Job Summary:

• Act as key person to the data protection authorities to ensure regulatory compliance
• Reporting any risks or data privacy issues identified at the respective entities
• Conduct a training need analysis to identify required training for personnel handling personal data including conducting training on data privacy and protection
• Conduct a privacy impact assessment during a change in process or technology that may process the personal data
• Maintaining comprehensive records of all data processing activities conducted by the organization, including the purposes of all processing activities
• Support Governance, Risk & Compliance in defining awareness & training material to communicate data protection programs to the employees
• Conduct day-to-day activities while ensuring compliance with policies and procedures
• Contribute to the identification of opportunities for continuous improvement of systems, and processes taking into account leading practices, changes in the business environment, cost reduction and productivity improvement.
• Establish working relationships with relevant internal stakeholders
• Collect feedback from internal stakeholders on issues being faced and other requirements

Skills on Resume: 

• Regulatory Knowledge (Hard Skills)
• Risk Assessment (Hard Skills)
• Training Development (Soft Skills)
• Privacy Impact Assessment (Hard Skills)
• Record-Keeping (Hard Skills)
• Governance Compliance (Hard Skills)
• Continuous Improvement (Soft Skills)
• Stakeholder Engagement (Soft Skills)

Job Summary:

• Ensures compliance with Data Privacy Laws in the organization and acts as a trusted advisor to the Siemens Healthcare management with respect to all Data Privacy related matters
• Helps the Business to mitigate Data Privacy risks
• Implements, performs or supports as the case may be key Data Privacy processes such as evaluation of processing activities, support in Data Privacy Impact evaluations, Data Privacy incident management, handles data subject requests
• Drafts and negotiates Data Processing Agreements
• Implements and ensures execution of Data Privacy programs and provides respective guidance to management including regular Data Privacy training to the organization
• Acts as point of contact and cooperates with the Data Protection Authorities
• Keeps the Head of Data Privacy informed on all material Data Privacy topics in the country
• Be comfortable as a challenger to the management and to the business when appropriate
• Demonstrates credibility in his/her participation at and advice to the board
• Works collaboratively with Siemens Healthineers Data Privacy specialists in headquarters
• Live core values such as integrity, respect and reliability

Skills on Resume: 

• Data Privacy Compliance (Hard Skills)
• Risk Mitigation (Hard Skills)
• Data Privacy Process Implementation (Hard Skills)
• Contract Negotiation (Hard Skills)
• Data Privacy Program Execution (Hard Skills)
• Stakeholder Communication (Soft Skills)
• Credibility and Influence (Soft Skills)
• Collaboration (Soft Skills)

Job Summary:

• Coordinate maintaining privacy policies and procedures for the company and ensure that the company’s policies and procedures are updated periodically,
• Understand existing sources of personal data used by the company and help maintain the records of this data,
• Implement incident response plans in the event of an unauthorized, disclosure of customer and employee data and maintain records of incidents
• Facilitate corrective action plans for identified compliance issues and collaborate with operational teams to implement and maintain any required safeguards and remedial measures,
• Coordinate the delivery of training on privacy policies and procedures to employees (and third parties) and maintain documentation of all training provided,
• Collaborate with the company’s records management coordinator,
• Maintain the privacy records and oversee periodic updates to those records,
• Updates the intranet pages and others related to privacy within the Legal &Compliance Chapter,
• Monitor the company’s compliance with data protection law and the Roche Global Privacy Framework (Roche Binding Corporate Rules), including the assignment of responsibilities, awareness-raising and training of staff, and conducting and/or arranging for internal audits
• Coordinate and implement privacy functions within other practice areas within the Legal & Compliance Chapter in particular contracts, HCP&HCO interactions and processes,
• Respond to all privacy/confidentiality matters related to the Roche privacy framework asked by external regulators, auditors and stakeholders

Skills on Resume: 

• Privacy Law Knowledge (Hard Skills)
• Incident Response Planning (Hard Skills)
• Data Management (Hard Skills)
• Training Development (Soft Skills)
• Collaboration (Soft Skills)
• Compliance Monitoring (Hard Skills)
• Documentation Skills (Hard Skills)
• Stakeholder Communication (Soft Skills)

Job Summary:

