**ABOUT US** At **HUB International** , we are a team of entrepreneurs. We believe in protecting and supporting the aspirations of individuals, families, and businesses. We help our clients evaluate their risks and develop solutions tailored to their needs. We believe in empowering our employees to learn, grow, and make a difference. Our structure enables our teams to maintain their own unique, regional culture while leveraging support and resources from our corporate centers of excellence. HUB is one of the largest global insurance and employee benefits broker, providing a boundaryless array of business insurance, employee benefits, risk services, personal insurance, retirement, and private wealth management products and services. With over $5 billion in revenue and almost 20,000 employees in 600 offices throughout North America, HUB has grown substantially, in part due to our industry leading success in mergers and acquisitions. **OVERVIEW** The **Privacy Analyst** plays an active role in safeguarding personal information under Hub’s custody and control, and in demonstrating Hub’s compliance with data protection laws and regulations. The work performed by the analyst, under the supervision of the Sr. Privacy Counsel, will help reduce Hub’s privacy risks and build trust that Hub’s handling of personal information complies with the law and consumers’ reasonable privacy expectations. Remote and Canada-based applicants are welcome. **KEY RESPONSIBILITIES** **Privacy Impact Assessments:** Conduct and assist in reviewing Privacy Impact Assessments (PIAs) to identify and mitigate potential privacy risks associated with projects, data systems, and activities that involve the processing of personal information across the business. Provide recommendations to minimize risks and promote a privacy-by-design culture among stakeholders. **Policy Development and Compliance:** Support the development, implementation, and regular review of Hub’s privacy policies and procedures to ensure alignment with applicable data privacy laws (e.g., HIPAA, GLBA, PIPEDA state-level consumer privacy laws, and GDPR) Stay informed about changes in privacy regulations and identify areas in Hub’s policies and procedures that must be updated for Hub to remain in legal compliance Collaborate with stakeholders conducting compliance audits of privacy program activities **Reporting and Metrics:** Collect and analyze privacy program metrics to identify trends, measure effectiveness, and support Hub’s continuous efforts to improve the privacy program. Prepare and present to stakeholders, on a regular basis, reports on Hub’s privacy-related work to comply with regulatory requirements. **Records of Processing Activities:** Support data inventory and data mapping activities to ensure that Hub documents the types of personal information collected, processing purposes, storage locations, recipients, and retention periods. **Data Subject Access Rights (DSAR) Requests:** Counsel stakeholders on how to handle privacy inquiries, complaints, and opt-out requests from consumers. Support efforts to automate and improve Hub’s DSAR operations. **Training and Awareness:** Assist in developing and delivering privacy training and awareness programs to help employees understand (a) their roles in protecting personal information, (b) best practices when handing personal information, and (c) data breach response procedures. **Vendor and Third-Party Management:** Collaborate with Hub’s risk management stakeholders in their due diligence investigations into whether to privacy-related policies and procedures of service providers and third parties align with Hub’s privacy standards. **Collaboration and Counseling:** Work closely with legal, IT, security, marketing, and other departments and business lines to ensure data protection measures are (a) aligned with Hub’s privacy program guidelines and (b) effectively integrated into business processes and technology platforms. Provide advice on privacy best practice, including areas where consumer rights and privacy practices intersect. **Manage Privacy Impacts of Security Incidents:** Collaborate with incident response stakeholders and investigation of incidents involving personal information; create records outlining Hub’s compliance with data breach notification and other privacy-related obligations for analysis by counsel (e.g. interviewing individuals involved in an incident to determine what data was impacted). **Administrative Tasks:** Perform other administrative tasks as needed to support Hub’s privacy program. **QUALIFICATIONS** + Certification: Certified Information Privacy Professional (CIPP), Certified Information Privacy Manager (CIPM), or Certified Information Systems Security Professional (CISSP) certifications are preferred. + Experience: Four (4) years of experience in data privacy, compliance, or a related field. Experience in the insurance and financial sectors is welcome. + Strong understanding of fair information practices as well as data privacy laws and regulations (e.g., HIPAA, PIPEDA, CCPA, GDPR). + Familiarity with data governance frameworks and privacy-enhancing technologies, including data anonymization and pseudonymization techniques. + Experience contributing to privacy impact assessments, identifying potential privacy risks, and making recommendations to minimize privacy risks. + Familiarity with using privacy compliance management platforms (e.g., OneTrust, Smartsheet). + Strong communication and presentation skills, including the ability to convey complex legal and technical concepts to diverse stakeholder groups across Hub. + Attention to detail and a methodical approach to work. + Ability to work independently and as part of a team. + A commitment to ethical data practices and data privacy principles. **JOIN OUR TEAM** Do you believe in the power of innovation, collaboration, and transformation?  Do you thrive in a supportive and client focused work environment?  Are you looking for an opportunity to help build and drive change in a rapidly growing and evolving organization?  When you join **HUB** **International** , you will be part of a community of learners and doers focused on our Core Values: entrepreneurship, teamwork, integrity, accountability, and service. _Disclosure required under applicable law in California, Colorado, Illinois, Maryland, Minnesota, New York, New Jersey,_ _Ohio,_ _and Washington states: The expected salary range for this position is $_ _85,000_ _- $_ _100,000_ _and will be impacted by factors such as the successful candidate’s skills, experience and working location, as well as the specific position’s business line, scope and level. HUB International is proud to offer comprehensive benefit and total compensation packages: health/dental/vision/life/disability insurance, FSA, HSA and 401(k) accounts, paid-time-off benefits such as vacation, sick, and personal days, and eligible bonuses,_ _equity_ _and commissions for some positions._ Department Legal Required Experience: 5-7 years of relevant experience Required Travel: Negligible Required Education: Some college (no degree) HUB International Limited is an equal opportunity employer that does not discriminate on the basis of race/ethnicity, national origin, religion, age, color, sex, sexual orientation, gender identity, disability or veteran's status, or any other characteristic protected by local, state or federal laws, rules or regulations. E-Verify Program (https://hubinternational.jobs/e-verify/) We endeavor to make this website accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact the recruiting team HUBRecruiting@hubinternational.com . This contact information is for accommodation requests only; do not use this contact information to inquire about the status of applications.