Assistant Manager – Data Governance & Privacy

We are seeking a highly skilled and experienced Data Governance & Data Privacy Consultant to join our dynamic team in the UAE. This role will be pivotal in assisting our clients across various industries in establishing robust data governance frameworks, ensuring compliance with data privacy regulations (including but not limited to the UAE's Personal Data Protection Law), and leveraging data analytics to drive informed business decisions. The ideal candidate will possess a strong understanding of data management principles, privacy laws, analytical methodologies, and the ability to translate complex technical concepts into clear business recommendations. This role requires excellent communication, stakeholder management, and problem-solving skills.

Responsibilities:

Data Governance:

• Develop and implement comprehensive data governance frameworks, policies, standards, and procedures tailored to clients' specific business needs and regulatory requirements in the UAE.
• Assess existing data management practices and identify areas for improvement in data quality, data security, data lineage, and metadata management.
• Define roles and responsibilities related to data ownership, stewardship, and accountability within client organizations.
• Establish and facilitate data governance committees and working groups to ensure effective implementation and ongoing management of data governance initiatives.
• Develop and deliver training programs to educate client stakeholders on data governance principles and practices.
• Monitor and audit compliance with data governance policies and procedures, and recommend corrective actions as needed.
• Assist clients in selecting and implementing data governance tools and technologies.

Data Privacy:

• Provide expert advice and guidance on data privacy laws and regulations relevant to the UAE, including the Personal Data Protection Law (PDPL) and other applicable international standards (e.g., GDPR).
• Develop comprehensive audit plans and programs based on risk assessments, regulatory requirements (including UAE PDPL, ISO 27001, etc.), industry best practices, and client-specific needs.
• Conduct on-site audits of information security controls, data privacy practices, and compliance with relevant laws and standards.
• Conduct data privacy impact assessments (DPIAs) to identify and mitigate privacy risks associated with data processing activities.
• Develop and implement data privacy policies, procedures, and controls to ensure compliance with applicable regulations.
• Assist clients in establishing processes for handling data subject rights requests (e.g., access, rectification, erasure).
• Gather and analyze audit evidence through interviews, document reviews, system assessments, and testing of controls.
• Evaluate the effectiveness of implemented security controls and data privacy safeguards.
• Identify control weaknesses, non-conformities, and areas for improvement.
• Assess the adequacy of policies, procedures, and technical configurations.
• Evaluate compliance with the UAE's Personal Data Protection Law (PDPL) regarding data processing, data subject rights, cross-border data transfers, and other key requirements.
• Assess compliance with other relevant local regulations (e.g., IAR, ADHICS) and international standards (e.g., ISO 27001, GDPR).
• Develop and deliver data privacy awareness training programs for client employees.
• Support clients in responding to data breaches and privacy incidents in accordance with legal and regulatory requirements.
• Advise on cross-border data transfer requirements and implement appropriate safeguards.
• Assist clients in selecting and implementing privacy-enhancing technologies and tools.

Consulting & Soft Skills:

• Effectively communicate complex technical concepts and recommendations to diverse audiences, including senior management.
• Build and maintain strong relationships with client stakeholders at all levels.
• Facilitate workshops and meetings to gather requirements, present findings, and drive consensus.
• Manage project timelines and deliverables effectively.
• Demonstrate strong problem-solving and analytical skills.
• Possess excellent presentation and interpersonal skills.
• Be adaptable and able to work in a fast-paced consulting environment.

Qualifications:

• Bachelor's or Master's degree in Computer Science, Business Analytics, Statistics or related field
• Minimum of 5 years of professional experience in data governance, data privacy, and/or data analytics roles, preferably within a consulting environment.
• Strong understanding of data governance principles, methodologies, and best practices (e.g., DAMA-DMBOK).
• In-depth knowledge of data privacy laws and regulations, particularly the UAE's Personal Data Protection Law (PDPL). Familiarity with other international privacy regulations (e.g., GDPR, CCPA) is a plus.
• Proven experience in conducting data privacy impact assessments (DPIAs).
• Hands-on experience with data analytics tools and technologies (e.g., SQL, Python, R, Power BI, Tableau).
• Experience in developing and implementing data governance and data privacy frameworks and policies.
• Excellent analytical and problem-solving skills with the ability to interpret complex data and translate it into actionable insights.
• Strong communication, presentation, and interpersonal skills.
• Ability to work independently and as part of a team.
• Experience working with clients in the UAE or the Middle East region is highly desirable.
• Relevant certifications (e.g., CDMP, CIPP, CIPT, CIPM) are a plus.