• Ensures compliance with the Data Privacy Act, Corporation Code and PSE Disclosure Rules
• Coordinates with government agencies regarding compliance matters
• Conducts required compliance assessments
• Ensures submission of incident and regulatory reports
• Act as associate counsel in legal matters
• Provide an annual report and compliance return for local and regional leadership respectively,
• Draft, negotiate, and advise on data protection agreements, terms of service, privacy policies, and other contracts and communications.
• Act as an active business partner based on applicable legislation, industry rules and internal company principles
• Ensure the provision of timely business-oriented legal and compliance advice to a variety of departments including sales, marketing, market access, HR, finance etc.
• Contribute to the implementation of compliance program including healthcare compliance-related tasks
• Monitoring activities, implementation of life-sciences-specific regulations and new Roche policy and procedures locally and day-to-day management of the legal and compliance training programs.
• Draft and provide consultancy regarding agreements on various matters, creating template agreements and regularly updating templates and following up on the implementation of processes by the organization.

Skills on Resume: 

• Compliance Knowledge (Hard Skills)
• Regulatory Coordination (Soft Skills)
• Compliance Assessment (Hard Skills)
• Legal Drafting and Negotiation (Hard Skills)
• Business Partnership (Soft Skills)
• Advisory Skills (Soft Skills)
• Program Implementation (Hard Skills)
• Training Development (Soft Skills)

Job Summary:

• Develop, implement, and maintain a strategic and comprehensive enterprise-wide privacy and data governance program designed to ensure proper protection of personal data and privacy-related information.
• Demonstrate strong information management, data analytics, and architecture skills including working knowledge of data infrastructure and various technology reporting platforms.
• Manage data as a strategic asset and operationalize data governance, data architecture, data reporting, data quality and other controls to sustain the integrity of the data of the organization.
• Play a key role in leading the development, documentation, and implementation of data governance, data privacy policies, data quality policies, procedures and standards to ensure a high level of data integrity.
• Work with business partners, data management stakeholders and the IT departments to identify and document critical data elements, including metadata, lineage and business rules for in-scope systems
• Document, implement, and maintain a privacy and data management risk assessment framework.
• Act as a resource and subject matter expert to business partners to ensure alignment between business unit-level procedures and data governance policies
• Lead privacy audits and oversee privacy-related data mapping and data protection activities.
• Develop and refine high-quality monthly and quarterly reports demonstrating program activities.
• Develop relationships with regulators and other officials responsible for data privacy, data governance, and data protection issues.
• Monitor emerging privacy and data governance concerns and/or threats, respond to legislative changes through regular reviews and revisions of privacy policies and internal processes, and advise relevant stakeholders on appropriate courses of action.

Skills on Resume: 

• Privacy Governance (Hard Skills)
• Data Analytics (Hard Skills)
• Data Management (Hard Skills)
• Policy Development (Hard Skills)
• Stakeholder Collaboration (Soft Skills)
• Risk Assessment (Hard Skills)
• Audit Management (Hard Skills)
• Regulatory Engagement (Soft Skills)

Job Summary:

• Evaluate the existing data protection framework and identify areas of non or partial compliance and rectify any issues.
• Monitor compliance with data protection laws and the policies of the Group operations related to the protection of personal data.
• Identify and document control deficiencies, including reporting findings to business stakeholders and executive leadership
• Participate in awareness-raising and training of staff involved in data processing operations
• Manage investigation and reporting of personal data breaches
• Coordinate incident response plan with other personnel/departments, including the Chief Information Security Officer, the Global Head of Legal and others for all issues related to data protection.
• Act as the strategic design and implementor for group-wide data privacy and data protection initiatives and programs.
• Manage data privacy-related incidents and/or events with the Chief Information Security Officer and/or General Counsel.
• Lead training and awareness efforts and/or required to increase employee understanding of privacy policies, data governance, and legal obligations.
• Communicate with internal and external stakeholders.
• Provide reporting on the current status of the privacy and data governance program to enterprise risk teams, senior business leaders, and the board of directors
• Closely monitor current developments in legislation, and industry rules and inform relevant teams of the organization on time by implementing necessary legal actions

Skills on Resume: 

• Compliance Evaluation (Hard Skills)
• Monitoring Data Protection Laws (Hard Skills)
• Control Deficiency Identification (Hard Skills)
• Training and Awareness (Soft Skills)
• Incident Management (Hard Skills)
• Strategic Implementation (Hard Skills)
• Stakeholder Communication (Soft Skills)
• Legislative Monitoring (Hard Skills)

Job Summary:

