Business Analyst FinanceIT

· Develop and implement an information governance program, including policies, procedures, and guidelines that align with the organization's strategic objectives and industry standards.

· Establish data classifications and work with end users and technical teams to assign all firm data into the appropriate classifications.

· Implement a data retention program, working with IT and Firm leadership to identify standards and guidelines that support the business needs and client data disposal requirements.

· Collaborate with IT leadership to discover, catalog, and map the locations of all firm digital assets, ensuring a clear understanding of the data's purpose and alignment with data classification and retention practices.

· Oversee the firms third-party vendor risk program by developing and maintaining a vendor risk management program, conducting due diligence on vendors, and monitoring vendor compliance with contractual obligations.

· Work on audits and assessments of the company's information governance program, including regulatory compliance audits and client assessments.

· Monitor compliance with data protection and privacy regulations, including GDPR, CCPA, and other applicable regulations.

· Manage the firm's risk register and conduct periodic risk assessments to identify potential threats to data security and privacy..

· Develop and conduct training and awareness programs to educate employees on information security, governance policies and procedures.

· Monitor changes to laws, regulations, and industry standards and adjust policies and procedures accordingly.

· Ensure that data is managed in a compliant and secure manner throughout its lifecycle, from creation to disposal.

· Develop and maintain relationships with external partners, including regulators, industry associations, and vendors.

· Work with IT management on firm audits.

EXPERIENCE REQUIREMENTS:

· Minimum of at least three years of experience in information governance and information security

· Knowledge of data protection and privacy regulations, including GDPR, CCPA, and other applicable regulations.

· Understanding of information security principles and practices.

· Understanding of Data Loss Prevention and Classification tools.

· Experience with vendor risk management platforms.

· Experience implementing data retention policies and data lifecycle programs.

· Must have hands-on experience working inside a document management system.

· Excellent written and verbal communication skills.

· Strong analytical and problem-solving skills.

· Ability to work independently and as part of a team.

· Strong organizational skills and attention to detail.

The role will be a critical in managing the firm's Information Security Compliance & Governance program and ensuring that the firm's information is properly governed, protected, and compliant with all relevant regulations and standards.

Job Type: Contract

Pay: $ - $ per year

Benefits:

• Health insurance
• Paid time off
• Vision insurance

Schedule:

• 8 hour shift

Experience:

• Data Loss Prevention: 2 years (Required)

Ability to Commute:

• New York, NY (Preferred)

Work Location:

Hybrid remote in New York, NY