Job Details

Job Overview:

The Cybersecurity Data Governance and Protection Analyst Sr applies advanced knowledge to implement data governance in the corporate environment, recommends regulatory data requirements, and defines data security controls for the organization, ensuring data protection across UNFI. This role also ensures compliance with HIPAA, NIST, SOX, PCI, and other applicable frameworks, driving initiatives to safeguard sensitive information and maintain regulatory adherence. The position acts as a resource for others, involving data governance frameworks, data discovery, and classification processes. The position will lead engagements and provide direction to direct teams at UNFI to instill guidelines and policies across the organization.

Job Responsibilities:

Core Responsibilities

• Regulates, implements, and monitors the security of digital information, and guides the development and documentation of data policies, standards & procedures, and establishes data governance processes.
• Identify and mitigate data-related risks, developing controls and monitoring mechanisms to safeguard data integrity and privacy by partnering with internal stakeholders to ensure mitigation application.
• Develop plans to safeguard company files against accidental or unauthorized modification, destruction, or disclosure and to meet emergency data processing needs and implement them across the organization.
• Lead small projects to resolve data governance and analytic opportunities for continuous improvement and application.
• Perform risk assessments and execute tests of the data processing system to ensure the functioning of data processing activities and security measures, create recommendations.
• Conduct HIPAA risk assessments and gap analyses, develop remediation plans to maintain regulatory compliance.
• Develop and enforce policies and procedures aligned with HIPAA Privacy and Security Rules, including data access and breach response protocols.
• Manage IT controls across SOX, HIPAA, and PCI DSS frameworks, including design, documentation, testing, and remediation.
• Support enterprise risk assessments and compliance reviews across IT systems and processes.

Additional Responsibilities

• Provide expert knowledge about emerging industry or technological trends and understand how that impacts UNFI.
• Acts as a resource for associates with less experience.
• Performs other duties as assigned.
• Good judgment is required for this position as there may be times when direct supervision may not be immediately available.

Job Requirements:

Education/ Certifications:

• Bachelor's degree in computer science, information systems or related field.