Data Protection Analyst Glasgow or Reading Hybrid working (2 days/week in office) 06 months contract As part of the Data Protection team, the Data Protection Associate will provide support to facilitate client's compliance framework, including policies, processes, procedures and controls, in place to operate in line with its legal and regulatory obligations in relation to data protection. There is a requirement to work on rota across weekends and bank holidays Purpose of Role. Work through the increased number of Data Subject Access requests (DSARs) and Data Breach Reports that have arisen from fraud cases. The client has seen a large increase in the number of people requesting DSARs and as such require someone to come in and help with collecting all the data, which will mainly be bills, and web chats (cases that are more complicated will be escalated to a specialist team) Must have worked with DSARs in a B2C environment Job Description Assist the DPO and Deputy DPO in the development of appropriate policies and help influence key stakeholders to buy in to the policies, identifying and addressing gaps in compliance. Conduct GDPR compliance reviews with the DPO / Deputy DPO. Oversee and manage the public facing customer communication inbox, tracking activity, escalating issues and overseeing the successful completion of associated tasks. Oversee the subject access request process and individual rights, supporting government liaison team in the effective and ongoing delivery of individuals rights. Support the DPO with the management of data breach prevention in the event of non-compliance. Ensure breaches are adequately controlled, escalated and addressed. Manage and oversee recording and mitigating any identified risk/non-compliance. Collaborate with the wider Risk and Compliance Team supporting ongoing team activity and developing team knowledge on GDPR. Maintain a DP knowledge base on the intranet. Liaise with customers where necessary or required. Qualifications Excellent organisational skills. Strong communication and interpersonal skills are essential; a people person skilled at building and maintaining relationships both internally and externally. Strong analytical and guidance/report writing skills - ability to perform detailed analysis and write clear concise reports and advisory briefs. Proven ability to implement change and manage processes. To apply for the Data Protection Associate please send your CV to (url removed) Project People is acting as an Employment Business in relation to this vacancy.
May 15, 2024
Contractor
Data Protection Analyst Glasgow or Reading Hybrid working (2 days/week in office) 06 months contract As part of the Data Protection team, the Data Protection Associate will provide support to facilitate client's compliance framework, including policies, processes, procedures and controls, in place to operate in line with its legal and regulatory obligations in relation to data protection. There is a requirement to work on rota across weekends and bank holidays Purpose of Role. Work through the increased number of Data Subject Access requests (DSARs) and Data Breach Reports that have arisen from fraud cases. The client has seen a large increase in the number of people requesting DSARs and as such require someone to come in and help with collecting all the data, which will mainly be bills, and web chats (cases that are more complicated will be escalated to a specialist team) Must have worked with DSARs in a B2C environment Job Description Assist the DPO and Deputy DPO in the development of appropriate policies and help influence key stakeholders to buy in to the policies, identifying and addressing gaps in compliance. Conduct GDPR compliance reviews with the DPO / Deputy DPO. Oversee and manage the public facing customer communication inbox, tracking activity, escalating issues and overseeing the successful completion of associated tasks. Oversee the subject access request process and individual rights, supporting government liaison team in the effective and ongoing delivery of individuals rights. Support the DPO with the management of data breach prevention in the event of non-compliance. Ensure breaches are adequately controlled, escalated and addressed. Manage and oversee recording and mitigating any identified risk/non-compliance. Collaborate with the wider Risk and Compliance Team supporting ongoing team activity and developing team knowledge on GDPR. Maintain a DP knowledge base on the intranet. Liaise with customers where necessary or required. Qualifications Excellent organisational skills. Strong communication and interpersonal skills are essential; a people person skilled at building and maintaining relationships both internally and externally. Strong analytical and guidance/report writing skills - ability to perform detailed analysis and write clear concise reports and advisory briefs. Proven ability to implement change and manage processes. To apply for the Data Protection Associate please send your CV to (url removed) Project People is acting as an Employment Business in relation to this vacancy.
