Y&L Consulting, Inc.
Data Privacy Analyst
โญ - Featured Role | Apply direct with Data Freelance Hub
This role is for a Data Privacy Analyst, a 12-month contract based in San Antonio, TX, with a pay rate of "X". Requires 3 years of experience in data protection, knowledge of GDPR and CCPA, and certifications like CIPM.
๐ - Country
United States
๐ฑ - Currency
$ USD
-
๐ฐ - Day rate
Unknown
-
๐๏ธ - Date
April 1, 2026
๐ - Duration
Unknown
-
๐๏ธ - Location
On-site
-
๐ - Contract
Unknown
-
๐ - Security
Unknown
-
๐ - Location detailed
San Antonio, Texas Metropolitan Area
-
๐ง - Skills detailed
#Data Management #Data Privacy #Data Processing #Data Governance #PCI (Payment Card Industry) #Scala #Strategy #DPIA (Data Protection Impact Assessment) #GDPR (General Data Protection Regulation) #Security #Compliance
Role description
This role in onsite Monday through Friday in San Antonio TX 78215
Our team members are critical to our long-term success โ so wherever in the world they work, everyone works together.
Within our Data Protection Team we are looking for a Data Protection and Privacy, Analyst working from our exciting downtown San Antonio, TX office.
This position will work closely with the Legal, Procurement, Security, Compliance and IT teams to identify, document and support initiatives necessary in developing, implementing and maintaining elements of data management and compliance goals, strategies, communications, governance models, and plans necessary to establish and maintain the appropriate business and operational strategy for data governance and compliance purposes.
This includes supporting the development and implementation of the data governance, protection, and privacy programs for the protection of data throughout its lifecycle.
In addition, the role will work with and support stakeholders to define the applicable information governance, data protection and data privacy requirements in all relevant jurisdictions.
What does an Analystโs day to day duties look like:
- Maintains and supports data protection and privacy programs through successful on-time delivery of planned objectives
- Assists in developing, administering and maintaining enterprise risk-management processes and procedures with an emphasis on risk controls.
- Collects data from different departments to prepare the quarterly risk report to Data Protection, Security, and Risk Committees..
- Assists and participates in the design, development, and implementation of a Data Protection Impact Assessment (DPIA) process, with a focus on the portions of the process that assess the processing to be performed and the non-technological risks to the rights and freedoms of data subjects.
- Participates in audit and regulatory inquiries and external vendor activities to help represent the Company from information security and customer privacy perspectives
- Assists in designing, implementing, and auditing the IT privacy and security quality management system.
- Collaborates across the organization to review business processes and procedures and verify that they support and preserve individualsโ privacy rights, and to review how individual consent is sought, obtained, and recorded. Identify gaps and contribute to the development of project plan(s) to close the gaps and meet the data protection requirements set forth by applicable national and international data privacy and security laws and regulations.
- Supports and participates in the design, development, and implementation of IT security and privacy solutions for responding to data subject rights requests, including access and rectification, data portability, right to withdraw consent, right to object, right to be forgotten, right to restriction of processing and not to be subject to automated decision-making and profiling.
- Provides support, advice and guidance to the data protection team, data governance and IT team to ensure IT systems and developments adhere to the privacy, data protection, and information security requirements of current and new laws and regulations. Contributes to the development and delivery of initial and ongoing privacy and information security awareness and training to university faculty and staff.
- Serves as a resource for information privacy and security.
- Assists Data Protection team with improving policies and processes including providing best practice and workflow guidance.
- Actively monitors risks and issues for assigned projects and when necessary, escalates issues to managementโs attention for guidance and assistance in reaching a resolution
Whatโs required for the position:
- 3 yearsโ Experience working with highly sensitive and confidential information and projects with a minimum of 1 years of security-related experience in a global role.
- Excellent organizational skills and ability to operate and communicate effectively while meeting multiple deadlines and completing projects simultaneously.
- Ability to analyze information and construct an action plan tailored to resolve issues effectively and cooperatively.
- Ability to read and comprehend complex terminology and procedures in order to provide thorough and accurate guidance and assessments.
- Knowledge of compliance, international, federal and state laws, regulations, and guidance related to information privacy and security and compliance.
- Working knowledge of global privacy and information security laws and regulations (including CCPA, GDPR, GLBA, and HIPAA) that aligns with data processing operations and level of data protection required for the personal data processed by data controllers and data processors.
- 1 years of experience in a security, compliance, risk and/or privacy-related role with quality management experience in data protection, data policy, privacy claims, and information security compliance.
- CIPM, or equivalent required. CIPP, PCI ISA/QSA, CISA, CISM, CISSP Preferred.
- Demonstrated ability to use superior judgment and discretion in dealing with sensitive and confidential information.
- Working knowledge of ISO 27001, PCI, HIPAA, NIST, and/or equivalent series of standards.
- Ability to chart a course of action that effectively and efficiently assists the organization and department in fulfilling goals and objectives.
- Proven knowledge of formal information security and privacy standards, techniques and methodologies.
- Ability to collaborate effectively and work both independently and in a team environment.
- Exceptional verbal and written communication skills.
