5,863 Data Protection jobs in the United States

Company: enGen

Job Summary: Candidates residing within 50 miles of Pittsburgh, Mechanicsburg, or Buffalo are required to work in the office on Tuesdays, Wednesdays, and Thursdays. Candidate must be a US Citizen (due to contractual/access requirements). This job works with others to plan, research, evaluate, design and develop Information Security and Risk Management (ISRM) Infrastructure systems by applying engineering, hardware and software design theories and principles to develop a compatible system infrastructure in line with organizational strategies. Assists with the design, development, and implementation of ISRM Infrastructure components such as operating systems, software tools, and utilities. Supports studies of ISRM Infrastructure performance and traffic analysis. Determines systems design requirements and ensures that system improvements are successfully implemented and monitored to increase efficiency. Assists with the development of ISRM Infrastructure engineering policies, standards and procedures.

Essential Responsibilities:

• Serve on or may lead teams in clearly defining requirements, deliverables and timeframes. Escalate issues and make recommendations to resolve them to the appropriate audience.
• Conduct root cause analysis to identify and resolve complex problems impacting ISRM Infrastructure.
• Develop and/or deliver technical training in complex technical areas. Mentor less senior staff in the execution of their duties.
• Complete project tasks to enable the on time, within budget and scope delivery of ISRM Infrastructure projects.
• Implement, monitor, configure, and maintain security systems.
• Assure compliance to required standards, procedures, guidelines and processes.
• Other duties as assigned or requested.

Required Education: Bachelor's Degree in Computer science, information systems, or closely related field

Substitutions: None

Preferred Education: None

Experience:

• Minimum: 3 - 5 years' experience with information security and systems analysis
• Minimum: 3 - 5 years' with information security and/or information risk management and/or information technology
• Minimum: 3 - 5 years' with operating systems and software administration
• Minimum: 3 - 5 years' developing, communicating and presenting information security and risk management concepts to varying audiences
• Minimum: 3 - 5 years' with technologies such as Intrusion Prevention Systems (IPS), firewalls, endpoint protection, web/email filtering, Data Loss Prevention (DLP), digital rights management, encryption, Security Event and Incident Management (SEIM), and virtualization platforms
• Preferred: 5 - 7 years' experience with information security and systems analysis
• Preferred: 1 - 3 years' experience working within an information security function using the HITRUST Common Security Framework (HITRUST CSF), or the NIST 800-83 cyber security framework
• Preferred: 3 - 5 years' IT/information security risk advisory experience
• Preferred: 3 - 5 years' In-depth understanding of network security architecture, network and networking protocols
• Preferred: 3 - 5 years' database management, system administration and software development lifecycle

Skills:

• Knowledge of HITRUST CSF, NIST 800-83 cyber security framework, PCI, HIPAA, HITECH, COBIT, ISO 27001/2, and ITIL 3
• Familiarity with secure SDLC best practices
• Knowledge of Microsoft Apps and Suites, Windows Server, SharePoint, etc.
• Strong teamwork and inter-personal skills

Required Licensure: None

Preferred Licensure: Certified Information Systems Security Professional (CISSP), Security

Travel Requirement: 0% - 25%

Language Requirement (other than English)? None

Physical, Mental Demands and Working Conditions:

The physical, mental demands and working conditions described here are representative of those that must be met by an employee to successfully perform the essential function of their job. Reasonable accommodations will be made when necessary to enable individuals with disabilities to perform the essential duties of the position, to the extent that they do not cause undue hardship.