• Ensure that the company is compliant with the requirements of Data Privacy Act of 2012 (RA 10173), and its implementing rules and guidelines
• Fulfill the role as the company's liaison officer to the National Privacy Commission (NPC), the regulatory body for data privacy
• Develop and maintain policies, standards and guidelines on data privacy to ensure the appropriate processing of personal data
• Monitor data collection and processing procedures and compliance within the company
• Participate in information security/privacy risk assessments, IT controls audits, and compliance assessments to identify weaknesses and risks that jeopardize the safety, security, privacy or compliance posture of internal and external information resources
• Act as the primary data privacy subject matter expert (SME) as a member of Eclaro's Information Security Committee (ISC)
• Participate as a member of the company's Information Security Incident response team that will handle suspected data breaches within the organization
• Advise the company with regard to the necessity of executing a Data Sharing Agreement with third parties, and ensure its compliance with the law
• Advise the company regarding complaints and/or the exercise by data subjects of rights (e.g., requests for information, clarifications, rectification or deletion of personal data)
• Promotes awareness on data privacy and protection within the company, including all relevant laws, rules and regulations and issuances of the NPC
• Identify and promote opportunities to reduce privacy-related risk while helping Eclaro stay in compliance with its relevant ISO, SOC 2 and any other relevant audit certifications

Skills on Resume: 

• Data Privacy Compliance (Hard Skills)
• Liaison with Regulatory Bodies (Soft Skills)
• Policy Development (Hard Skills)
• Monitoring Data Procedures (Hard Skills)
• Risk Assessment Participation (Hard Skills)
• Subject Matter Expertise (Hard Skills)
• Incident Response Team Participation (Soft Skills)
• Awareness Promotion (Soft Skills)

Job Summary:

• Provided privacy and data protection leadership and strategic advice to the Group Chief Risk and Compliance Officer (GCRCO) and the Board of the Risk and Compliance Committee (BRCC).
• Define Axiata Data Privacy Framework with a robust set of requirements that are specific to the national laws and regulations, international best practices and OpCos’ business needs.
• Define Axiata Privacy Maturity Standards, benchmarked on an international level to enable privacy and data protection environment maturity across the OpCos.
• Collaborate on privacy and security policies and procedures
• Report on a quarterly basis the status of the privacy program to the BRCC or other committee(s).
• Create transparent data privacy policies, procedures and guidelines, including Privacy by Design Guidelines, and enforce these across Group and OpCos to meet the local regulatory requirements, business needs and international best practices.
• Set requirements to various project streams within the Axiata Privacy Program and together with the DPOs define the common legal and/or business interpretations, tools and methods for the OpCo
• Oversee data privacy and protection compliance activities and manage data protection risk for Axiata Group, including managing reputational risks that may arise from non-compliance
• Assist OpCos on privacy engineering with efficient tools and methodologies to ensure effective and on-going compliance
• Review Group Information Security plans to ensure alignment between security and privacy practices
• Provide leadership to OpCos in the planning, design and evaluation of privacy-related projects

Skills on Resume: 

• Regulatory Knowledge (Hard Skills)
• Strategic Planning (Hard Skills)
• Policy Development (Hard Skills)
• Collaboration (Soft Skills)
• Risk Management (Hard Skills)
• Privacy Engineering (Hard Skills)
• Project Management (Hard Skills)
• Information Security Alignment (Hard Skills)

Job Summary:

• Work with Group Internal Audit to establish an internal privacy audit program for Group and the OpCos
• Act as liaison between Group Risk and Compliance Division and OpCos DPO to facilitate regular reporting and monitor compliance
• Act as focal point for all data privacy matters with relevant parties to Axiata Group, including internal functional teams and OpCos
• Work with the Regulatory and Corporate Communications Division to develop relationships with analysts, Government accrediting bodies, consumer organizations and Non-Governmental Organizations (NGOs) with an interest in Axiata privacy matters
• Work with the Regulatory Division, Legal Division, OpCos and other related parties to represent data privacy interests with external parties, including government bodies, to adopt or amend privacy legislation, regulation or standards
• Engage and liaise with national regulators (Malaysian Data Privacy Commission) and international privacy and data protection movement [Global System for Mobile Communications Association (GSMA)], associations [(International Association of Privacy Professionals (IAPP)] and other external industries to coordinate position on data privacy issues
• Establish Key Performing Indicators (KPIs) to track the progress and deliverables to Privacy Program, manage effective reporting metrics and dashboards to communicate the state of compliance
• Coordinate data privacy and protection inputs for business planning, budgeting, risk management, group policy and other business processes
• Develop privacy training materials and other communications to increase employee understanding of Axiata’s privacy policy, data handling practices and procedures and legal obligations
• Undertake other tasks and responsibilities as may be instructed by the GCRCO

