Data & Privacy Manager

Job Description

Opportunity to play a leading role in the implementation of requirements and obligations imposed on the Group s storage and processing of data, particularly in relation to the geographic location (data sovereignty).Responsibilities
• Provide thought leadership, drive design and implementation (operationalisation) of the Data Sovereignty Standard and related data management regulations
• Work closely with Data Protection Officer and Chief Data Officer to maintain up-to-date knowledge about data sovereignty related laws and regulations
• Analyse and assess Data Sovereignty Obligations and help determine impact across the Banks Process Universe.
• Define and manage scope of work (Backlog) for specific data sovereignty areas and ensure alignment across the whole Book of Work
• Work closely with other bank s areas to develop plans for operationalisation of requirements related to data sovereignty
• Facilitate workshops with 1st line of defence, 2nd line of defence to source inputs and document outcomes on current state, risks and controls as well as proposed processes, frameworks and solutions
• Understand practical use cases from Businesses, Functions, and Countries related to data sovereignty, data localisation, cross boarder data storage, transfer, and access.
• Support bank s areas in execution of their plans to mitigate existing risks by building and sharing group-level capabilities and services related to data sovereignty
• Conduct various assessments and surveys e.g. on Data Sovereignty impact / risk & controls
• Gather data and perform analysis on applications, products, processes, documentation and third parties to evaluate compliance with laws, regulations, and internal standards
• Design/ re-design processes and controls to ensure compliance with laws, regulations, and internal standards in the most efficient, streamlined and customer centric way for the Group
• Gather and validate requirements for technology solutions supporting or impacted by Data Sovereignty Obligations
• Facilitate the choice and implementation of technology solutions, including, but not limited to build vs buy decisions, proof of concepts, system implementation, testing
• Drive change and adoption including, but not limited to, creating communications (e.g. launch campaigns), training materials as well as delivery of training
• Define metrics and dashboards for monitoring and reporting purposes as well as provide write ups and data visualisations to forums to enable decision making
• Provide robust challenge and escalation to senior management and all relevant business/function/region stakeholders to ensure activities achieve risk reduction
Key Stakeholders
• Group CDO
• Business & Functions COOs and Data teams
• Chief Data Protection Officer
• CFCC DS Standard Owner
• Legal Head of Tech Services
• Head ICS, Business & Functions
• Global Head of Assurance Cyber, Data & Automation
• 2nd line Risk & Compliance
• Process Owners
• Country Compliance teams
Our Ideal Candidate Qualifications/ Skills :
• Extensive experience in a relevant role (e.g. Compliance, Legal, Audit) or experience in data sovereignty
• Good understanding of Data management Policies, Standards and best practices
• Effective oral and written communication skills, with an ability to influence and to gain the respect of senior stakeholders and peers
• Confident and courageous to raise/escalate issues in a pro-active, professional, and timely manner
• University degree with professional certification (such as CIPP, CIA, CISA, CISSP, or CISM) preferred
• Highly motivated individual with a strong track record of achievement
• A good team player
• Ability to multi-task and work under tight deadlines
• Excellent stakeholder management skills
• 5 years of experience.
,

Keyskills :
keeping things simple3rd party relationshipsuse caseshuman skillslife insurancedata managementcustomer centricsenior management