Privacy Analyst (Engineering Focus) - R01533572

About Brillio:

Brillio is one of the fastest growing digital technology service providers and a partner of choice for many Fortune 1000 companies seeking to turn disruption into a competitive advantage through innovative digital adoption. Born digital in 2014, Brillio applies its expertise in customer experience transformation, data analytics, Artificial Intelligence, platform and product engineering, cloud infrastructure, and security to help clients quickly innovate for growth, create digital products, build service platforms, and drive smarter, data-driven performance.

Brillio, renowned for its world-class professionals, referred to as "Brillians," distinguishes itself through their capacity to seamlessly integrate cutting-edge digital and design thinking skills with an unwavering dedication to client satisfaction. Brillio takes pride in its status as an employer of choice, consistently attracting the most exceptional and talented individuals due to its unwavering emphasis on contemporary, groundbreaking technologies, and exclusive digital projects. Brillio's relentless commitment to providing an exceptional experience to its Brillians and nurturing their full potential consistently garners them the Great Place to Work® certification year after year.

Privacy Analyst (Engineering Focus)

• GCP Security

• GCP Infrastructure Engineering: Senior Tech Specialist, Security

• Analyze privacy risks and compliance requirements associated with new cloud technologies, products, and services.
• Conduct data flow assessments of cloud-based systems and identify potential privacy impacts on individuals.
• Develop clear and concise privacy impact assessments (PIAs) for cloud projects and advise on mitigation strategies.
• Review data collection practices, data usage policies, and privacy notices for cloud offerings for accuracy and compliance.
• Collaborate with cloud engineering teams to design and implement privacy-enhancing technologies and features.
• Guide cloud engineering teams on best practices for data minimization, anonymization, and encryption techniques in the cloud.
• Stay abreast of evolving privacy regulations and legislation, including GDPR, CCPA, and others, as they apply to cloud environments.
• Assist with incident response and data breach investigations in the cloud as needed.
• Communicate effectively with stakeholders across various departments to promote cloud privacy awareness and compliance.
• Develop and maintain documentation on cloud-specific privacy policies, procedures, and controls.
• Continuously develop and enhance knowledge of privacy best practices and emerging technologies in the cloud landscape.

• Bachelor's degree in Computer Science, Engineering, Law, or a related field.
• Minimum of 2 years of experience in a privacy or data protection role, preferably with a focus on cloud technologies.
• Strong understanding of privacy principles, frameworks, and regulations (GDPR, CCPA, etc.) in the context of cloud services.
• Knowledge of data security principles and threat modeling techniques, particularly as applied to cloud environments.
• Familiarity with privacy-enhancing technologies (PETs) and their implementation within cloud infrastructure.
• Experience conducting data flow assessments, privacy impact assessments (PIAs), and risk mitigation strategies for cloud projects.
• Excellent analytical and problem-solving skills with a detail-oriented approach to cloud privacy issues.
• Ability to communicate complex technical information about cloud systems and data clearly and concisely to both technical and non-technical audiences.
• Strong interpersonal skills and ability to collaborate effectively with cross-functional teams involved in cloud development and operations.
• Self-motivated and proactive with a strong work ethic and ability to learn quickly in the dynamic cloud environment.
• Ability to prioritize tasks effectively and manage multiple projects simultaneously within the cloud environment.
• Strong written and verbal communication skills, with the ability to create clear and concise documentation related to cloud privacy practices.

• 3 years of experience in a privacy or data protection role on 1 or more public cloud technologies – GCP, AWS, Azure, Oracle, IBM
• Strong grasp of privacy principles, frameworks, and regulations (GDPR, CCPA, etc.) in the context of Cloud services aligned to NIST, WAF
• Knowledge of data security principles and threat modelling techniques, particularly as applied to cloud environments
• Familiarity with privacy-enhancing technologies (PETs) and their implementation within cloud infrastructure
• Experience conducting data flow assessments, privacy impact assessments (PIAs), and risk mitigation strategies for cloud projects

• Experience in implementing security solutions for enterprise cloud (e.g., threat detection and hunting, malware intelligence, cloud security posture management, or identity and access management systems)
• Good awareness of product and solution market trends in the cybersecurity industry (e.g., ransomware, attack frameworks, zero trust, etc.)
• Certifications in privacy frameworks such as CIPP/E, CIPM, or others, with a focus on cloud technologies

Know what it’s like to work and grow at Brillio: Click here