Great Opportunity for a Data Protection/Data Privacy/Data Loss Prevention specialist to join an international bank as a Data Protection Officer covering the APAC region
Job Description:
Direct Responsibilities
- Contribute to relevant personal data protection activities realization
- Guarantee required norms and methods definition and application to a company's good data protection risks apprehension (follow-up of projects, information systems adaptation, declarations conception and maintenance, subcontractors contracts analysis, follow-up on control plans reporting, etc.)
- Guarantee advice and assistance to strategical program ongoing.
- Support the implementation of the privacy strategy defined by APAC DPO
- Assist the APAC DPO in the supervision and monitoring of implementation of the Group's Data Protection policies and guidelines, bearing the local regulatory requirements in mind, to ensure consistency
- Define action plans and corrections related, and to ensure application of the same
- Alert APAC DPO when activity is under operational risk (non-appropriateness between needs and resources, etc.), to propose correction solutions and to implement those solutions
- Contribute to continuous efficiency improvement and to any optimization process.
- Contribute to operational activities achievement
- Adjudicate or mediate APAC DPO engaging decisions, emergencies and escalated issues
- Contribute to permanent control actions
- Contribute to perform LOD2 controls and challenge LOD1
- Contribute to perform the check and challenge of the RCSA
- Contribute to RISK ID exercise
- Contribute to OR&C report
- Ensuring professional network development
- Participate in local Data Protection Committees when requested by the DPO
- Contribute to Internal Control Committee
- Collaborate with local CROs and RISK teams
Supporting Responsibilities
- Assist the DPO on exchanges with the authorities in charge of the protection of personal data under the responsibility of the DPO
- Assist the DPO in the supervision and implementation of Privacy by Design principles throughout the lifecycle of all projects, activities, products, services, processes and systems
- Contribute to role development by validating data protection requirements for new activities, new products, services or specific operations, and to carry technical assistance
- Receive, process and advise internal and external local solicitations about data protection
- Receive, process and advise requests from data subjects, subcontractors and partners etc.
- Itemise existing processes and identify breaches regarding data protection requirements (APAC local regulation & GDPR requirements)
- Contribute to perform risk assessment on personal data breaches
- Assist the DPO in monitoring documentation, e.g. the RoPA (Register of Processing Activities)
- Contribute to the identification and notification process for data protection violations according to defined procedures and local legal requirements
- Realize effectiveness for data protection controls and to ensure expected reporting
- Ensure regular reporting to APAC DPO about the activity
- Assist the DPO, where required, with local language nuances, law and practices.
- Contribute in the creation and implementation of awareness programs and to the promotion of a culture of protection of personal data within the scope of responsibility.
Job Requirements:
- Degree holder in legal, business or computer science or IT
- At Least 5 years of relevant experience in IT risk, Cyber security, Data Protection and related regulatory topics
- CIPP Certification or similar privacy certificate would be a plus
- Good understanding of EU GDPR with IAPP/E certification
- 3-5 years relevant working experience in privacy is a minimum
- 5-8 years of total working experience
- Previous APAC or cross-territory experience preferred
- Experience in senior level reporting and discussion
