<p><em><strong>BIS Safety Software</strong></em> is a SaaS company on a mission to change how organizations manage safety, learning, and compliance. Since 2006, we've been building an innovative software solution in a space where trust and data integrity matter. As we grow, so does the need to strengthen how we manage risk, protect client data, and meet evolving regulatory standards. We are expanding our team and are looking to add a Privacy and Compliance Analyst, who excels in risk management and compliance. BIS is headquartered in Sherwood Park, Alberta. We are open to filling this role remotely or in-person. </p> <p> </p> <p><strong>About the Role</strong></p> <p> </p> <p> </p><p>As our dynamic and proactive Privacy and Compliance Analyst, you'll be instrumental in supporting our Risk & Compliance (R&C) initiatives, ensuring our operations align with privacy laws and industry standards. You'll work closely with various teams, providing guidance, managing projects, and facilitating risk processes to support our growth and scalability. If you are particular about the particulars, enjoy building things that didn't exist before and making the things that do exist work better, this is a strong fit.</p> <p></p> <p> </p> <p></p><p><br></p><b>In This Role, You Will Be Expected To:</b><ul> <li data-section-id="1bllo8m" data-start="286" data-end="455"><strong data-start="288" data-end="330">Execute Risk & Compliance Initiatives:</strong> Manage and deliver privacy, security, and compliance projects, ensuring alignment with organizational goals and timelines.</li> <li data-section-id="1u6l5eo" data-start="457" data-end="638"><strong data-start="459" data-end="491">Identify and Mitigate Risks:</strong> Proactively assess operational, IT, and data privacy risks, partnering with cross-functional teams to implement effective mitigation strategies.</li> <li data-section-id="dny75q" data-start="640" data-end="836"><strong data-start="642" data-end="675">Build and Improve Frameworks:</strong> Develop, maintain, and enhance compliance frameworks, policies, and procedures aligned with evolving regulations (PIPEDA, COPPA, GDPR) and industry standards.</li> <li data-section-id="erox13" data-start="838" data-end="993"><strong data-start="840" data-end="875">Support Audits and Assessments:</strong> Coordinate third-party audits (e.g., SOC 2, PCI DSS) and conduct internal assessments to ensure ongoing compliance.</li> <li data-section-id="189wd21" data-start="995" data-end="1150"><strong data-start="997" data-end="1031">Strengthen Security Practices:</strong> Support software security improvements and contribute to initiatives that enhance controls and reduce risk exposure.</li> <li data-section-id="1a3ram9" data-start="1152" data-end="1304"><strong data-start="1154" data-end="1184">Manage Security Incidents:</strong> Lead or support incident response activities, including investigation, documentation, communication, and remediation.</li> <li data-section-id="rrv8qi" data-start="1306" data-end="1469"><strong data-start="1308" data-end="1344">Review and Resolve R&C Requests:</strong> Triage and respond to compliance-related tickets and inquiries, providing timely guidance and solutions to internal teams.</li> <li data-section-id="1u0fk37" data-start="1471" data-end="1643"><strong data-start="1473" data-end="1517">Research and Apply Regulatory Standards:</strong> Stay current on privacy laws and industry requirements, translating them into practical policies and operational processes.</li> <li data-section-id="1lsw8mq" data-start="1645" data-end="1787"><strong data-start="1647" data-end="1674">Communicate and Report:</strong> Prepare clear, accurate compliance documentation and reports for internal stakeholders, clients, and auditors.</li> <li data-section-id="1matvr9" data-start="1789" data-end="1949"><strong data-start="1791" data-end="1820">Engage with Stakeholders:</strong> Liaise with clients, vendors, auditors, and internal teams to address compliance requirements and support ongoing initiatives.</li> <li data-section-id="9hv2mb" data-start="1951" data-end="2098"><strong data-start="1953" data-end="1988">Deliver Training and Awareness:</strong> Support training efforts and help foster a culture of data security and compliance across the organization.</li> </ul><p><br></p><b>You Might Be the Right Fit If You:</b><ul> <li data-section-id="1pboakn" data-start="79" data-end="158">Proactive and confident in engaging with stakeholders across various levels</li> <li data-section-id="9c5swq" data-start="159" data-end="254">Strong interpersonal skills with the ability to build and maintain cross-team relationships</li> <li data-section-id="ok93t5" data-start="255" data-end="325">Excel at evaluating, assessing, and troubleshooting complex issues</li> <li data-section-id="nwa8i8" data-start="326" data-end="422">Thrive in dynamic environments with the ability to multitask and manage competing priorities</li> <li data-section-id="1qhc3c8" data-start="423" data-end="483">Extroverted and energized by collaborative work settings</li> <li data-section-id="1u4hx8j" data-start="484" data-end="566">Demonstrate a proactive approach to problem-solving and continuous improvement</li> <li>Have strong proficiency in Microsoft 365, with an interest in IT and technology (IT background is an asset).</li> </ul><p><br></p><b>Qualifications we are looking for:</b><ul> <li>5+ years of experience in privacy, data security, compliance, and risk management.</li> <li>Postgraduate education in cybersecurity or a related field.</li> <li>Strong understanding of Canadian privacy laws and regulations.</li> <li>Experience in providing training and developing policy documents related to privacy and compliance.</li> <li>Project management experience; PMP certification is a strong asset but not required.</li> <li>Bonus points if you have a CIPP/C, CIPM, or other relevant privacy/security certifications</li> </ul><p><br></p><b>Compensation and benefits:</b><div> <ul> <li>Employee Stock Ownership Plan (ESOP)</li> <li>Full medical, dental, and vision coverage</li> <li>Life insurance and disability insurance</li> <li>Health spending account</li> <li>Flexible working hours</li> <li>On-the-job training and growth opportunities</li> <li>Free on-site parking</li> </ul> </div><p><br></p><p></p> <div>$75,000 - $95,000 a year</div><small><div>Salary ranges are based on experience, reflecting the unique skillset each individual brings to the role.</div></small> <p> </p><p><strong style="font-size: 18px;">About BIS:</strong></p> <p> </p> <p>BIS Safety Software has been headquartered in Sherwood Park, Alberta, since 2006. We build software that helps organizations manage safety training, learning, and compliance - and we’re growing!</p> <p> </p> <p>A few things that make us different: we don’t use job titles internally - we value humility and contribution over hierarchy. We move fast, integrate new ideas quickly, and give people real ownership of their work. And through our Employee Stock Ownership Plan (ESOP), you have the opportunity to own a piece of the company you’re helping build.</p> <p> </p> <p><strong style="font-size: 18px;">How to apply:</strong></p> <p> </p> <p>Visit our <a rel="noopener noreferrer" href="http://www.bissafety.ca/careers" class="postings-link">Careers Page</a> for more information. We sincerely thank all applicants for their interest. Only those selected for interviews will be contacted.</p> <p> </p> <p><em>We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us</em></p> <p></p> <p> </p> <p><em style="font-size: 10px;">Job ID #</em><em style="font-size: 10px;">L202603-26CRC</em></p>