Data Protection Officer (DPO)
The Data Protection Officer (DPO) reports to the COO and works closely with senior service owners across the organization. The position requires a strong, knowledgeable leader able to provide full-range coverage in data privacy matters, detailed planning as well as broad-based hands-on experience with required operations.
The DPO leads the implementation of the data privacy program, advises senior leadership on data privacy direction, designs appropriate policies and procedures to manage data privacy and implements best practices for privacy awareness and training. The position requires a leadership approach that is engaging, imaginative, and collaborative in order to set the best balance between data privacy strategies, business and technology priorities.
- Maintain the organisation’s personal data inventory map
- Develop new or enrich existing policies and procedures to handle personal data in electronic or non-electronic forms
- Plan, develop and maintain an accountability roadmap for the data assets
- Conduct risk assessment exercises to flag out any potential data protection risks and put in place data protection policies to mitigate those risks
- Liaise with Information Security office to keep employees informed of internal personal data protection processes and policies
- Register and maintain information or otherwise notify authorities on private data processing and storage activities
- Administering data controllers & data processor identities inside and outside of the company group and maintain the legal requirements corresponding to the assigned roles
- Enhance or challenge the Information Security office with respect to the implementation of the data protection processes & practices
- Minimum of ten (10) years of combined legal and IT security experience, with at least three (3) being in a senior leadership role
- Bachelor’s or Master’s degree required in law (business/privacy domains if applicable), information systems, information security, or a related discipline
- Working knowledge of GDPR and relevant compliance, regulatory frameworks and data protection standards is a must
- Ability to liaise and coordinate with data protection authorities and controller institutions
- Financial Services/Banking industry experience will be considered a plus
- Excellent communication and interpersonal skills
- Energy, enthusiasm and the ability to multitask in a fast-paced, dynamic environment
Includes competitive salary , working closely with a highly motivated team in a dynamic and fast paced environment that provides the opportunity for rapid career development.