Position Type: Office-Based

An employee in this position works in an office environment. The position frequently requires the employee to communicate effectively with others both inside and outside the workplace (e.g., in person, via telephone, via email). The employee must be able to understand, interpret and analyze data, solve problems, concentrate, and research, use available technological resources and systems (e.g., computers and computer programs), multi-task, prioritize, and meet multiple deadlines to complete essential tasks. The employee generally works in a fast-paced and frequently stressful environment, must attend work on a regular and reliable basis as well as adhere to all workplace policies, and may be called upon to work outside regular business hours. Teaches/Trains others regularly Occasionally Travels regularly from the office to various work sites or from site-to-site Occasionally Works primarily out-of-the office selling products/services (Sales employees) Does Not Apply Physical Work Site Required Yes

Pay Range Minimum: $67,500.00 Pay Range Maximum: $126,000.00 Base pay is determined by a variety of factors including a candidate's qualifications, experience, and expected contributions, as well as internal peer equity, market, and business considerations. The displayed salary range does not reflect any geographic differential Highmark may apply for certain locations based upon comparative markets.

Highmark Health and its affiliates prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities and prohibit discrimination against all individuals based on any category protected by applicable federal, state, or local law. We endeavor to make this site accessible to any and all users.

Grant Thornton’s Privacy and Data Protection team helps our clients transform and mature their privacy program through assessment, automation, process re-engineering, and managed services. As a Manager within our Privacy & Data Protection practice, you will get the opportunity to grow and contribute to our clients' business needs across a variety of domains including privacy strategy, governance, automation, risk, and compliance management – all with the resources, environment, and support to help you excel. From day one, you’ll be empowered by the greater Risk team and Cyber team to help clients make the moves that will help them achieve their vision and help you achieve more, confidently. Your day-to-day may include: Adhere to the highest degree of professional standards and strict client confidentiality Ability to manage multiple engagements and competing priorities in a rapidly growing, fast-paced, interactive, results-based team environment Apply current knowledge of privacy and data protection trends to issues and other opportunities for improvement Lead the execution of assigned client engagements from start to finish, which includes the engagement planning, directing, and completion of assessments, privacy program implementations, privacy technology implementations, and managed services engagements on time and on-budget Work with the client to plan an engagement strategy, define objectives, and address privacy-related controls risks, and issues Proactively interact with key client management to gather information, resolve problems, and make recommendations for improvements Work closely with senior managers and partners to promptly identify and resolve client problems or issues Collaborate with team members at all levels in the development and marketing of the privacy and data protection solution offering Support business development activities including client prospecting, proposal development, professional networking, thought leadership, external webcasts, and other brand-building activities Other duties as assigned You have the following technical skills and qualifications: Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, Juris Doctorate, or a related field is required, Masters preferred Minimum 5 years of related work experience in a similar consulting practice or function servicing cross-industry clients at a national level One or more of the following certifications required: CIPP, CIPM, CIPT, CISSP, or other related certifications Deep understanding of global privacy and data protection regulations and frameworks, such as the GDPR, CCPA, CPRA, HIPAA, GLBA, NIST, ISO, and more Experience working with leading privacy regulations to perform privacy assessments and support privacy program implementations Experience implementing and sustaining tools such as OneTrust, Securiti.ai, WireWheel, and BigID across use cases such as data mapping, data discovery, privacy impact assessments, consent/preference management, cookie compliance, data subject rights, and more Experience preparing reports and other deliverables that contain strategy, project, or technical analysis and findings in connection with consulting engagements and communicating those results to the team and client Experience in project management and the ability to clearly communicate data protection and privacy issues verbally on both a formal and informal basis to all levels of client staff Exceptional client service and communication skills, with a demonstrated ability to develop and maintain outstanding client relationships Can travel as needed The base salary range for this position in Chicago, IL only is between $144,000 and $16,000. The base salary range for this position in the firm's New York, Los Angeles, CA, and Bellevue, WA offices is between 155,500 and 233,300. The base salary range for this position in the firm's San Francisco, CA, and San Jose, CA offices is between 165,600 