- Exceptional people skills. Ability to interact in a positive, productive manner with others (demonstrating sensitivity, tact, and professionalism).
- Ability to deal effectively with difficult situations.
- Highly motivated, team oriented, professional and trustworthy, with strong skills in personal diplomacy.
We apply original thinking If you have these preferred skills, that is even better:
- Experience in a Security, Privacy, Compliance, and/or risk management function within both consultancy and company.
- Specific or additional training in information privacy and security. Prior experience in an Insurance setting.
-One or more of the following preferred:
- CIPP
- CISA
This role in onsite Monday through Friday in San Antonio TX 78215
Our team members are critical to our long-term success โ so wherever in the world they work, everyone works together.
Within our Data Protection Team we are looking for a Data Protection and Privacy, Analyst working from our exciting downtown San Antonio, TX office.
This position will work closely with the Legal, Procurement, Security, Compliance and IT teams to identify, document and support initiatives necessary in developing, implementing and maintaining elements of data management and compliance goals, strategies, communications, governance models, and plans necessary to establish and maintain the appropriate business and operational strategy for data governance and compliance purposes.
This includes supporting the development and implementation of the data governance, protection, and privacy programs for the protection of data throughout its lifecycle.
In addition, the role will work with and support stakeholders to define the applicable information governance, data protection and data privacy requirements in all relevant jurisdictions.
What does an Analystโs day to day duties look like:
- Maintains and supports data protection and privacy programs through successful on-time delivery of planned objectives
- Assists in developing, administering and maintaining enterprise risk-management processes and procedures with an emphasis on risk controls.
- Collects data from different departments to prepare the quarterly risk report to Data Protection, Security, and Risk Committees..
- Assists and participates in the design, development, and implementation of a Data Protection Impact Assessment (DPIA) process, with a focus on the portions of the process that assess the processing to be performed and the non-technological risks to the rights and freedoms of data subjects.
- Participates in audit and regulatory inquiries and external vendor activities to help represent the Company from information security and customer privacy perspectives
- Assists in designing, implementing, and auditing the IT privacy and security quality management system.
- Collaborates across the organization to review business processes and procedures and verify that they support and preserve individualsโ privacy rights, and to review how individual consent is sought, obtained, and recorded. Identify gaps and contribute to the development of project plan(s) to close the gaps and meet the data protection requirements set forth by applicable national and international data privacy and security laws and regulations.
- Supports and participates in the design, development, and implementation of IT security and privacy solutions for responding to data subject rights requests, including access and rectification, data portability, right to withdraw consent, right to object, right to be forgotten, right to restriction of processing and not to be subject to automated decision-making and profiling.
- Provides support, advice and guidance to the data protection team, data governance and IT team to ensure IT systems and developments adhere to the privacy, data protection, and information security requirements of current and new laws and regulations. Contributes to the development and delivery of initial and ongoing privacy and information security awareness and training to university faculty and staff.
- Serves as a resource for information privacy and security.
- Assists Data Protection team with improving policies and processes including providing best practice and workflow guidance.
- Actively monitors risks and issues for assigned projects and when necessary, escalates issues to managementโs attention for guidance and assistance in reaching a resolution
Whatโs required for the position:
- 3 yearsโ Experience working with highly sensitive and confidential information and projects with a minimum of 1 years of security-related experience in a global role.
- Excellent organizational skills and ability to operate and communicate effectively while meeting multiple deadlines and completing projects simultaneously.
- Ability to analyze information and construct an action plan tailored to resolve issues effectively and cooperatively.
- Ability to read and comprehend complex terminology and procedures in order to provide thorough and accurate guidance and assessments.
- Knowledge of compliance, international, federal and state laws, regulations, and guidance related to information privacy and security and compliance.
- Working knowledge of global privacy and information security laws and regulations (including CCPA, GDPR, GLBA, and HIPAA) that aligns with data processing operations and level of data protection required for the personal data processed by data controllers and data processors.
- 1 years of experience in a security, compliance, risk and/or privacy-related role with quality management experience in data protection, data policy, privacy claims, and information security compliance.
- CIPM, or equivalent required. CIPP, PCI ISA/QSA, CISA, CISM, CISSP Preferred.
- Demonstrated ability to use superior judgment and discretion in dealing with sensitive and confidential information.
- Working knowledge of ISO 27001, PCI, HIPAA, NIST, and/or equivalent series of standards.
- Ability to chart a course of action that effectively and efficiently assists the organization and department in fulfilling goals and objectives.
- Proven knowledge of formal information security and privacy standards, techniques and methodologies.
- Ability to collaborate effectively and work both independently and in a team environment.
- Exceptional verbal and written communication skills.
- Exceptional people skills. Ability to interact in a positive, productive manner with others (demonstrating sensitivity, tact, and professionalism).
- Ability to deal effectively with difficult situations.
- Highly motivated, team oriented, professional and trustworthy, with strong skills in personal diplomacy.
We apply original thinking If you have these preferred skills, that is even better:
- Experience in a Security, Privacy, Compliance, and/or risk management function within both consultancy and company.
- Specific or additional training in information privacy and security. Prior experience in an Insurance setting.
-One or more of the following preferred:
- CIPP
- CISA
