Job Description

The purpose of this job is to support the development, implementation and maintenance of the company’s privacy and information security policies and procedures that protect personally identifiable information and sensitive company information.


Essential Functions

1. Support the development, implementation and administration of policies and procedures to ensure that the protection of personal data and sensitive company information is in compliance with organization and regulatory requirements

2. Collaborate with legal and IT departments to identify personal data risks and to establish procedures to eliminate those risks

3. Coordinate with business units to complete privacy impact and information security assessments to identify privacy and security risks to the company; work closely with internal team members and third-party vendors to remediate

4. Collaborate with subject matter experts (SMEs) to develop procedures for data access, protection and backup

5. Ensure ongoing privacy and information security compliance with appropriate privacy and information security protections in place

6. Promote awareness of privacy and information security requirements and assist in the development and execution of the company’s privacy, information security awareness and data-compliance training programs

7. Support incident response efforts in the event of a security breach, and partner with appropriate departments in breach notification activities

8. Assist in the oversight and management of privacy and information security risk remediation projects and in developing and executing audit plans for privacy and information security controls

9. Develop repeatable processes to ensure team member compliance with written policies and procedures


Qualifications

* Bachelor’s degree in IT or related field of equivalent experience preferred

* Minimum three years’ privacy or information security analysis or security operation experience required

* Certified Information Privacy Professional (CIPP) certification preferred

* Intermediate Microsoft Office skills required; advanced skills preferred

* Familiarity with privacy and data security laws and regulations including: California Consumer Privacy Act (CCPA), Health Insurance Portability Accountability Act (HIPAA) and Payment Card Industry Data Security Standard (PCI-DSS)


Specialized Knowledge

* Intermediate level knowledge of privacy and information security best practices and audit functions, as well as information technology infrastructure

* Intermediate level knowledge of privacy and information security risk assessment best practices, and privacy and information security standards

* Understanding of the company’s processing operations, information systems, data security and data protection needs


Competencies 

* Excellent written and verbal communication skills and presentation skills

* Ability to take initiative and work independently

* Ability to communicate effectively with subject matter experts, privacy leadership

and management, service providers and third parties

* Excellent organizational skills with high attention to detail

* Strong critical thinking and problem-solving skills

* Ability to manage multiple priorities, meet project deadlines, complete tasks in a

timely fashion and follow up

* Ability to lead, collaborate and work with a team to exceed goals and targets

* Ability to handle sensitive and confidential information ethically and responsibly





5508 Lonas Rd
Knoxville
TN

Application Instructions

Please click on the link below to apply for this position. A new window will open and direct you to apply at our corporate careers page. We look forward to hearing from you!

Apply Online