Skills on Resume: 

• Internal Audit Program Development (Hard Skills)
• Liaison and Communication (Soft Skills)
• Stakeholder Engagement (Soft Skills)
• Regulatory Relations (Hard Skills)
• Advocacy and Representation (Soft Skills)
• KPI Development and Reporting (Hard Skills)
• Business Coordination (Hard Skills)
• Communication Development (Soft Skills)

Job Summary:

• Minimizing risk and maximizing performance through a comprehensive approach that enables functions to meet the expectations of clients and provides transparency to performance. 
• Drive collaboration through teamwork with multiple stakeholders in various functions, allowing execution and implementation of cutting-edge platforms, tools and technologies that push previously known limits in risk management 
• Advising and delivering a global privacy framework that complies with all applicable privacy laws and client contractual obligations. 
• Implement a privacy program that sets itself to the highest standard across geographies and client locations and instills a culture of privacy at HCL. 
• Comply with the General Data Protection Regulation (GDPR) and have since evolved to consider the ever-evolving privacy landscape. 
• Utilize a principle-based approach and embed privacy controls and client-specific industry requirements across HCL. 
• Building processes and policies to create a robust privacy program. 
• Assist with the ongoing operation of this program and embed the framework across all areas of the organization. 
• Ensuring compliance with the GDPR will require considerable resource investment, a lot of planning and local expertise. 
• Increase in the trend of privacy incidents and privacy-related complaints in Ireland has been observed. 

Skills on Resume: 

• Risk Management (Hard Skills)
• Stakeholder Collaboration (Soft Skills)
• Privacy Compliance (Hard Skills)
• Privacy Program Development (Hard Skills)
• Process and Policy Creation (Hard Skills)
• Data Governance (Hard Skills)
• Change Management (Soft Skills)
• Analytical Skills (Hard Skills)

Job Summary:

• Fortify 'On-ground' GPO presence and support for effective and compliant management of privacy incidents 
• Reinforce privacy framework and controls. 
• Be the lead data protection authority for HCL affiliates
• Liaise, coordinate and build a relationship with the lead data protection authority. 
• Make local support to execute DPIAs for many client delivery processes and corporate activities across the EU. 
• Ensure effective discharge of duties from EMEA DPO’s office. 
• Engage external consultants to augment HCL's preparedness for GDPR. 
• Adequately support on-ground in the EU from HCL. 
• Establishing an effective relationship with the lead data protection authority, i.e., the Irish Data Protection Authority, mentioned above. 
• Experience an increase in corporate activity including EU-centric legal and regulatory matters too. 
• Render a lot of real-time support on critical client-led requests, from delivery teams.

Skills on Resume: 

• Regulatory Compliance Expertise (Hard Skills)
• DPIA Proficiency (Hard Skills)
• Relationship Management (Soft Skills)
• Incident Management (Hard Skills)
• Privacy Framework Development (Hard Skills)
• Consultant Coordination (Soft Skills)
• Training Development (Soft Skills)
• Analytical Skills (Hard Skills)

Job Summary:

• Informing and assisting the business with responsibilities for complying with relevant data protection laws and regulations 
• Delivering training and promoting awareness and a culture of continuous improvement in compliance across the business 
• Developing strategic thinking and driving forward projects and initiatives to implement new data protection legislative requirements including GDPR across business operations 
• Assessing all existing and proposed data processing operations and maintaining appropriate documentation
• Meeting the governance and accountability requirements under the GDPR 
• Manage and respond to subject access requests 
• Advise and report to management on data protection compliance matters 
• Manage external relationships with regulatory authorities
• Develop and maintain relationships with the relevant and key risk, compliance, IT, IS and business stakeholders, as well as external regulatory entities (i.e. the NPC).
• Partner with Enterprise Risk Management to define standards and provide subject-matter expertise to oversee privacy and data governance risks.

Skills on Resume:  

• Data Protection Law Compliance (Hard Skills)
• Training Delivery (Soft Skills)
• Project Development (Hard Skills)
• Data Processing Assessment (Hard Skills)
• Governance Management (Hard Skills)
• Subject Access Request Handling (Hard Skills)
• Compliance Reporting (Hard Skills)
• Regulatory Relationship Management (Soft Skills)