ICRM Global Services Associate

The Information Compliance Risk Management (ICRM) Associate will be an integral part of our newly established team focused on the processes required to assess and record compliance with data protection, information security and records management policies and regulatory obligations such as data protection laws. The ICRM Associate will operate in a service desk environment, serving as the first point of contact for business units for ICRM processes, queries and complaints.

Job Description

• Service Desk Operation: Serve as the first point of contact for business units with queries and complaints related to privacy and records management, adhering to established SLAs and procedures.
• Data Mapping Execution: Regularly update and maintain data mapping records using designated company tools, adhering to existing guidelines to identify sensitive data and its movement within the organization.
• Incident Logging: Document and track data incidents and breaches using the appropriate company systems such as Radar First, following internal guidelines for escalation.
• Assessment Guidance: Advise business units on the necessity and type of assessments required, such as Privacy Impact Assessments (PIAs), Data Protection Impact Assessments (DPIAs), Legitimate Interest Assessments, and Transfer Risk Assessments. Escalate assessments that exceed pre-defined complexity or risk thresholds for higher-level review.
• Vendor Risk Management: Conduct initial ICRM focused risk assessments on third-party vendors using the appropriate company tools, and escalate vendors that exceed the risk threshold for management review.
• DSR Fulfillment: Process Data Subject Rights requests (DSRs) following internal guidelines, meeting regulatory and internal SLAs, escalating complex or high-risk cases to management as needed.
• Policy Maintenance & Updates: Assist in the updating and distribution of ICRM policies and notices, utilising designated company systems and contributing ideas for improvements and updates.
• Procedure Adherence: Follow SLAs and established internal procedures, escalating non-standard or high-risk issues to appropriate management levels.
• Process Improvement Feedback: Identify opportunities for improving current processes and provide constructive feedback for optimization to the team and management.
• Reporting: Assisting in the generation of routine compliance and operational reports using designated company systems, alerting management to anomalies or trends that require further attention.
• Audit Support: Support internal and external audits by providing necessary reports and records, generated through appropriate company tools and in accordance with internal guidelines.
• Awareness and Training: Keep abreast of compliance standards and provide feedback on internal training materials based on firsthand experience. Stays informed of developments in global privacy laws, regulations and other government policy initiatives that could impact the business. Assisting in the development and delivery of ICRM training and communications to the wider business where required.

Specialist/Technical Knowledge

• Professional interest in data protection, privacy, cyber security, regulatory compliance, legal, or a related field, ideally with some related experience e.g. privacy, IT audit or records management.
• Comfort and familiarity with existing and emerging technology, including marketing, targeted advertising, and data analytics.
• Passion for continuous learning and professional development, with flexibility and willingness to dive into any projects requiring support.
• Demonstrate a high level of flexibility as assignments will vary by business and team needs and priorities.

Qualities/Attributes

• Helps foster a culture of privacy and drives privacy awareness and education.
• Extremely organised and detail-oriented with the ability to assist with multiple projects simultaneously and help drive projects to successful completion.
• Ability to work independently as well as collaboratively with cross-functional teams.
• Ability to react with urgency to situations and events that require a quick response.
• Enthusiasm for taking on new and additional responsibilities as business and team needs evolve.
• Excellent practical judgement and reasoning skills.

Further Information - The contents of this Job Description are not a fully inclusive list and may be amended from time to time to reflect the changing needs of the department and/or business. Raymond James is an equal opportunities employer and welcomes applications from a diverse background.