Senior Analyst, Privacy Risk & Compliance

The Hershey Company

COVID-19 Vaccine Safety Mandate
This position requires that you must be fully vaccinated for COVID-19 (even if working remotely) and present proof of vaccination before beginning employment. If you receive an offer of employment, you will be asked as part of the background check process to upload a copy of your vaccination card. If you believe you require an accommodation for medical or religious reasons related to the vaccine safety mandate, you may submit a request after you receive an offer of employment. Instructions on how to do so will be provided in your offer letter.
Job Title: Senior Analyst, Privacy Risk & Compliance
Job Location: Hershey, PA or Remote
This position will be responsible for managing the Privacy Impact Assessment process, auditing organizational data privacy efforts, and reporting out data privacy program KPIs. The Hershey Companys Information Services (IS) department supports critical platforms to support our legal & business partners in driving growth, consumer engagement, and compliance. This an exciting opportunity to join a growing team at an amazing company!
Major Duties/Responsibilities:
Manage the Privacy Impact Assessment process, working with internal and external stakeholders to ensure the highest analysis fidelity.
Manage risk tracking and remediation planning process.
Partner with data governance and security teams on maintaining enterprise data mapping.
Audit systems and processes for proper adherence to Hershey data retention, usage, and privacy policies.
Develop and maintain effective working relationships with team members, internal partners, customers, and others through good interpersonal skills.
Will participate in developing procedures and metrics to support the companys privacy, risk, compliance, and assurance programs in conjunction with Privacy team leadership and Product & Solution managers.
Develop privacy-related reports for executive and operational use.
As needed, lead staff augment resources to achieve project outcomes.
Other duties as assigned.
Minimum knowledge, skills, and abilities required to perform major duties/responsibilities successfully:
Have 3+ years in reporting, auditing, or other quality assurance. Specific experience in compliance is strongly preferred.
Experience with the OneTrust suite, specifically PIA & DPIA automation module, is strongly preferred.
Workable knowledge of US compliance laws (CCPA, CPRA, CPA, CDPA, VCDPA, UCPA) is strongly preferred. Acquired data privacy certifications are a plus (i.e., OneTrust, IAPP).
Have expertise in building reports, dashboards, and other data visualizations. Experience with PowerBi, Tableau, or Alteryx is strongly preferred.
Strong problem-solving and analytical skills, able to manage multiple projects under strict timelines, work well in a demanding dynamic environment and meet overall objectives.
Demonstrates collaborative skills and ability to work well within a team while completing tasks and projects autonomously.
Close attention to detail and able to demonstrate task management prowess. Experience leveraging task management systems is a plus (i.e., Asana, Jira, Wrike, or Microsoft Planner).
Poise and ability to act calmly and competently in high-pressure, high-stress situations.
Possess a high level of personal integrity and the ability to handle confidential matters professionally and show appropriate judgment and maturity.
Have a high degree of initiative, dependability, and ability to work with little supervision.
Demonstrate proficiency with Microsoft Office Suite, especially Teams, PowerPoint, Excel, Word, and Outlook.
Experience with flowcharting tools, such as Microsoft Visio. Good working knowledge of current Internet, mobile/technology trends, and familiarity with client/server environments.
Exhibit strong verbal and communication skills.
Ability to self-organize, prioritize, and identify new work.
Strong analytical, interpersonal, problem-solving, organizational, and presentation skills are necessary.
Be self-motivated with critical attention to detail and deadlines.
Minimum Education Requirements:
Bachelor’s degree in Computer Science, Management Information Systems, or Information Systems is the minimum qualification.
Masters Degree in Business, Technology, or other related advanced experience is preferred.
The Hershey Company is an Equal Opportunity Employer. The policy of The Hershey Company is to extend opportunities to qualified applicants and employees on an equal basis regardless of an individual’s race, color, gender, age, national origin, religion, citizenship status, marital status, sexual orientation, gender identity, transgender status, physical or mental disability, protected veteran status, genetic information, pregnancy, or any other categories protected by applicable federal, state or local laws.
The Hershey Company is an Equal Opportunity Employer – Minority/Female/Disabled/Protected Veterans
If you require a reasonable accommodation as part of the application process, please contact the HR Service Center (

Job Overview
Your subscription could not be saved. Please try again.
Your subscription has been successful.

Receive privacy jobs in your mailbox twice per week:

We use Sendinblue as our marketing platform. By Clicking below to submit this form, you acknowledge that the information you provided will be transferred to Sendinblue for processing in accordance with their terms of use