Privacy & Compliance Analyst Lead

Lee County Electric Cooperative   •  

Fort Myers, FL

Industry: Energy & Utilities

  •  

5 - 7 years

Posted 42 days ago

Position Summary: To assist the Director, Corporate Services and Enterprise Risk Manager with the development, implementation, and ongoing monitoring of LCEC's compliance strategy and processes. This role will work with internal business teams and technology partners to develop, implement and oversee comprehensive compliance programs, provide support and guidance for legal-related initiatives, and collaborate proactively with other departments on the resolution of compliance issues.

Position Responsibilities:


Develop, manage and update regulatory compliance programs to ensure the organization adheres to applicable Federal, State and local regulations and laws
Analyze and document privacy and information protection processes, policies and procedures and/or recommend and implement changes

Revise privacy and information protection programs as necessary

Monitor legislation related to privacy, information protection and utilities industry laws and regulations and identify impacts to related compliance programs

Work collaboratively to identify operational business needs; conduct associated contract reviews
Perform benchmarking/best practices research

Conduct risk assessments and identify controls to mitigate identified risks

Respond to internal and external compliance inquiries as a subject matter expert

Draft and facilitate reporting and/or responses to regulatory agencies, Chief Risk & Compliance Officer and Executive Management team

Conduct data analysis and research
Conduct compliance program performance analysis (e.g. metrics), and report on status of applicable compliance programs

Develop and support compliance-focused training and other materials for internal teams and departments

Maintain superior working relationships with employees, customers, leadership and external agencies and colleagues

Work closely with Cyber Security team to identify, mitigate and prevent security risks around customer, employee and company information
Participate as active member of internal breach response team

Manage subpoenas and other legal inquiries and responses

Investigate requests for legal review by conducting research; coordinate communications, document and organize/catalogue responses

Required Qualifications:


Bachelor's Degree related to information security, legal studies, risk management or similar
5 to 8 years of compliance and/or privacy and information protection experience

Knowledge of breach response

Knowledge of records retention methodologies

Working knowledge of project management methodologies
Professional level knowledge of risk mitigation strategies, internal controls and application of same

Exceptional research, analytical and investigative skills

Exceptional policy and process development capabilities

Ability to build programs and effect desired outcomes

Exceptional verbal and written communication skills
Strong attention to detail

Ability to work with information of a confidential nature with the highest integrity

Familiar with Florida statutes, privacy law, Red Flags rule, and Federal and State regulatory agencies

Desired Qualifications:

All required qualifications plus:

J.D. or Master's Degree

Certification(s) in CIPP – IAPP, CRCMP, or similar

At least three (3) years experience leading compliance programs in one (1) of the following areas: Privacy, Information Security, Regulatory Compliance, Business Processes, or Legal

Knowledge of FTC Red Flags Rule (ITPP), Information Security and Governance, Cybersecurity, and Cyber Insurance best practices
Prior experience in the electric utilities industry