and 248,400. #LI-LG1 About Us At Grant Thornton, we believe in making business more personal and building trust into every result – for our clients and you. Here, we go beyond your expectations of a career in professional services by offering a career path with more: more opportunity, more flexibility, and more support. It’s what makes us different, and we think being different makes us better. In the U.S., Grant Thornton delivers professional services through two specialized entities: Grant Thornton LLP, a licensed, certified public accounting (CPA) firm that provides audit and assurance services ― and Grant Thornton Advisors LLC (not a licensed CPA firm), which exclusively provides non-attest offerings, including tax and advisory services. In 2025, Grant Thornton formed a multinational, multidisciplinary platform with Grant Thornton Ireland. The platform offers a premier Trans-Atlantic advisory and tax practice, as well as independent American and Irish audit practices. With $2.7 b llion in revenues and more than 50 offices spanning the U.S., Ireland and other territories, the platform delivers a singular client experience that includes enhanced solutions and capabilities, backed by powerful technologies and a roster of 12,000 quality-driven professionals enjoying exceptional career-growth opportunities and a distinctive cross-border culture. Grant Thornton is part of the Grant Thornton International Limited network, which provides access to its member firms in more than 150 global markets. About the Team The team you’re about to join is ready to help you thrive. Here’s how: • Whether it’s your work location, weekly schedule, or flex time off, we empower you with the options to work in the way that best serves your clients and your life. Consistent with the firm’s hybrid work model, this position will require in-person attendance at least two days per week, either at a GT office or client site. • Here, you are supported to prioritize your overall well-being through work-life integration options that work best for you and those in your household. • We understand that your needs, responsibilities and experiences are different — and we think that’s a good thing. That’s why we support you with personalized and comprehensive benefits that recognize and empower all the identities, roles and aspirations that make you, well, you. See how at • When it comes to inclusion, we are committed to doing more than checking boxes. Explore all the ways we’re taking action for diversity, equity & inclusion at Here’s what you can expect next: If you apply and are selected to interview, a Grant Thornton team member will reach out to you to schedule a time to connect. We encourage you to also check out other roles that may be a good fit for you or get to know us a little bit better at Benefits: We understand that your needs, responsibilities and experiences are different, and we think that’s a good thing. That’s why we support you with personalized and comprehensive benefits that recognize and empower all the identities, roles and aspirations that make you, well, you. For an overview of our benefit offerings, please visit: Benefits for internship positions: Grant Thornton interns are eligible to participate in the firm’s medical, dental and vision insurance programs and the firm’s employee assistance program. Interns also receive a minimum of 72 hours of paid sick leave, and are paid for firm holidays that fall within their internship period. Benefits for seasonal employee positions: Grant Thornton seasonal employees are eligible to participate in the firm’s medical, dental and vision insurance programs and the firm’s employee assistance program. Seasonal employees may also be eligible to participate in the firm’s 401(k) savings plan and employee retirement plan in accordance with applicable plan terms and eligibility requirements. Seasonal employees receive a minimum of 72 hours of paid sick leave. Grant Thornton employees may be eligible for a discretionary, annual bonus based on individual and firm performance, subject to the terms, conditions and eligibility criteria of the applicable bonus plan or program. Interns and seasonal employees are not eligible for bonus compensation. Additional Details: It is the policy of Grant Thornton to promote equal employment opportunities. All personnel decisions (including, but not limited to, recruiting, hiring, training, working conditions, promotion, transfer, compensation, benefits, evaluations, and termination) are made without regard to race, color, religion, national origin, sex, age, marital or civil union status, pregnancy or pregnancy-related condition, sexual orientation, gender identity or expression, citizenship status, veteran status, disability, handicap, genetic predisposition or any other characteristic protected by applicable federal, state, or local law. Consistent with the Americans with Disabilities Act (ADA) and applicable state and local laws, it is the policy of Grant Thornton to provide reasonable accommodation when requested by a qualified applicant or employee with a disability, unless such accommodation would cause an undue hardship. The policy regarding requests for reasonable accommodation applies to all aspects of employment, including the application process. To make an accommodation request, please contact For Los Angeles Applicants only: We will consider for employment all qualified Applicants, including those with Criminal Histories, in a manner consistent with the requirements of applicable state and local laws, including the City of Los Angeles’ Fair Chance Initiative for Hiring Ordinance. #J-18808-Ljbffr