Data Risk Analyst II — Data Privacy Office. job opportunity at Bristol Myers Squibb.

Home Jobs In India Tag: Job Data Risk Analyst II — Data Privacy Office. position at Bristol Myers Squibb


DatePosted Yesterday bot
Bristol Myers Squibb Data Risk Analyst II — Data Privacy Office.
Experience: 5-years
Pattern: full-time
Country:
apply Apply Now
Salary:
Status:

Job

Copy Link Report
degreeAssociate
loacation Hyderabad - TS - IN, India
loacation Hyderabad - TS..........India

Working with Us Challenging. Meaningful. Life-changing. Those aren’t words that are usually associated with a job. But working at Bristol Myers Squibb is anything but usual. Here, uniquely interesting work happens every day, in every department. From optimizing a production line to the latest breakthroughs in cell therapy, this is work that transforms the lives of patients, and the careers of those who do it. You’ll get the chance to grow and thrive through opportunities uncommon in scale and scope, alongside high-achieving teams. Take your career farther than you thought possible. Bristol Myers Squibb recognizes the importance of balance and flexibility in our work environment. We offer a wide variety of competitive benefits, services and programs that provide our employees with the resources to pursue their goals, both at work and in their personal lives. Read more: careers.bms.com/working-with-us . Operational Oversight & Delivery: Takes accountability for on-time and high-quality execution across all privacy operations workstreams (DSRs, DIN/DBN, DPQ, etc.). Ensure that standard operating procedures are followed and meets regulatory deadlines and internal service level agreements for each request or incident. Provide guidance and mentorship to juniors and monitor daily workflows to quickly address any roadblocks or delays. Data Incident & Breach Management (DIN/DBN): Manage the end-to-end process for data incidents and breaches, from initial triage through regulatory notification. Work closely with the Cybersecurity incident response team to investigate privacy incidents and determine breach severity. If a breach is deemed reportable under laws like GDPR (within 72 hours) or CCPA, coordinate with Privacy Legal to draft notifications and ensure timely submission to Data Protection Authorities and communications to affected individuals. Maintain detailed incident records (what happened, actions taken) to demonstrate compliance. After resolution, lead post-incident reviews to implement preventive measures. Data Subject Rights (DSR) Request Oversight: Oversee the intake and fulfillment of Data Subject Rights requests (access, deletion, correction, etc.) across all relevant jurisdictions. Make sure requests are logged in the appropriate system and assigned to the correct data owners. Track each DSR to closure, verifying that responses to data subjects meet legal requirements (for example, completed within 30 days for GDPR .or 45 days under CCPA). Regulatory Inquiries & Notifications: Act as the primary liaison with Data Protection Authorities (DPAs) for any regulatory inquiries, audits, or breach notifications. This includes coordinating responses to official requests or investigations and preparing formal notification letters when required by law (e.g., drafting notification content for authorities in collaboration with Legal). Ensure all regulatory communications are handled professionally and within required timeframes. Maintain a log of all DPA interactions and outcomes and escalate critical issues to senior leadership as needed. Operational Metrics & Reporting: Develop and deliver privacy operations metrics and reports to DRO leadership and other stakeholders. Aggregate data across all workstreams (e.g. number of DSRs received and closed, breach notification timelines, outstanding DPQs) and create weekly/monthly dashboards. Highlight key trends or risks – for instance, if DSR volumes spike or an incident took longer than expected to close. Use these insights to recommend process improvements or resource adjustments. Cross-Functional Coordination & Compliance: Facilitate strong collaboration between the Data Risk Office and other teams. Work with Privacy Legal (Chief Privacy Officer’s team) to interpret new regulatory requirements and update operations accordingly. Partner with the Cyber Risk/Security team during incident investigations to ensure swift containment and remediation of data breaches. Qualifications & Experience Educational Background: Bachelor’s degree in a relevant field such as Information Security, Law, Business Administration, or Computer Science. A master’s degree or professional certification in data privacy/risk management (e.g., CIPP/E, CIPM) is highly valued but not required, demonstrating formal knowledge of privacy principles. Experience: Minimum 5 years of experience in data privacy, compliance, or related risk management operations. The candidate should have hands-on experience managing privacy processes – for example, overseeing responses to data breaches and data subject requests in a multinational environment. Experience working with global privacy regulations (GDPR, CCPA, etc.) is essential. Regulatory Knowledge: Strong working knowledge of major data protection laws and regulatory requirements, including GDPR (Europe), CCPA/CPRA (California), and familiarity with other laws like LGPD (Brazil), PDPA (various countries). The candidate should understand obligations such as breach reporting timelines (e.g. 72-hour rule for GDPR), individual rights processes, and how these regulations apply operationally. They should also stay updated on emerging privacy laws and be able to quickly adapt processes to new legal requirements. Communication and stakeholder engagement: Demonstrated ability to deliver in privacy operations team and coordinate complex processes. This includes excellent organizational skills to juggle multiple concurrent tasks (e.g., several DSRs and an incident investigation simultaneously) and ensure nothing falls through the cracks. Strong communication skills are required – the analyst must communicate clearly with stakeholders at all levels, from analysts up to executives. If you come across a role that intrigues you but doesn’t perfectly line up with your resume, we encourage you to apply anyway. You could be one step away from work that will transform your life and career. Uniquely Interesting Work, Life-changing Careers With a single vision as inspiring as “Transforming patients’ lives through science™ ”, every BMS employee plays an integral role in work that goes far beyond ordinary. Each of us is empowered to apply our individual talents and unique perspectives in a supportive culture, promoting global participation in clinical trials, while our shared values of passion, innovation, urgency, accountability, inclusion and integrity bring out the highest potential of each of our colleagues. On-site Protocol BMS has an occupancy structure that determines where an employee is required to conduct their work. This structure includes site-essential, site-by-design, field-based and remote-by-design jobs. The occupancy type that you are assigned is determined by the nature and responsibilities of your role: Site-essential roles require 100% of shifts onsite at your assigned facility. Site-by-design roles may be eligible for a hybrid work model with at least 50% onsite at your assigned facility. For these roles, onsite presence is considered an essential job function and is critical to collaboration, innovation, productivity, and a positive Company culture. For field-based and remote-by-design roles the ability to physically travel to visit customers, patients or business partners and to attend meetings on behalf of BMS as directed is an essential job function. Supporting People with Disabilities BMS is dedicated to ensuring that people with disabilities can excel through a transparent recruitment process, reasonable workplace accommodations/adjustments and ongoing support in their roles. Applicants can request a reasonable workplace accommodation/adjustment prior to accepting a job offer. If you require reasonable accommodations/adjustments in completing this application, or in any part of the recruitment process, direct your inquiries to adastaffingsupport@bms.com . Visit careers.bms.com/ eeo -accessibility to access our complete Equal Employment Opportunity statement. Candidate Rights BMS will consider for employment qualified applicants with arrest and conviction records, pursuant to applicable laws in your area. If you live in or expect to work from Los Angeles County if hired for this position, please visit this page for important additional information:  https://careers.bms.com/california-residents/ Data Protection We will never request payments, financial information, or social security numbers during our application or recruitment process. Learn more about protecting yourself at https://careers.bms.com/fraud-protection . Any data processed in connection with role applications will be treated in accordance with applicable data privacy policies and regulations. If you believe that the job posting is missing information required by local law or incorrect in any way, please contact BMS at TAEnablement@bms.com . Please provide the Job Title and Requisition number so we can review. Communications related to your application should not be sent to this email and you will not receive a response. Inquiries related to the status of your application should be directed to Chat with Ripley. R1598356 : Data Risk Analyst II — Data Privacy Office.

