Privacy and Compliance Analyst

About the Company

BIS Safety Software is a SaaS business focused on improving how organizations handle safety, learning, and compliance. Since 2006, the company has developed software in a space where trust, confidentiality, and accurate data handling are essential. As the business continues to expand, it is placing greater emphasis on managing risk, safeguarding client information, and staying aligned with changing regulatory obligations.

The company is headquartered in Sherwood Park, Alberta, and is open to this position being worked remotely or in person.

About the Role

The Privacy and Compliance Analyst will play a key role in supporting Risk & Compliance efforts across the organization. This person will help ensure day-to-day operations remain aligned with privacy requirements and industry expectations, while also working with multiple teams to guide projects, manage processes, and strengthen the company’s risk posture.

This opportunity is a strong match for someone who is detail-oriented, enjoys improving existing systems, and likes helping build new processes where needed.

Key Responsibilities

• Plan, coordinate, and deliver privacy, security, and compliance projects in line with business objectives and deadlines.
• Assess operational, IT, and data privacy risks, then work with cross-functional partners to reduce exposure through practical controls.
• Create, update, and strengthen policies, procedures, and compliance frameworks to reflect changing regulations such as PIPEDA, COPPA, and GDPR.
• Support external audits and assessments, including SOC 2 and PCI DSS, while also helping with internal compliance reviews.
• Contribute to software security improvements and other initiatives that reduce risk and improve control effectiveness.
• Handle security incidents by assisting with investigation, records, communication, and remediation steps.
• Review compliance-related requests and support tickets, then provide timely answers and guidance to internal stakeholders.
• Monitor privacy laws and related industry requirements and translate them into workable policies and operational practices.
• Prepare accurate documentation, summaries, and reports for internal teams, clients, and auditors.
• Work with clients, vendors, auditors, and internal departments to address compliance needs and keep initiatives moving forward.
• Support training and awareness activities that encourage a stronger culture of privacy, security, and compliance.

What We’re Looking For

• A self-starter who is confident working with stakeholders at different levels of the organization.
• Strong people skills and the ability to build productive relationships across teams.
• Solid problem-solving ability with the confidence to assess and troubleshoot complex issues.
• Comfort in fast-moving environments with multiple priorities and competing deadlines.
• A collaborative personality that fits well in team-oriented settings.
• A habit of taking initiative and improving processes continuously.
• Strong working knowledge of Microsoft 365, along with an interest in technology; an IT background is considered an advantage.

Qualifications

• At least 5 years of experience in privacy, data security, compliance, and risk management.
• Postgraduate study in cybersecurity or a closely related discipline.
• Good understanding of Canadian privacy laws and regulations.
• Experience creating privacy and compliance policy documents and delivering related training.
• Project management experience; PMP certification is a plus but not mandatory.
• Additional value will be given to candidates with CIPP/C, CIPM, or similar privacy/security credentials.

Compensation and Benefits

• Employee Stock Ownership Plan (ESOP).
• Comprehensive medical, dental, and vision coverage.
• Life insurance and disability insurance.
• Health spending account.
• Flexible working hours.
• On-the-job training and growth opportunities.
• Free on-site parking.

Additional Information

BIS Safety Software has been based in Sherwood Park, Alberta since 2006. The company builds software that supports organizations in managing safety training, learning, and compliance, and continues to grow.

Internally, the company does not use job titles, placing more emphasis on humility and contribution than hierarchy. It also moves quickly, adopts new ideas rapidly, and gives employees meaningful ownership of their work. Through the ESOP, team members have the chance to own a share of the company they help build.

Application Notes

Interested candidates can visit the company’s careers page for more details. Only applicants selected for interviews will be contacted.

The hiring process may involve artificial intelligence tools to help review applications, analyze resumes, assess responses, and flag possible inconsistencies or verification signals. These tools support the recruitment team but do not replace human judgment. Final hiring decisions are made by people. Applicants who want more information about how data is processed can contact the company.

Job ID: L202603-26CRC.

Salary is based on experience and reflects the unique skills each person brings to the role.