External Analyst

Description

Job Summary: We are seeking an External Analyst for the insurance area, focused on user interviews, preparation of Records of Processing Activities (RAT), and Data Protection Impact Assessments (DPIA), supporting the identification and analysis of personal data processing activities. Key Highlights: 1. Key role in identifying and analyzing personal data processing activities. 2. Fundamental support in regulatory compliance with data protection requirements. 3. Opportunity to work within a large team of professionals. ***We are looking for an External Analyst for an important insurance area.*** **Professional Profile for User Interviews, RAT Preparation, and DPIA Evaluation** Role Objective Identify, document, and analyze personal data processing activities within organizational processes and systems through interviews with key users, in order to complete the Records of Processing Activities (RAT) required by Law No. 21.719 and detect risks of regulatory non-compliance. Record and organize interview responses using organizational-approved tools (Excel, OneTrust). Actively participate in the validation of Lawfulness Bases conducted during review meetings, incorporating feedback provided by approvers. All activities performed in support of the Head of Data Control Projects at Banchile Corredores de Seguros. ***Ideal Candidate Profile*** Academic Background **1. Professional background in fields such as:** * Computer or Systems Engineering. * Auditing, Risk Management, or Information Security. * Organizational Psychology. * Preferred: Diploma or course in personal data protection or cybersecurity. **2. Professional Experience** * Minimum 2 years in roles related to: * Process mapping or user interviews. * Operational or technological risk management. * Regulatory compliance or internal auditing. * Implementation of privacy policies or data protection measures. * Experience in digital transformation projects or implementation of legal regulations is highly valued. * Experience with risk assessment methodologies, evaluation of mitigation measures, and control and monitoring activities. **3. Technical Knowledge** * Familiarity with Law No. 21.719 and its operational implications. * Understanding of components of a Record of Processing Activities (RAT): * Purpose of processing. * Legal basis. * Retention period. * Security measures. * Data processors and controllers. * Familiarity with tools such as Excel, Power BI, Planner, Teams. * Ability to identify risks in processes and systems related to personal data protection law. **4. Soft Skills** * Excellent communication and active listening skills. * Ability to build trust during interviews with internal users. * Analytical thinking and problem-solving orientation. * Autonomy and proactivity in gathering information within complex environments. * Ability to synthesize and write clearly for documenting RATs. **5. Key Responsibilities** * Conduct structured interviews with users across various departments. * Identify personal data processing activities in processes and * systems. * Complete RAT records in accordance with the law using organizational systems and tools * made available. * Detect and document risks of regulatory non-compliance. * Propose mitigation measures or process adjustments. * Coordinate with Legal, IT, and Compliance departments to validate information. ***If you wish to join a large team of professionals, apply with us.***