Senior Information and Privacy Manager, Compliance Support

Reporting to the Director, Compliance Support (CS), this role offers a unique opportunity to be at the forefront of the Commissioner’s legislated oversight mandate. Through relationship building, strong leadership and effective investigation and communication skills you will influence and effect changes in the development and implementation of initiatives, programs, policies, goals and proposed legislative schemes in the public, health and private sectors. Your strong technical background in information technology and information security would be an asset to our team.

The work performed by the position is integral to the Commissioner’s ability to ensure the privacy and access rights of Albertans are upheld; ensure that public bodies/organizations/custodians comply with their duties and responsibilities under the Acts; and, provide fair, independent and impartial reviews on access and privacy matters. The position’s specific accountabilities include:

1. Reviewing and investigating public bodies, custodians and organizations for legislative compliance.

• Conducting reviews of privacy breaches to ensure legislative compliance of breach notification provisions of the Acts.
• Conducting informal investigations initiated by the Commissioner and produce written findings and recommendations to address identified compliance issues
• Conducting information security audits or privacy compliance reviews of programs and initiatives of public bodies, custodians, and organizations.
• Informing the Directors, Assistant Commissioners and Commissioner about access and privacy issues of significance.

2. Reviewing and providing comment on privacy impact assessments.

• Consulting, commenting on, and making recommendations regarding, policies, procedures and practices related to initiatives, applications, and technology use in relation to the requirements of the applicable Acts.
• Reviewing and commenting on technical, administrative and physical safeguards implemented to protect health and personal information.
• Commenting on risk assessment and mitigations related to system design and implementation.

3. Educating and informing the public and public bodies, custodians and organizations on the Acts.

• Preparing public documents such as advisories on specific access and privacy matters.
• Researching, writing and developing educational or guidance materials and tools.
• Conducting presentations, workshops and information sessions regarding the rights and practical application of the Acts.
• Speaking at conferences.
• Developing relationships with public bodies, custodians, organizations and other stakeholder groups, including participation at meetings (e.g. network meetings).
• Responding to media queries as required.
• Responding to enquiries and requests for information
• Managingand supervisingjunior staff including intake staff when required by the Director.

4. Conducting and/or leading research projects when required by the Director, Assistant Commissioners or Commissioner.

• Researching and reviewing relevant materials, cases and legal decisions/rulings;
• Compiling and analyzing statistics and results;
• Producing reports and developing guidance tools to assist and inform the public or stakeholders (public bodies, custodians and organizations).

5. Managing a diverse and demanding workload in a timely and efficient manner.

• Working in collaboration with other staff within the CS team and outside of the CS team as needed.