JOB DESCRIPTION

How You Will Contribute:

The Analyst, Privacy & Compliance is a newly-created role in Ciena’s award-winning Legal Department. Reporting to the Senior Director, Corporate Compliance, the Analyst, Privacy & Compliance serves a key support and enabling role in the administration and execution of Ciena’s Corporate Compliance and Privacy program (the “Program”).  This role will engage in regular and varied Program activities, and the ideal candidate will be comfortable collaborating with stakeholders across all levels of the company to facilitate effective Program operation, making recommendations for process improvements, and promoting a culture of privacy and compliance awareness.

• Ciena is looking for a motivated and talented individual with extensive experience Supporting Program initiatives such as third-party risk management, privacy by design and default, data minimization, continuous improvement of access management and controls, data classification, and data governance, and promoting the appropriate use, handling, and protection of personal information;
• Monitoring legal and regulatory landscape for relevant changes;
• Conducting, coordinating, and supporting DPIA and DSAR activities;
• Supporting data privacy and compliance risk assessments and benchmarking;
• Assisting with third-party due diligence and other risk management activities;
• Evaluating DPAs, data transfer agreements, and other contract addenda and provisions for conformity with Ciena privacy and compliance requirements;
• Providing support for compliance and privacy related queries and assisting with Program review activities;
• Responding to stakeholder inquiries about the Program;
• Assisting in the development of educational tools and training;
• Supporting incident response preparedness and participating in occasional incident response as-needed; and
• Performing other duties as assigned.

The Must Haves:

• Bachelor’s degree and three years of relevant experience, preferably in a publicly-traded international business
• CIPP and/or CCEP or equivalent accreditation preferred
• Familiarity with U.S., E.U. and other international data privacy and anticorruption laws, regulations, and standards, including FCPA, UKBA, GDPR, CCPA, and LGPD
• Familiarity with NIST and ISO security frameworks a plus
• Experience in high-tech or telecommunications field a plus

The Good to Haves:

• Organized and effective time management skills
• Strong and effective verbal and written communication and interpersonal skills
• Self-sufficient but with an ability to determine when matters should be escalated and when further guidance is needed
• Analytical skills; good business judgment and sound decision-making
• Demonstrated skills in desktop applications such as Project, Excel, Word, and PowerPoint
• Experience working with global teams based in different jurisdictions
• Good understanding of technical and information security concepts