Job Description
Location: Hershey, PA Department: Legal / Privacy & Data Compliance Summary of Role: This position plays a critical role in Hershey's enterprise risk management and privacy programs by managing digital risk assessments driving risk intelligence. Role Responsibilities: β’ Manage digital risk assessment process including Privacy and AI, working collaboratively with internal and external stakeholders to ensure accurate risk identification and assessment β’ Primary advisor to the business on Privacy risk and compliance for specific use cases, helping to develop proposed solutions to achieve desired business outcomes while upholding compliance β’ Support digital risk tracking and remediation planning processes, including proper controls and accountability β’ Maintain accurate documentation to meet regulatory requirements (i.e. Record of Processing Activities [ROPAs], Data Protection Impact Assessment [DPIAs], Transfer Impact Assessment [TIAs], High risk AI use cases) β’ Partner with data governance and InfoSec teams to establish enterprise data mapping to enable accurate risk management β’ Review systems and processes for proper adherence to Hershey data retention, usage, and privacy/AI policies β’ Effectively communicate and collaborate with all departments and job levels across the enterprise β’ Ability to facilitate timely collaboration with risk domain owners and proper escalation on high-risk use cases β’ Lead staff augmentation resources effectively and efficiently Desired knowledge, skills, and abilities: β’ Experience managing risk assessment processes (i.e. Privacy Impact Assessments [PIA], AI Assessments) β’ Working knowledge of privacy and AI regulations including technology trends to enable the business on risk mitigation β’ Experience working in an enterprise Privacy SaaS tool (i.e. OneTrust or equivalent) specifically for PIAs, Risk Management, or Risk Intelligence Minimum Education and Experience Requirements: β’ Education β β’ Bachelorβs degree in related field β’ Experience β β’ At least 3+ years in privacy and/or risk management required β’ Privacy certifications (i.e. CIPP, CIPM, or CIPT) and/or risk management certifications strongly preferred β’ OneTrust application or equivalent tool certifications strongly preferred β’ Experience in CPG preferred #LI-TL1 #LI-Remote Apply tot his job
Ready to Apply?
Don't miss out on this amazing opportunity!
π
Apply Now