Other Ai Matches

Manufacturing Team Lead, Liso-cel CAR-T, Manufacturing Operations Applicants are expected to have a solid experience in handling Liso-cel CAR-T, Manufacturing Operations related tasks
Senior Therapeutic Specialist, Cardiovascular Community - Frederick, MD Applicants are expected to have a solid experience in handling Cardiovascular Community - Frederick, MD related tasks
Associate Director, Senior AI Engineer Applicants are expected to have a solid experience in handling Senior AI Engineer related tasks
Senior Therapeutic Area Specialist, Cardiovascular Community - St Louis N, MO Applicants are expected to have a solid experience in handling Cardiovascular Community - St Louis N, MO related tasks
Associate Director, Medical & Access AI & Analytics Applicants are expected to have a solid experience in handling Medical & Access AI & Analytics related tasks
Sr. Director, Forecasting Pipeline, Oncology Applicants are expected to have a solid experience in handling Forecasting Pipeline, Oncology related tasks
Associate Director, Pipeline Forecasting, Neuroscience Applicants are expected to have a solid experience in handling Pipeline Forecasting, Neuroscience related tasks
IO Account Executive Applicants are expected to have a solid experience in handling Job related tasks
Specialist, Engineer I, MSAT Process Engineering Applicants are expected to have a solid experience in handling Engineer I, MSAT Process Engineering related tasks
Senior Director, Translational Research - Cell Therapy Applicants are expected to have a solid experience in handling Translational Research - Cell Therapy related tasks
Senior Therapeutic Area Specialist, Oncology- Omaha, NE Applicants are expected to have a solid experience in handling Oncology- Omaha, NE related tasks
Medical Science Liaison, Cardiovascular - Milvexian (North TX, OK) Applicants are expected to have a solid experience in handling Cardiovascular - Milvexian (North TX, OK) related tasks
DELEGUE HOSPITALIER IDF ONCOLOGIE Applicants are expected to have a solid experience in handling Job related tasks
Director, Global Trial Leader Applicants are expected to have a solid experience in handling Global Trial Leader related tasks
US Medical Learning, Sr. Manager, Hematology Applicants are expected to have a solid experience in handling Sr. Manager, Hematology related tasks
Associate Director, US Medical Learning, Cardiovascular (CV) Applicants are expected to have a solid experience in handling US Medical Learning, Cardiovascular (CV) related tasks
Senior Therapeutic Area Specialist, Oncology- St. Louis, MO Applicants are expected to have a solid experience in handling Oncology- St. Louis, MO related tasks
Therapeutic Area Specialist, Kumamoto, ONC Applicants are expected to have a solid experience in handling Kumamoto, ONC related tasks
Medical Science Liaison, Cardiovascular - Milvexian (MN, IA, WI, ND, SD) Applicants are expected to have a solid experience in handling Cardiovascular - Milvexian (MN, IA, WI, ND, SD) related tasks
Director, Business Development, Global Alliances Applicants are expected to have a solid experience in handling Business Development, Global Alliances related tasks
Senior Analyst, Financial Risk Management Applicants are expected to have a solid experience in handling Financial Risk Management related tasks
Associate III Manufacturing, Cell Therapy Applicants are expected to have a solid experience in handling Cell Therapy related tasks
Brand Lead CHAT, Cardiovascular (m/f/d) - fixed-term Applicants are expected to have a solid experience in handling Cardiovascular (m/f/d) - fixed-term related tasks