Job ID: NC-768095 (97890724)
Hybrid/Local Privacy Officer/Security Analyst (CISA/CIPM/CIPP) (12+)with GRC, HIPAA/NIST/CJI, auditing, legal compliance/Cybersecurity/privacy laws, BPR and data strategist/adviser experience
Location: Raleigh, NC (NCAOC)
Duration: 6 Months
Position: 1(2)
Skills:
Experience using GRC (Governance Risk and Compliance) tools Required 3 Years
Experience with Incident Response procedures Required 3 Years
General understanding of HIPAA, NIST 800-53 r4 or greater, CJI state and federal guidelines regarding privacy Required 3 Years
Knowledge of and experience with legal compliance of Cybersecurity and privacy laws. Required 3 Years
Excellent written and oral communication skills Required 3 Years
Experience working in the Information Technology auditing or other highly regulated environment. Required 3 Years
Experience implementing compliance requirements in a matrixed environment utilizing complex information systems. Required 3 Years
Possess one or more of the following: CISA, CIPM, CIPP Nice to have 3 Years
Job Description:
The North Carolina Administrative Office of the Courts is seeking a self-motivated and strategic professional to oversee the ongoing re-engineering of the agency’s business processes to encourage an emphasis on data protection/security, and to factor data privacy into its long-term planning efforts including the day-to-day business practices. The incumbent will be responsible for regularly assessing the agency’s compliance with state and federal privacy law. Additionally, the Privacy Officer will develop and implements appropriate remediation steps if those assessments determine that such steps are necessary.
This position works closely with the Chief Information Security Officer, Risk Management Officer and other departments throughout the AOC. This role is one of a data strategist and adviser as well as a steward for protection of highly confidential information. The ideal candidate should possess a combination of business knowledge, technical skills, people skills, and the ability to guide data strategy and control standards. The Privacy Officer will report directly to the Risk Management Officer.