Description
Waterhouse-Kern are working closely with a software developer in the FinTech space to find a Data Protection Manager. This would suit someone with experience in Start-Ups especially in the Tech or FinTech space and is fully remote.
General Summary
They are looking to recruit an experienced Data Protection Manager (DPM) to meet their obligations under the European Union (EU) General Data Protection Regulation (GDPR).
The statutory DPM will monitor compliance and data practices internally to ensure the business and its functions comply with the applicable requirements under the GDPR.
The DPM will be responsible for staff training, data protection impact assessments, and internal audits. The DPM will also serve as the primary contact for supervisory authorities and individuals whose data is processed by the organization.
Essential Duties and Responsibilities
In this role, you will work closely with the Legal, Compliance, Public Policy, and Information Security functions to develop and monitor policies and standards applicable to the business and in compliance with the GDPR.
Duties will include:
- Implementing measures and a privacy governance framework to manage data use in compliance with the GDPR, including developing templates for data collection, assisting with data mapping, and vendor management reviews
- Working with key internal stakeholders in the review of projects and related data to ensure compliance with local data privacy laws, and where necessary, complete and advise on privacy impact assessments
- Serving as the primary point of contact and liaison for the EEA Data Protection Authorities on all data protection related matters under the GDPR
- Serving as the primary point of contact for queries in the business
- Reviewing vendor contracts (including Model Clauses) and consents needed to implement projects in partnership with the firm’s Procurement and Information Security functions, and ensuring filing requirements with local regulators are achieved
Education
Hold at least one Data Protection and / or Privacy certification such as, CIPP, CIPT, ISEB, etc.
Work Experience:
- PQE experience required
- Experience in global and EU data privacy laws
- Experience within a compliance, legal, audit and / or risk function, with recent experience in privacy compliance
- Experience in developing policy and compliance training
- Experience working in a regulated industry
Knowledge, Skills, and Abilities:
- Strong knowledge of EU data privacy and data protection regulation, and a good understanding of other major privacy frameworks and evolving legislation worldwide
- Sufficient knowledge of information technology and data management systems required.
- Well-developed and professional interpersonal skills; ability to interact effectively with people at all organizational levels of the firm.
- Experience of working in a large, global organization
- Ability to work unsupervised, exercise leadership, and influence change.
- Excellent writing and presentation skills.