The Department :
The Perseus operating group of Constellation Software Inc, is a portfolio of vertical market enterprise software companies.
Perseus acquires independently managed software companies around the world, providing them with the strategic guidance and financial security they need to become leaders within their respective markets.
Job Description :
The Perseus Operating Group, a division of Constellation Software (TSX : CSU), is seeking an energetic, independent and detail oriented Privacy Engineer to join our Contour office.
The Privacy Engineer is responsible for all ongoing activities related to the development, implementation, maintenance, and adherence to the organization's policies and procedures covering the privacy of the organization, which includes numerous subsidiaries and affiliates in multiple jurisdictions including the US, UK, Canada, and other countries.
The Privacy Engineer is responsible for the organization's Privacy Program including but not limited to daily operations of the program, development, implementation, and maintenance of policies and procedures, monitoring program compliance, investigation and tracking of incidents and breaches and ensuring consumers' rights in compliance with federal and state laws.
Key Responsibilities :
Reports to the Privacy Officer of the Perseus Operating Group, and assists in the development, identification, implementation, and maintenance of organization information security policies and procedures in coordination with organization management and administration
Contribute towards the execution of policies, standards and procedures specific set by enterprise standards (such as NIST, SANS, ISO 27001, PCI-DSS, GDPR, CCPA) as they apply to security governance, risk, and compliance requirements
Independently and effectively manage cloud security center (such as DLP) w.r.t data privacy principles.
Collaborate with local and Corporate IT team in managing and recommending new upgrades / processes for Data Loss Prevention DLP system.
Keeps Privacy officer and Portfolios point of contacts informed about DLP violations and changes to DLP management by preparing performance reports, communicating system status.
Works with Privacy Officer on data security initiatives across the organization.
Performs regular risk assessments of operational processes, identifying, and mitigating risks across the company through effective tools, training, and guidance
Develop information security training, education, and awareness programs to achieve compliance objectives (e.g., HIPAA, GDPR, PCI-DSS).
Ensure compliance with all the applicable policies and procedures.
Maintains quality service by following organization standards.
Maintains technical knowledge by attending educational workshops; contributes to team effort by accomplishing related results as needed.
Education and Technical Skills
Bachelor's Degree in Information Technology or related technical field.
Candidate should have a minimum of 3+ years either Information Security Risk or Cyber Security Risk experience.
1+ years in cloud-based environments (AWS, GCP, Azure, etc.)
Must have experience on working on data security awareness programs and conducting data security / policies enforcement trainings.
Sound working knowledge of industry best practices (NIST, ISO, SANS, COBIT, CERT) and Legislative and Regulatory and Industry Compliance Requirements (Sox, PCI, CCPA, etc.).
Must have exceptional written, verbal and presentation communication skills.
Ability to facilitate cross-functional teams.
Ability to translate business requirements into control objectives.
Strong project management skills.
Exciting Benefits we offer :
Medical Coverage Self & Dependents
Parents Medical Coverage
Employee Performance-based bonuses
Home Internet Subsidy
Profit Sharing Plan Tenured Employees Only
Child Care Facility
Company Provided Lunch / Dinner
Professional Development Budget
Recreational area for in-house games
Sporadic On-shore training opportunities
Friendly work environment