NDU UMEH
Cleveland,OH
Summary
Dynamic Data Privacy Analyst with a proven track record at First National Bank, excelling in compliance with CCPA and GDPR. Expert in risk assessment and policy management, I foster collaboration across teams to enhance data security and drive process improvements, ensuring robust adherence to privacy laws while cultivating a culture of compliance.
Overview
9
9
years of professional experience
1
1
Certification
Work History
Data Privacy Analyst
First National Bank
01.2021 - Current
- Collaborate with Chief Privacy Officer to implement laws and Frameworks like CCPA, GDPR, GLBA, FCRA, PIPEDA, ISO ISO27001, ISO 27701 and SOC2
- Improved internal knowledge sharing by developing comprehensive documentation outlining standard operating procedures for various tasks.
- Collaborated with cross-functional teams to identify opportunities for process improvement and increased efficiency.
- Review, manage and respond to data subject rights requests
- Collaborate with internal teams advising on privacy related matters and ensuring adherence to internal policies and privacy laws
- Process, implement and monitor Privacy Impact Assessments (PIA and DPIA)
- Ensure the implementation and ongoing review of procedures and policies related to data privacy
- Responsible for development of annual data privacy training materials and business unit specific training and manages employee compliance with required training
- Analyze Data Privacy Risk and Vulnerability
- Conduct risk assessments to identify potential threats, assess the likelihood of a breach, and determine the impact of a breach on the organization
- Responsible for monitoring compliance with data privacy policies and procedures
- Conduct audits internally and externally to ensure that the policies are being followed and that data is being stored and processed securely
- Responsible for our creating and updating Record of Processing Activities (ROPA), data mapping and data inventory
- Managed multiple projects simultaneously while adhering to strict deadlines and quality standards.
- Cultivated positive relationships with vendors to deliver timely and cost-effective supply of services and materials.
- Critically evaluates data flow from both inboard and outboard data and data gathered from multiple sources
- Collaborate with different business units such as HR, IT, Security, Marketing, Customer Service to incorporate Privacy by Design.
- Collaborate with Legal to review Data Processing Agreement (DPA)and Standard Contractual Clauses (SCCs)
Governance, Risk and Compliance Analyst
GE Healthcare
01.2019 - 01.2021
- Collaborated with cross-functional teams for the successful implementation of new compliance initiatives.
- Monitored adherence to industry regulations, ensuring timely reporting of any discrepancies or violations.
- Prepared documentation and records for upcoming audits and inspections.
- Served as a subject matter expert on compliance matters, providing guidance and support to colleagues across various departments.
- Improved company''s risk management strategy by identifying, assessing, and mitigating potential risks related to noncompliance.
- Developed improvement and corrective action plans to bring operations in line with requirements.
- Assisted in the development of a comprehensive risk assessment framework for evaluating potential threats to organizational compliance systems.
- Evaluated third-party vendors for compliance with applicable laws and regulations, minimizing potential exposure to penalties or sanctions.
- Supported and trained customers on compliance-related issues.
- Conducted regular reviews of company policies and procedures for alignment with regulatory requirements and industry best practices.
- Stayed current with latest changes to applicable regulatory standards and company procedures.
- Contributed to the development of a strong compliance culture within the organization by promoting awareness of relevant rules and guidelines through training sessions and communications campaigns.
Information Security Analyst
CVS Health
11.2016 - 12.2018
- Led security certification project to achieve/maintain required compliance for the organization
- Supported legal teams in investigations involving cybercrime or data breaches, providing crucial technical expertise.
- Conducted internal assessments to verify policies, procedures, and controls are in accordance with FedRAMP, HITRUST, GDPR, ISO27001, NIST, HIPAA, and FISMA standards
- Collected, reviewed, and organized PCI and ISO documentation and supporting evidence required for certification and/or attestation
- Responsible for identifying security gaps in internal policies, guidelines and/or procedures
- Audited the existing processes and documentation in order to identify opportunities for improvement
- Established relationships and build trust with internal and external security stakeholders
- Managed relationship with certification body to and conduct all audit scheduling, financial and administrative activities
- Responsible for all third-party risk management by collection, review, and analysis of information provided by vendor related to their security posture
- Revamped the information security management system by streamlining the management review process, continuous improvement process, and interested party communications
- Collaborated with IT teams to ensure seamless integration of security measures into existing infrastructure.
Education
Bachelor of Science -
Imo State University
Nigeria05.2014
Skills
- Legal compliance
- Internal and External Audits
- Incident Response Management
- Third Part Risk Management
- Regulatory Compliance
- Policy and Procedure Management
- CCPA, GDPR, HIPAA,
- Vulnerability Management
- Risk Assessment and Risk Management
- Personal Data Protection
- Privacy Compliance
- Data mapping, Data Inventory, ROPA
- Data Security
- Information Security standards
- Team collaboration and leadership
- Project management
- Process improvements
- Risk analysis
- Data privacy laws
Certification
- IAPP, Certified Information Privacy Professional - CIPP/E
- Certified CompTIA A +
Skills
5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5,5
Timeline
Data Privacy Analyst
First National Bank
01.2021 - Current
Governance, Risk and Compliance Analyst
GE Healthcare
01.2019 - 01.2021
Information Security Analyst
CVS Health
11.2016 - 12.2018
Bachelor of Science -
Imo State University
Similar Profiles
Keamogetswe Rosemary LetshutiKeamogetswe Rosemary Letshuti
CALL CENTER AGENT at First National BankCALL CENTER AGENT at First National Bank
Prince MasiaPrince Masia
Credit Manager at First National BankCredit Manager at First National Bank
Kellen BothaKellen Botha
Project Coordinator at First National BankProject Coordinator at First National Bank
Bianca MalamboBianca Malambo
Private Banker at First National BankPrivate Banker at First National Bank
Douglas StumpflDouglas Stumpfl
Regional Sales Manager at Weh Technologies, Inc.Regional Sales Manager at Weh Technologies, Inc.