Udot Chief Administrative Office Coordinator

The Chief Administrative Office Coordinator is tasked with supporting information security, privacy initiatives, and ensuring compliance with Utah's Government Records Access and Management Act (GRAMA). This position performs a variety of security and privacy-related tasks, collaborates with team members to safeguard sensitive information, and support the Role of the Agency's Chief Administrative Officer (CAO).

• Assist in implementing and maintaining privacy and information security policies/procedures in accordance with state regulations.

• Coordinate privacy assessments and vulnerabilities risk assessments.
• Track privacy incidents/breaches and assist in incident response activities.
• Develop visual analytics to show information security risks.
• Assist in tracking security and privacy training at UDOT.
• Coordinate for CAO review/signatures on record schedules/series updates.
• Coordinate CAO agency review of fee waiver or denial of records requests.
• Coordinate with GRAMA coordinator when records/fee denials are expected.
• Develop, standardize, and prepare appeal-related briefings for CAO's review.
• Coordinate legal counsel hearings and appeals as needed regarding GRAMA.
• Coordinate Records Management Committee approval requests.
• Coordinate calendars and schedule appointments relating to appeals activities, or record schedule/series approvals.
• Monitor and track appeal-related touchpoints and milestone activities.
• Summarize, log, and track end-point outcomes of appeal processes.
• Schedule security, privacy, and record reviews in accordance with retention schedules and/or appeals process protocols.

• 
  Qualifying work experience related to the coordination of data security, information privacy, and administrative compliance.
• Strong technical understanding of information privacy and the ability to review and write technical documents.
• Maintain confidentiality in all matters pertaining to information requests, data reviews, GRAMA appeals, and agency reviews actions.
• Ensure compliance with state, federal, and agency standards regarding policies and guidelines.
• Experience coordinating investigations into allegations of inappropriate activities, data breaches, or inappropriate records requests.
• Experience with records management, retrieval, and disposal.
• Appropriate certifications or ability to obtain appropriate certifications within the first 6 months of employment.

• This is a new position to UDOT. It is currently classified as the Agency Information Security Officer I but there is an effort to create a new job classification called Agency Privacy Officer I to better fit the actual job. Once created, this position will likely be reclassified to the new classification. There will be no other impacts to the position when that happens.
• Working Conditions - Risks found in the typical office setting, which is adequately lighted, heated and ventilated, e.g., safe use of office equipment, avoiding trips and falls, observing fire regulations, etc.
• Physical Requirements - Typically, the employee may sit comfortably to perform the work; however, there may be some walking; standing; bending; carrying light items; driving an automobile, etc. Special physical demands are not required to perform the work.
• Employee may be reassigned to a different location as deemed necessary by the Region Director/Division Leader.