Deputy Data Protection Officer

Data Protection Governance & Compliance:

• Support the development and implementation of data protection policies and frameworks to ensure compliance with applicable data privacy laws.
• Ensure organizational data processing activities adhere to legal, regulatory, and contractual obligations.
• Serve as the primary contact for regulatory authorities and manage inquiries or audits.
• Monitor and evaluate data protection risks and advise senior leadership on mitigation strategies.

Risk Management & Data Security:

• Conduct Data Protection Impact Assessments (DPIA) and oversee risk mitigation efforts.
• Collaborate with IT and security teams to implement cybersecurity measures protecting personal and sensitive data.
• Lead regular audits to identify vulnerabilities and ensure compliance with security standards.

Training, Awareness & Advisory:

• Design and deliver training programs on data privacy best practices and legal responsibilities.
• Guide internal teams on privacy-by-design principles in new projects, products, and technologies.
• Advise leadership on emerging data protection trends, risks, and regulatory updates.
• Manage data processing agreements with third-party vendors to ensure compliance.
• Collaborate with business units, legal, IT, and HR to integrate privacy requirements into operations.
• Engage with regulators, auditors, and legal experts to maintain proactive compliance.

Team Management & Succession Planning:

• Foster professional development within the team through training and mentorship.
• Develop a talent pipeline ensuring succession planning with a 1:2 ratio.

Environment, Social & Governance:

• Oversee corporate governance within the region, aligning with organizational policies and regulations.
• Promote responsible use of resources and adherence to environmental, health, and safety policies.
• Lead sustainability initiatives to meet organizational targets.
• Follow the ABMS roles and responsibilities as outlined in the ABMS manual.

Additional considerations include understanding ethical standards, integrity, and risk evaluation related to bribery, following the ABMS manual for detailed guidance.

Requirements

Education:

• Law degree with certifications such as Certified Information Privacy Professional or Certified Information Privacy Technologist.

Experience:

• 10-15 years of experience in EU and global data protection laws, IT systems, programming, and leadership in information security certifications.
• Strong communication, quality and service orientation, results delivery, digital fluency, diversity and inclusion awareness, agility, leadership, networking, stakeholder management, compliance, governance, risk, control, and training facilitation skills.