Job ID 2019-16169

Privacy and Compliance Analyst


Information Technology

1300 GEZON PKWY SW WYOMING, MI 49509-9300


Apply Now

In the rapidly changing digital environment, organizations are increasingly vulnerable to information security threats and have to respond accordingly.  As such, the Enterprise Information Security team at Gordon Food Service is growing.  We are seeking a Privacy and Compliance Analyst who will help develop, execute, improve and scale a comprehensive privacy program strategy.

The Privacy and Compliance Analyst will help to review, enhance, and manage the day to day operation of Gordon Food Service's privacy program. They will review Gordon Food Service products, services, and offerings for privacy compliance; conduct risk assessments; lead core documentation; and lead privacy compliance efforts. Provide accurate, consistent, and timely assessment of IT controls and privacy compliance requirements for all Gordon Food Service Information Technology.  Develop practical and effective recommendations for improving IT controls and processes.


What you will do:

  • Work with Legal, Risk, Communications, Audit, HR, IT, business process owners and other internal stakeholders to ensure enterprise wide coverage of the privacy discipline.
  • Work to ensure the organization maintains the appropriate privacy and confidentiality consent procedures, authorization forms, and information notices.
  • Help determine the enterprise's specific privacy-related requirements and potential vulnerabilities.
  • Monitor the status and effectiveness of privacy controls, ensuring that privacy-related key risk indicators are effectively monitored to prevent an unacceptable impact on business objectives and reputation.
  • Execute activities to ensure compliance with applicable privacy regulation.
  • Devise and update policies and procedures, ensuring alignment with the actual implementation of personal data processing activities.
  • Support creation of an inventory that documents how and why Gordon Food Service collects, shares and uses personal data.
  • Evaluate the extent to which customer and employee information is collected and shared internally and externally.
  • Maintain a repository of all personal data stores and processing activities.
  • Serve as the internal advisor to the IT and information security departments to interpret privacy-policy-related questions.
  • Ensure that data security practices — in particular, logging, monitoring and auditing practices — do not conflict with privacy requirements.
  • Work closely with the technology services teams to anticipate potential privacy problems embedded in the use of emerging technologies.
  • Identify trends in privacy and regulatory requirements and compliance enforcement, and account for the necessary changes in the privacy management program, updating information only to the stakeholder audiences affected in their respective activities.
  • Recommend new and innovative strategies to address privacy and regulatory standards and requirements in new computing paradigms, such as the Internet of Things (IoT) or the cloud.
  • Work with third-party stakeholders (including business partners, suppliers, service providers and IT product vendors) to ensure that they clearly understand and comply with Gordon Food Service privacy requirements.
  • Execute review of key controls outputs to validate compliance.
  • Monitor completion of periodic controls tasks by other teams.
  • Coordinate controls requirements with Internal Audit and Product Owners of tools that contain PII and PHI.
  • Participate in annual external assessments.  Communicate findings and recommendations to leadership.
  • Recommend controls process improvements. Maintain controls and process policies and procedures documentation.
  • Assist with annual review, daily, weekly and monthly operational controls and adherence to Sarbanes-Oxley and Payment Card Industry Data Security Standards contractual obligations for Gordon Food Service.
  • Assist with Security and Privacy Awareness Program activities.
  • Assist with implementation and governance of IT controls across North America.


Our ideal candidate will have:

  • Three years previous related experience required.  Preferred-work experience with privacy program development and administration responsibilities.
  • Bachelor’s Degree in Business, Law, Computer Science, Information Technology, or a related field is required
  • Preference for one or more of the following certifications:Certified Information Privacy Professional (CIPP), Certified Information Privacy Management (CIPM), and/or Certified Information Privacy Technologist (CIPT).
  • Preference for experience in auditing, consulting, legal, or program management environments, with at least 2 such years in privacy.

Career Area

Corporate Functions

Learn More


We take care of each other at Gordon Food Service. Employees love our competitive benefit plans, which include all the things you would expect and a few that you might not!

Get a quick glance at who we are and the impact you could have on the food service industry. There's a seat at our table for you!

Working Here

Learn More

Be part of an amazing culture where what matters to you, matters to us!

Gordon Food Service values our customers and understands that their success is largely dependent upon their workforce. To demonstrate our commitment to our partnership, we will require any candidate who works for a Gordon Food Service customer to provide a letter of support from their management if they are selected for the interview process.

Gordon Food Service is an equal opportunity employer.

All qualified applicants and employees will receive consideration for employment, or in terms or conditions of employment, without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, status as a protected veteran, or status as a qualified individual with disability. The EEO is the Law poster is available here:

If you require reasonable accommodation for any part of the application or hiring process due to a disability, please submit your request to and use the words “Accommodation Request” in your subject line. Please keep in mind this method is reserved for individuals who require accommodation due to a disability.

All Gordon Food Service locations are tobacco-free.
Gordon Food Service is a drug-free workplace and drug tests all employees.


Similar Jobs

Job Category Job Title Work Location
Information Technology ERP Testing Lead 1300 GEZON PKWY SW
Information Technology Software Engineer 1300 GEZON PKWY SW
Information Technology Workday Software Engineer 1300 GEZON PKWY SW
Information Technology Senior Database Administrator 1300 GEZON PKWY SW
Information Technology Part-Time Cybersecurity Intern 1300 GEZON PKWY SW
Information Technology API Enterprise Architect 1300 GEZON PKWY SW
Information Technology Privacy and Compliance Analyst 1300 GEZON PKWY SW
Information Technology System Architect 1300 GEZON PKWY SW
Information Technology Software Engineer 1300 GEZON PKWY SW

Sign up for our Talent Community to stay up to date about future positions as they become available at Gordon Food Service.

Jan 19, 2020 Jan 25, 2020 Gordon Food Service