Data Protection Analyst

ABOUT YOU

Are you passionate about data confidentiality, integrity, availability, and enabling trusted data use across the organization and ready to join an inclusive work environment, committed to leading new ideas and pathways, and to delivering value? If the answer is, “Yes!” then we have an exciting career opportunity for you as a Governance, Risk and Compliance Data Protection Analyst.

Who are we?  We are Montrose, a global environmental services provider offering environmental planning and permitting, measurement and analytical services, and environmental resiliency and sustainability solutions.  Our qualified engineers, scientists, technicians, associates, and policy experts are proud of our collective expertise and the collaborative nature of our approach to helping clients. We strive to optimize environmental resiliency in a way that effectively complements our clients’ decision-making and operations and efficiently fulfills their project requirements.

We have over 135 offices across the United States, Canada, Europe and Australia and over 3000 employees – all ready to provide solutions for environmental needs.

WHAT WE CAN OFFER YOU

As a key member of our Montrose team, you can expect:

• Mentorship and professional development resources to advance your career

• Direct exposure to our industry’s leading experts who are solving the world’s toughest environmental challenges

• An entrepreneurial environment where you can learn, thrive and collaborate with talented colleagues

• Opportunities to engage and contribute in our Diversity, Fairness and Inclusion and Women Empowering Leadership employee resource groups

• Competitive compensation package: annual salary ranging from $110,000 to $130,000 USD, commensurate with accomplishments, performance, credentials and geography

• Competitive medical, dental, and vision insurance coverage

• 401k with a competitive 4% employer match

• Progressive vacation policies, company holidays and paid parental leave benefits to ensure work/life balance

• A financial assistance program that supports peers in need, known as the Montrose Foundation

• Access to a student loan planning tool to optimize your student loan payoff plans and compare student loan rates with lenders.

A DAY IN THE LIFE

This role supports the organization’s cybersecurity and compliance objectives. As a key member of the Cybersecurity team, this role will be responsible for a full range of activities including:

• Developing and implementing data protection policies and procedures, conducting risk assessments, monitoring compliance and ensuring data privacy

• Ensuring compliance with data protection laws and regulation (e.g., CCPA/CPRA, ISO 27001, HIPAA, GDPR, SOX) internal data security policies and risk management related to data

• Collaborating and partnering with data owners to classify, label, and protect  sensitive data in accordance with internal policies and regulatory standards

• Implementing and maintaining Data Loss Prevention (DLP) controls to safeguard critical information

• Monitoring and report generation of data protection controls and handling practices to ensure compliance and reduce risk exposure

• Supporting audits and assessments related to data governance and cybersecurity

• Promoting awareness and adoption of secure data governance practices across the organization

• Develop plans to safeguard the company against accidental or unauthorized modification, destruction, or disclosure of data to reduce risk

YOUR EXPERTISE AND SKILLS

To perform this job successfully, individuals must be able to perform each duty and responsibility satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required.

• Bachelor’s degree in Information Security, Computer Science, Data Management, or a related field

• 2–4 years of experience in data governance, risk and compliance, cybersecurity, or information risk management

• Knowledge of and experience working with leading information security standards (e.g., NIST 800, ISO 27001) and relevant privacy regulations (e.g., GDPR, CCPA, HIPAA) preferred.

• Experience in Microsoft Purview and Defender is a must

• Strong understanding of privacy and data protection principles to identification, classification, sensitivity, and labeling data

• Hands-on experience with Data Loss Prevention (DLP) tools and technologies, specifically Microsoft Defender

• Excellent analytical, problem-solving, and communication skills

• Ability to collaborate across technical and non-technical teams to implement governance controls

• Experience with Azure Information Protection or similar platforms is a plus

• Analyzing data to identify patterns, and insights that can inform business decisions but also mitigate risk

The above statements are intended to describe the general nature of work being performed by people assigned to this classification. They are not to be construed as an exhaustive list of all responsibilities, duties and skills required of employees so classified. If you are an individual with a disability and require a reasonable accommodation to complete any part of the application process, or are limited in the ability or unable to access or use this online application process and need an alternative method for applying, you may contact 949-988-3500 or careers@montrose-env.com for assistance.

MAKE THE MOVE TO ACCELERATE YOUR CAREER

We are going to be blunt – the way we work may not suit everyone. We are a fast-paced, dynamic and high-growth company. You are your own boss, but you will get tons of guidance and plenty of support from talented, super-smart colleagues and its service providers. Therefore, if freedom, autonomy, and head-scratching professional challenges attract you, we could be the perfect match.

Want to know more about us? Visit montrose-env.com and have fun!

Montrose is an Equal Opportunity Employer. Montrose is committed to recruiting and hiring qualified candidates without regard to race, religion, sex, sexual orientation, gender identity, age, national origin, ancestry, citizenship, disability, or veteran status. Montrose is committed to providing access and reasonable accommodation in its employment for individuals with disabilities.

Montrose will consider qualified applicants with a criminal history pursuant to the California Fair Chance Act. You do not need to disclose your criminal history or participate in a background check until a conditional job offer is made to you. After making a conditional offer and running a background check, if Montrose is concerned about conviction that is directly related to the job, you will be given the chance to explain the circumstances surrounding the conviction, provide mitigating evidence, or challenge the accuracy of the background report. Find out more about the Fair Chance Act by visiting the Civil Right’s Department Fair Chance Act webpage.