Company DescriptionJoin the UAE\'s largest bank and one of the world\'s largest and safest financial institutions. Our focus is to create value for our employees, customers, shareholders and communities to grow through differentiation, agility and innovation. We are looking for top talent and your success is our success. Accelerate your growth as you help us reach our goals and advance your career. Be ready to make your mark a top company, in an exciting & dynamic industry.Job PurposeThe Specialist Federal Law shall report to the Lead Federal Law and will be responsible for all compliance aspects related to Federal for Protection of Personal Data. This will include:
Assist Lead Federal Law with the responsibilities under Federal Law for Personal Data Protection and applicable provisions of GDPR.
Implement in coordination with Business, Data Management and Protection responsibilities for Emirates Data Office UAE and related regulations.
Co-ordinating All First Line of Defence (FLOD) response to Data Privacy Requirements.
Assisting Lead Federal Law and Business units for Policy and Procedure Updates.
Implementing Training for Business Units in applicable regulatory requirements, developments and integration into Bank Policy and procedural design.
Consulting for various Business Units in the course their First of Line Defence responsibilities and co-ordinating with Second Line of Defence for reviews / reporting.
Key Accountabilities
Ensuring Compliance with the law in relation to Data Privacy.
Enabling Business Units to Implement and execute agreed action for compliance with Data Privacy.
Consent Management - procedural and system implementation.
Meeting requirements of Data Privacy Policy, particularly Privacy by Design in all new initiatives.
Enabling Business Units Complete Data Privacy Risk / Impact Assessments.
Meeting project deliverables and provide compliance assurance with standards such as GDPR, PDPO(HK), PDPA(SG), CSF(KWT), Consumer Protection Regulations (UAE) and Federal Law for protection of personal data (UAE).
Assist all International Jurisdictions and co-ordinate their efforts for Compliance.
Maintaining liaison with Data Protection Authority, Group Legal and Compliance departments and Second Line of Defence
Prepare DPRA/DPIA and the necessary data privacy compliance checks with respect to Architecture Review Boards and other corporate governance.
Meet requirement of Privacy by Design in all new Technology Initiatives in respect of Stakeholders
Assist Lead Federal Law with Strategic meetings of relevant Committees relating to Data Privacy
Implement as per instruction of Lead Federal Law the Governance Frameworks, design of Data Privacy Strategy, and Operational Plans
Provide Subject matter expertise on data privacy program implementation to FLOD.
Maintain Register of Processing activities, Privacy Notices.
Coordinate implementation privacy governance framework to effectively protect data use in compliance with the data privacy regulations, including developing templates for data collection, assisting with data mapping, and vendor management reviews;
Work with key internal stakeholders in the review of projects and related data to ensure compliance with local data privacy laws, and where necessary, complete and advise on data privacy impact assessments;
Assist Lead Federal Law, Data Privacy Champion, and DPO with liaison for the [Lead Supervisory Authority] and other EEA Data Protection Authorities on all data protection related matters under the GDPR;
Assist Lead Federal Law, Data Privacy Champion, and DPO with queries in the business at Region level;
Coordinate with SVM in respect of vendor contracts (including Model Clauses) and consents needed to implement projects in partnership with the firm\'s Procurement and Information Security functions, and ensuring filing requirements with local regulators are achieved;
Maintain data security incident management plan to ensure timely remediation of incidents including impact assessments, security breach response, complaints, claims or notifications, and responding to subject access requests.
Assist Lead Federal Law, Data Privacy Champion, and DPO with any other ADHOC tasks as per the requirement.
QualificationsEssential
Master\'s degree preferred in relevant fields such as Law, Technology or Management
Experience of working in Data Privacy for at least 2 years
Overall experience of at least 2 years in data governance, information security or related law fields or Technology or Operations in a sufficiently senior capacity
CIPP/E Certification
Desirable
Previous experience in preferably in banking and financial industry of various banking technology or operations of at least 3 years.
Qualifications in Information Security such as CISA or Data Privacy such as CIPM or Law related qualifications.
Knowledge in using privacy tools.
Other requirements
Strong knowledge of MS Office.
Excellent written, verbal, and oral communication skills.
Ability to coordinate with Stakeholders, conduct workshops on Data Privacy, multi-task and meet competing deadlines.
Ability to analyse events, identifying root cause and prepare recommendations for optimum resolutions according to approved policy and practice.
Excellent interpersonal and organizational skills, effective time management, and the ability to shift priorities working within established timelines.
Demonstrates initiative (learn processes and procedures, various benefits) and displays self-motivation to grasp new concepts quickly
Ability of paying attention to detail as well as contributing to Data Privacy Strategy