Designation
JOB DESCRIPTION
Data Privacy Associate
Experience
Associate: 1 -2 year of experience in data privacy and cyber security
Language
Arabic is preferred
Certifications
- At least 1 or 2 of the below certifications:
- CIPT, CIPM, CIPP/E/US
- ISO 27701 Lead Auditor/Implementor
- CISSP
- CDPSE
- DCPP
- CISM
Skills
- Excellent Team player
- Excellent communication and presentation skills
- Excellent report writing skills
- Privacy by Design
- DPIAs
- Data Privacy Incident Management
- ISO 27701, PCI-DSS, HIPPA, SOX, GDPR
Experience
- Experience in international standards and local regulatory requirements related to data privacy and protection e.g. ISO 27701, GDPR, ISO 27001, PCI DSS, NDMO, etc.
- Proficient in the following areas of data privacy:
- Development and review of data privacy and protection strategies
- Data Protection Impact Assessments
- Development of data privacy framework including TOM, policies, procedures and templates
- Development & implementation of data privacy processes(e.g. Consent Management, DSAR requests, Data Privacy incident management, etc.)
- Third party privacy reviews
- Audits against ISO 27701, GDPR, ISO 27001, PCI DSS, NDMO, etc.
- Proficient in following areas related data protection:
- Data Discovery of structured/unstructured data
- Data Classification and Labelling
- Data Security cryptographic controls
- Data Loss Prevention
- Digital Rights Management
- Experience in using well known products related to privacy management, data discovery, data classification/labelling and data security will be an advantage
Responsibilities
- Execute projects related to data privacy gap assessments/Audits, building strategies, frameworks, solution designs and implementation related to data privacy and protection.
- Be part of project communications involving technology partners and member firms
- Documentation of project deliverables.
- Ensure quality in project deliverables
- Be part of all client presentations.
- Assist PM’s in all project management meetings including:
- Status updates
- Audit / technical assessment reports
- Develop, drive and review data privacy frameworks including TOMs, policies, procedures and templates, that align with data privacy laws and regulations
- Perform Data Privacy Impact Assessments to identify privacy issues early, reduce privacy risk and cost through corrective actions.
- Review and maintain the privacy management workflows that enables clients to identify, log, investigate and resolve data privacy-related issues in accordance with industry best practices.
- Participation in proposition of services to the client (proposal writing)
- Adhere to project management guidelines
- Adhere to the firm’s risk management guidelines.