Data Privacy Manager

Social network you want to login/join with:

As a Data Privacy Manager at our client, you will play a critical role in overseeing and managing the bank’s data privacy and protection initiatives. You will be responsible for ensuring compliance with global privacy regulations, particularly GDPR and PECR, while developing and maintaining policies that safeguard the personal and sensitive information of our customers and employees. This position requires a hybrid skill set combining deep subject matter expertise in privacy regulations and strong project management capabilities. You will drive the bank’s privacy programs, ensuring they are implemented efficiently and effectively across the organization.

1. Privacy Compliance: Ensure adherence to all relevant data privacy laws and regulations, including GDPR and PECR, across all regions and business units.
2. Policy Development: Create, update, and enforce data privacy policies, procedures, and guidelines aligned with industry best practices and regulatory standards.
3. Risk Assessment: Conduct regular privacy risk assessments and audits to identify vulnerabilities, recommend solutions, and implement safeguards.
4. Data Breach Response: Lead the incident response team in case of data breaches or privacy incidents, overseeing investigations, reporting, and mitigation.
5. Training & Awareness: Develop and deliver training programs to educate employees on privacy obligations and data protection best practices.
6. Cross-functional Collaboration: Partner with legal, IT, cybersecurity, HR, and other departments to integrate privacy requirements into business processes and systems.
7. Vendor Management: Review and assess third-party vendors for compliance with data privacy policies, ensuring secure data handling by external partners.
8. Data Subject Rights: Manage requests related to data subject access, rectification, and erasure, ensuring legal compliance.
9. Reporting & Documentation: Prepare and submit reports to senior management and regulators on privacy matters, including risk assessments, audit findings, and compliance status.
10. Project Management: Oversee privacy-related projects, ensuring timely and scope-compliant delivery. Develop project plans, track milestones, and manage deliverables.
11. Continuous Improvement: Stay updated on evolving privacy regulations, emerging risks, and industry trends to continually enhance the bank's privacy program.

• Education: Bachelor's degree in Law, Information Security, Computer Science, or related fields. Master’s degree or certifications (CIPP, CIPM, CISSP) are highly desirable.
• Experience: 5-7+ years in data privacy, risk management, or compliance, with project management experience, preferably in banking or financial services.
• Knowledge: Expert understanding of GDPR and PECR regulations and their application. Proven experience as a Data Privacy SME, driving privacy initiatives and embedding data protection practices. Demonstrated ability to lead large-scale privacy projects from inception to completion.
• Competencies: Problem-solving skills to identify risks and propose solutions. Strong stakeholder management and communication skills to influence senior stakeholders. Experience in developing project plans, managing resources, and delivering outcomes within deadlines.
• Skills: Analytical and decision-making abilities. Ability to translate complex regulations into practical processes. Knowledge of data governance and security standards.
• Technical Skills: Familiarity with privacy management tools, encryption, and data mapping technologies.