization for the Commonwealth of Massachusetts. Charged with driving the ongoing alignment of business and technology across the Commonwealth’s Executive Branch, EOTSS oversees and manages the enterprise technology, digital infrastructure and services, as well as the Commonwealth Security Operations Center and an enterprise Standard Operating Environment that includes an information security and risk management framework for over 125 state agencies and over 43,000 state employees. We directly serve our constituents by providing digital services and tools that enable taxpayers, drivers, businesses, visitors, families and other citizens to do business with the Commonwealth in a way that makes every interaction with government easier, faster, and more secure. Our Mission:
We provide technology leadership across the Commonwealth to enhance the quality of public service and foster positive community outcomes. Role and responsibilities
EOTSS is seeking a
Privacy Analyst
to support the EOTSS Privacy Office with a new Software Platform for Privacy Impact Assessments. The role will support the EOTSS Enterprise Privacy Office (EPO) privacy program and have primary responsibility for the EPO\'s privacy compliance software platform. The role will research, collect, and analyze information regarding the collection, use, and sharing of personal data by EOTSS and its vendors. They will help evaluate new projects, systems, and vendors to identify privacy-related risks and impact on the privacy rights of employees and constituents. This role will help to ensure that privacy considerations are integrated into everything we do at EOTSS. This is an opportunity to have a profound and positive impact on the privacy of Massachusetts residents. Applicants should have a demonstrated interest in developing an understanding of information systems, cybersecurity, data architectures, compliance, privacy laws, and related regulations. The primary work location for this role will be at
One Ashburton Place, Boston, Massachusetts 02108.
The work schedule for this position is
Monday through Friday, 9:00AM to 5:00PM EST.
This position is expected to follow a
hybrid
model of reporting to work that combines in-office workdays and work from home days as needed. All offers of employment into this position are conditional and subject to passing: a Massachusetts Criminal Background Check (CORI) and security training. Key Responsibilities
Administer privacy compliance software platform. Load data mapping and privacy assessment information into privacy compliance software platform. Assist with collecting information for data mapping and privacy impact assessments. Help mitigate legal and operational risks around personal and sensitive information. Data Mapping support will include: Identify flows of personal data through EOTSS and EOTSS-managed vendors Identify use of personal data by vendors, within projects, or otherwise in data storage systems maintained by EOTSS Privacy Impact Assessments support will include: Assist Risk Team with Privacy Components of Risk Assessments Review Vendor Risk Assessments for Privacy Impact Conduct initial Privacy Impact Assessments of projects, data systems, and vendors Preferred Qualifications
3-5 years of experience working with cross-functional teams in a corporate or government setting Experience with privacy impact assessments and drafting initial reports Excellent communication skills to gather information and assessment data across various teams and organizational levels Familiarity with privacy and GRC software solutions, with a preference for ServiceNow Familiarity with SaaS solutions Experience in Privacy, Information Security, or Compliance is a plus Experience in data entry, software administration, or cloud platform management is a plus Demonstrated interest in data privacy Knowledge of privacy laws such as FIPA, FOIA, HIPAA, and GLBA is a plus Seniority level
Mid-Senior level Employment type
Contract Job function
Legal and Information Technology Industries Information Technology & Services and Government Administration
#J-18808-Ljbffr
$35.00/hr - $45.00/hr This is a contract-based employment opportunity Overview
The Executive Office of Technology Services and Security (EOTSS) is the lead enterprise technology organization for the Commonwealth of Massachusetts. Charged with driving the ongoing alignment of business and technology across the Commonwealth’s Executive Branch, EOTSS oversees and manages the enterprise technology, digital infrastructure and services, as well as the Commonwealth Security Operations Center and an enterprise Standard Operating Environment that includes an information security and risk management framework for over 125 state agencies and over 43,000 state employees. We directly serve our constituents by providing digital services and tools that enable taxpayers, drivers, businesses, visitors, families and other citizens to do business with the Commonwealth in a way that makes every interaction with government easier, faster, and more secure. Our Mission:
We provide technology leadership across the Commonwealth to enhance the quality of public service and foster positive community outcomes. Role and responsibilities
EOTSS is seeking a
Privacy Analyst
to support the EOTSS Privacy Office with a new Software Platform for Privacy Impact Assessments. The role will support the EOTSS Enterprise Privacy Office (EPO) privacy program and have primary responsibility for the EPO\'s privacy compliance software platform. The role will research, collect, and analyze information regarding the collection, use, and sharing of personal data by EOTSS and its vendors. They will help evaluate new projects, systems, and vendors to identify privacy-related risks and impact on the privacy rights of employees and constituents. This role will help to ensure that privacy considerations are integrated into everything we do at EOTSS. This is an opportunity to have a profound and positive impact on the privacy of Massachusetts residents. Applicants should have a demonstrated interest in developing an understanding of information systems, cybersecurity, data architectures, compliance, privacy laws, and related regulations. The primary work location for this role will be at
One Ashburton Place, Boston, Massachusetts 02108.
The work schedule for this position is
Monday through Friday, 9:00AM to 5:00PM EST.
This position is expected to follow a
hybrid
model of reporting to work that combines in-office workdays and work from home days as needed. All offers of employment into this position are conditional and subject to passing: a Massachusetts Criminal Background Check (CORI) and security training. Key Responsibilities
Administer privacy compliance software platform. Load data mapping and privacy assessment information into privacy compliance software platform. Assist with collecting information for data mapping and privacy impact assessments. Help mitigate legal and operational risks around personal and sensitive information. Data Mapping support will include: Identify flows of personal data through EOTSS and EOTSS-managed vendors Identify use of personal data by vendors, within projects, or otherwise in data storage systems maintained by EOTSS Privacy Impact Assessments support will include: Assist Risk Team with Privacy Components of Risk Assessments Review Vendor Risk Assessments for Privacy Impact Conduct initial Privacy Impact Assessments of projects, data systems, and vendors Preferred Qualifications
3-5 years of experience working with cross-functional teams in a corporate or government setting Experience with privacy impact assessments and drafting initial reports Excellent communication skills to gather information and assessment data across various teams and organizational levels Familiarity with privacy and GRC software solutions, with a preference for ServiceNow Familiarity with SaaS solutions Experience in Privacy, Information Security, or Compliance is a plus Experience in data entry, software administration, or cloud platform management is a plus Demonstrated interest in data privacy Knowledge of privacy laws such as FIPA, FOIA, HIPAA, and GLBA is a plus Seniority level
Mid-Senior level Employment type
Contract Job function
Legal and Information Technology Industries Information Technology & Services and Government Administration
#J-18808-Ljbffr