Data Privacy & Compliance Analyst
UST
Job Overview
Who's the hiring manager?
Sign up to PitchMeAI to discover the hiring manager's details for this job. We will also write them an intro email for you.
Job Description
Role Description
The Data Privacy & Compliance Analyst is a hands-on role responsible for operationalizing data privacy, retention, and regulatory compliance controls across the enterprise data ecosystem. This role ensures that personal, sensitive, and regulated data is identified, classified, retained, minimized, and disposed of in accordance with applicable laws, internal policies, and risk tolerance.
Who We Are
Born digital, UST transforms lives through the power of technology. We walk alongside our clients and partners, embedding innovation and agility into everything they do. We help them create transformative experiences and human-centered solutions for a better world.
UST is a mission-driven group of 29,000+ practical problem solvers and creative thinkers in more than 30 countries. Our entrepreneurial teams are empowered to innovate, act nimbly, and create a lasting and sustainable impact for our clients, their customers, and the communities in which we live.
With us, you’ll create a boundless impact that transforms your career—and the lives of people across the world.
Visit us at UST.com.
You Are
The Data Privacy & Compliance Analyst is a hands-on role responsible for operationalizing data privacy, retention, and regulatory compliance controls across the enterprise data ecosystem. This role ensures that personal, sensitive, and regulated data is identified, classified, retained, minimized, and disposed of in accordance with applicable laws, internal policies, and risk tolerance.
The Opportunity
In this role, you will focus on implementing and operating data privacy controls, managing data retention, minimization, and disposal, and enabling DSAR & Individual Rights.
- Implement & operate data privacy controls across structured & semi-structured data platforms
- Identify, classify, and tag regulated data (PII, PHI, NPI, PCI) across enterprise data assets
- Maintain records of processing activities (RoPA) and data inventories for regulated data
- Support privacy impact assessments (PIAs/DPIAs) and risk assessments for new data uses
- Operationalize data retention schedules by data domain, classification, and regulatory obligation
- Partner with data engineering & platform teams to implement automated retention & deletion controls
- Monitor & validate execution of data disposal, minimization, and archival processes
- Manage exceptions such as legal holds and regulatory investigations
This position description identifies the responsibilities and tasks typically associated with the performance of the position. Other relevant essential functions may be required.
What You Need
- 3-5 years of experience in data privacy, compliance, data governance, or risk management
- Hands-on experience operating privacy or data discovery platforms
- Working knowledge of privacy regulations (HIPAA, GLBA, CCPA/CPRA, GDPR, state privacy laws)
- Understanding of modern data architectures (cloud data platforms, analytics, BI, SaaS systems)
- Ability to work cross-functionally with Legal, Security, Data Engineering, and Governance teams
Preferred Qualifications
- Experience supporting healthcare and/or financial services data
- Familiarity with data retention, records management, and legal hold processes
- Exposure to data catalogs, lineage, and metadata-driven controls
- Experience with SQL, APIs, or automation to support scalable privacy operations
- Certifications such as CIPP/US, CIPP/E, CIPM, or equivalent experience
Benefits
Employees receive mandatory and non-mandatory benefits such as fourteen (14) days of vacation beginning on the date of hire, vacation premium, ten (10) paid holidays, a Christmas Bonus of thirty (30) days’ pay, Monthly Food Vouchers, Saving Fund, and health insurance. Certain employees may be eligible for additional Company benefits beginning on the date of hire, including dental, disability and life insurance plans; four (4) days of personal time off per year, up to three (3) days of paid medical leave per year, and up to three (3) days of paid bereavement leave per year.
What We Believe
We proudly embrace the values that have shaped UST since day one. We build our culture of Humility, Humanity, and Integrity. These values inspire us to nurture a people-first, human centric culture that fosters diversity, prioritizes sustainable solutions, and keeps our people and clients at the forefront of all decisions.
- Humility: We will listen, learn, be empathetic and help selflessly in our interactions with everyone.
- Humanity: Through business, we will better the lives of those less fortunate than ourselves.
- Integrity: We honor our commitments and act with responsibility in all our relationships.
Key skills/competency
- Data Privacy Controls
- Regulatory Compliance
- Data Retention
- Risk Management
- PII/PHI/NPI/PCI Classification
- Privacy Impact Assessments (PIAs)
- Data Disposal
- Cloud Data Platforms
- SQL
- API Automation
How to Get Hired at UST
- Research UST's culture: Study their mission, values, recent news, and employee testimonials on LinkedIn and Glassdoor.
- Tailor your resume for data privacy: Highlight your hands-on experience in compliance, data governance, and risk management with UST-specific keywords.
- Showcase regulatory expertise: Emphasize your working knowledge of HIPAA, GLBA, CCPA/CPRA, and GDPR, providing specific examples.
- Prepare for technical and architectural questions: Be ready to discuss modern data architectures, cloud platforms, and privacy or data discovery platforms used in the field.
- Demonstrate cross-functional collaboration: Prepare examples of how you've partnered with legal, security, and data engineering teams to achieve privacy objectives.
Frequently Asked Questions
Find answers to common questions about this job opportunity
Explore similar opportunities that match your background