Lead Privacy Compliance Senior Advisor

Job Description

Join the Clean Energy Revolution

Become a Lead Privacy Compliance Senior Advisor at Southern California Edison (SCE) and build a better tomorrow. In this role, you'll serve as the Privacy Compliance program manager within the Ethics & Compliance organization reporting directly to the Chief Privacy Compliance officer. As a Lead Privacy Compliance Senior Advisor, your work will help power our planet, reduce carbon emissions and create cleaner air for everyone. Are you ready to take on the challenge to help us build the future?

A day in the life - Get ready to think big, work smart and shine bright!

The Privacy Compliance Program at SCE develops and maintains controls to ensure the responsible collection, use and protection of all Personal Information (PI) over which the company has custody or control. As the Lead Privacy Compliance Senior Advisor, you will be the point of contact for the company and will be supported by the Enterprise Information Governance team, Operating Unit Information Governance teams and Legal Department. You will also be responsible for the following:
  • Issue Management (Privacy Incident Resolution and Prevention) - Detect and respond to incidents and potential issues of non-compliance. Respond to advice calls. Coordinate governance requirements for Data Loss Prevention (DLP) technology implementation in partnership with IT Cybersecurity. Develop strategy and requirements for third-party compliance with PC Program requirements. Assure PI data maps are kept current and reflect data use and handling for existing and new company initiatives, technology projects, and third-party sharing.
  • Prevention (Data loss prevention, third-party compliance) - Develop the Data Loss Prevention Program (DLP) strategy for PI, collaborating with Enterprise Information Governance and IT Cybersecurity. Monitor DLP system results and resolve issues. Implement encryption solution for high-risk data in IT-supported systems.
  • Major Project Support - Work with the OUs to identify PI and systems requiring protection. Develop policy, procedures, and training to ensure PI is protected from unauthorized access and used in accordance with applicable laws and regulations. Work with IT, HR, Law and CS to manage privacy controls for third-party vendors and SCE.com. Coordinate independent CPUC-required audit of confidential data.
  • Identify and intake privacy compliance requirements - Monitor legislation and industry standards for evolving requirements (e.g., GAPP, FIPPS, NIST). Maintain privacy requirements and build/assess controls in the Enterprise Compliance Management System (ECMS). Monitor ECMS data quality.
  • Privacy Compliance Program Administration - Supervise the Privacy Specialist role and provide general support. Maintain policy, procedures, and job aids. Collect, maintain, and analyze metrics related to Privacy Compliance Program effectiveness. Develop policy and procedures for compliance with Intellectual Property protection. Develop and maintain Privacy Compliance Program documentation and training. Provide routine reports (e.g., Compliance Posture Reports) on the health of the PC Program.
  • Training/Communication - Promote a culture of compliance throughout the company for protecting PI. Develop training materials. Conduct training and informational presentations to inform and educate.
Qualifications

The essentials
  • Bachelor's degree.
  • Ten years of experience in compliance or legal related field.
  • Five years of experience leading a privacy compliance program or function.

The preferred
  • CIPP US (Certified Information Privacy Professional, United States), CIPT (Certified Information Privacy Technologist), and CIPM (Certified Information Privacy Manager), Project Manager Professional (PMP) preferred.
  • In-depth knowledge of privacy legislation, regulations, and industry standards, including GDPR.
  • Strong analytical, presentation and strong written and verbal communication skills.
  • Proficient in Microsoft Office Suite, including PowerPoint.
  • Familiarity with ISO 27001 and NIST Privacy Framework.
  • Experience with data loss prevention tools.
  • Expert at relaying highly technical information in a manner understood by executives and organizational unit leaders.
  • Attention to detail, with a mindset for improving processes.

You should know
  • Visit our Candidate Resource page to get meaningful information related to benefits, perks, resources, testing information, and hiring process, and more!
  • This position requires testing and applicants who are identified to continue through the selection process will be invited to test via email. Please access our Information Guides , to reference Edison Individual Contributor Workstyles test 8203. Candidates who have previously passed these assessment(s), in some cases, may not need to retest again for this position.
  • This position may require working after-hours, weekends, and holidays, as needed.
  • Relocation may apply to this position.

About Southern California Edison

The people at SCE don't just keep the lights on. Our mission is so much bigger. We're fueling the kind of innovation that's changing an entire industry, and quite possibly the planet. Join us and create a future with cleaner energy, while providing our customers with the safety and reliability they demand. At SCE, you'll have a chance to grow personally and professionally, making a real impact in Southern California and around the world.

At SCE, we celebrate our differences. We are a proud Equal Opportunity Employer and will not discriminate based on race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status or any other protected status.

We are committed to ensuring that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. #LI-HY1

71033627