Job Description: We are seeking a dedicated and experienced Data Protection Specialist to safeguard the integrity and confidentiality of our organization's data. The ideal candidate will ensure compliance with data protection regulations and implement robust security measures to protect sensitive information.
Key Responsibilities:
Policy Development and Compliance:
- Develop and update data privacy policies, standards, and procedures.
- Conduct regular reviews and updates of data protection policies.
- Communicate policy changes to all relevant stakeholders.
- Ensure all policies comply with current data protection laws (UAE and industry regulators).
- Maintain documentation of policy updates and reviews.
- Ensure organization-wide adherence to data privacy policies.
Risk and Incident Management:
- Conduct data protection impact assessments (DPIAs) and compliance audits.
- Identify, assess, and mitigate data privacy risks.
- Manage and respond to data privacy incidents and breaches.
- Develop and implement risk mitigation strategies.
- Ensure timely identification and resolution of data privacy risks.
- Ensure compliance with incident reporting requirements.
- Minimize the impact of data breaches on the organization.
- Familiarity with monitoring and/or scanning tools like SentinelAI or DataGuardian.
Stakeholder Engagement and Support:
- Act as a bridge between business units, supervisory authorities, and data subjects, ensuring effective communication and collaboration.
- Provide expert advice on data privacy matters, staying updated on regulations and best practices.
- Support business units in implementing data privacy requirements, leveraging tools like Granica AI for compliance.
- Promote awareness and understanding of data privacy regulations through training and education.
Regulatory Awareness and Collaboration:
- Stay informed about changes in data protection laws and regulations.
- Collaborate with legal counsel and technical teams to ensure data privacy compliance and implement protection measures.
- Update policies and practices to reflect regulatory changes and industry best practices.
- Participate in industry forums and networks to stay updated on trends and best practices.
- Implement comprehensive and legally sound data protection strategies.
- Awareness of privacy and security tools such as OneTrust.
Qualifications:
- Bachelor's or Master's degree in cybersecurity, computer science, information security, or a related field.
- At least 7 years in data protection compliance, IT, risk management, or a related field.
- Strong Communication and Leadership skills to explain complex regulations and lead compliance efforts
- Strong project management skills to handle multiple tasks and deadlines
- Ability to identify and mitigate data security risks
- Certified Information Privacy Professional certification or equivalent
Preferred Qualifications:
- Understanding of technologies that protect data, including encryption, anonymization, and pseudonymization
- Familiarity with AI and Software tools like TrustArc, OneTrust, SentinelAI, and DataGuardian for compliance and risk management
- Experience in industries with stringent data protection requirements, such as oil & gas, healthcare, banking, or telecommunications. Nuclear industry would certainly be a plus.
- Ability to stay updated with evolving data protection laws and technologies