DohaSummary : The Senior Privacy Compliance Specialist leads the global privacy compliance activities and has responsibility for improving the quality and managing the protection of data and information asset.
This position will focus on ensuring adherence to a data governance framework including policies, controls, procedure, templates, and standard to ensure meeting regulatory and acceptable best practices in data governance, privacy, and security.
Key Responsibilities : Design, develop and conduct privacy and security compliance audit program across AJMN and 3rdSupport the identification of technical and security policies to achieve compliance with the global data protection regulations.
Support in the development of policy and procedure across AJMN within the scope of DPO.Ensures establishment and implementation of security and privacy related external certification requirements (e.
g. ISO27001) across AJMN globally.Drive information classification for CIPA (Confidentiality, Integrity, Privacy, and Availability).
Review and maintain the information and documentation required for security compliance including regular reports, policy, procedure, and KPI.
Design, develop, conduct and maintain a complete privacy and security risk register (DPIA and Risk Register) including assessment, remediation plan, andSupport the implementation of continuous improvement in AJMN technical and security practice.
Support in the development of tools, operating, and maintaining the data for DPO office management including Data Subject Access Request management, Data Processing Register, Data Flow Mapping, Consent Management, Breach Management, and Privacy by Design.
Support in the development and conduct training and awareness for data protection and security across AJMN.Support Internal, external auditor and external regulatory body as requiredSupport DPO in exercising DPO responsibilities particularly in technical and security areas.
Job Requirements / Qualifications : Bachelor’s Degree8+ years of experience in IT or Information Security Compliance of which 2+ years of experience in the data privacy and protectionKnowledge of regulations like CCPA, GDPR, HIPPA, OfcommKnowledge of NIST (National institute of standards and technology) security and privacy standards and ISO (International Organization for Standardization)Proven ability to drive results, especially in a matrixed or influence based environment.
Strong relationship building skills, coupled with high business acumen.Demonstrate a passion for driving frictionless use of data through the application of thoughtful, business focused governance.
manage tight deadlines and situations where conflicting priorities arise Skills : Risk ManagementPolicy ImprovementProject ManagementVendor ManagementInformation Security GovernanceISMSControl FrameworkISO27001ISO22301ISO31000NIST 800-
53Six SigmaChange ManagementConfiguration ManagementInternal AuditComplianceQuality ManagementROPAData Flow DesignBreach ManagementIncident Management