Data Protection Associate Glasgow or Reading Hybrid working (2 days/week in office) 06 months contract As part of the Data Protection team, the Data Protection Associate will provide support to facilitate client's compliance framework, including policies, processes, procedures and controls, in place to operate in line with its legal and regulatory obligations in relation to data protection. There is a requirement to work on rota across weekends and bank holidays Purpose of Role. Work through the increased number of Data Subject Access requests (DSARs) and Data Breach Reports that have arisen from fraud cases. The client has seen a large increase in the number of people requesting DSARs and as such require someone to come in and help with collecting all the data, which will mainly be bills, and web chats (cases that are more complicated will be escalated to a specialist team) Must have worked with DSARs in a B2C environment Job Description Assist the DPO and Deputy DPO in the development of appropriate policies and help influence key stakeholders to buy in to the policies, identifying and addressing gaps in compliance. Conduct GDPR compliance reviews with the DPO / Deputy DPO. Oversee and manage the public facing customer communication inbox, tracking activity, escalating issues and overseeing the successful completion of associated tasks. Oversee the subject access request process and individual rights, supporting government liaison team in the effective and ongoing delivery of individuals rights. Support the DPO with the management of data breach prevention in the event of non-compliance. Ensure breaches are adequately controlled, escalated and addressed. Manage and oversee recording and mitigating any identified risk/non-compliance. Collaborate with the wider Risk and Compliance Team supporting ongoing team activity and developing team knowledge on GDPR. Maintain a DP knowledge base on the intranet. Liaise with customers where necessary or required. Qualifications Excellent organisational skills. Strong communication and interpersonal skills are essential; a people person skilled at building and maintaining relationships both internally and externally. Strong analytical and guidance/report writing skills - ability to perform detailed analysis and write clear concise reports and advisory briefs. Proven ability to implement change and manage processes. To apply for the Data Protection Associate please send your CV to (url removed) Project People is acting as an Employment Business in relation to this vacancy.
May 15, 2024
Contractor
Data Protection Associate Glasgow or Reading Hybrid working (2 days/week in office) 06 months contract As part of the Data Protection team, the Data Protection Associate will provide support to facilitate client's compliance framework, including policies, processes, procedures and controls, in place to operate in line with its legal and regulatory obligations in relation to data protection. There is a requirement to work on rota across weekends and bank holidays Purpose of Role. Work through the increased number of Data Subject Access requests (DSARs) and Data Breach Reports that have arisen from fraud cases. The client has seen a large increase in the number of people requesting DSARs and as such require someone to come in and help with collecting all the data, which will mainly be bills, and web chats (cases that are more complicated will be escalated to a specialist team) Must have worked with DSARs in a B2C environment Job Description Assist the DPO and Deputy DPO in the development of appropriate policies and help influence key stakeholders to buy in to the policies, identifying and addressing gaps in compliance. Conduct GDPR compliance reviews with the DPO / Deputy DPO. Oversee and manage the public facing customer communication inbox, tracking activity, escalating issues and overseeing the successful completion of associated tasks. Oversee the subject access request process and individual rights, supporting government liaison team in the effective and ongoing delivery of individuals rights. Support the DPO with the management of data breach prevention in the event of non-compliance. Ensure breaches are adequately controlled, escalated and addressed. Manage and oversee recording and mitigating any identified risk/non-compliance. Collaborate with the wider Risk and Compliance Team supporting ongoing team activity and developing team knowledge on GDPR. Maintain a DP knowledge base on the intranet. Liaise with customers where necessary or required. Qualifications Excellent organisational skills. Strong communication and interpersonal skills are essential; a people person skilled at building and maintaining relationships both internally and externally. Strong analytical and guidance/report writing skills - ability to perform detailed analysis and write clear concise reports and advisory briefs. Proven ability to implement change and manage processes. To apply for the Data Protection Associate please send your CV to (url removed) Project People is acting as an Employment Business in relation to this vacancy.
Data Protection Analyst - DSAR 6 month contract Glasgow or Reading As part of the Data Protection team, the Data Protection Analyst - DSAR will provide support to facilitate our compliance framework, including policies, processes, procedures and controls, in place to operate in line with its legal and regulatory obligations in relation to data protection. Responsibilities of the Data Protection Analyst - DSAR include: Assist the DPO and Deputy DPO in the development of appropriate policies and help influence key stakeholders to buy in to the policies, identifying and addressing gaps in compliance. Conduct GDPR compliance reviews with the DPO / Deputy DPO. Oversee and manage the public facing customer communication inbox, tracking activity, escalating issues and overseeing the successful completion of associated tasks. Oversee the subject access request process and individual rights, supporting government liaison team in the effective and ongoing delivery of individuals rights. Support the DPO with the management of data breach prevention in the event of non-compliance. Ensure breaches are adequately controlled, escalated and addressed. Manage and oversee recording and mitigating any identified risk/non-compliance. Collaborate with the wider Risk and Compliance Team supporting ongoing team activity and developing team knowledge on GDPR. Maintain a DP knowledge base on the intranet. Liaise with customers where necessary or required. The successful Data Protection Analyst - DSAR will have: Excellent organisational skills. Strong communication and interpersonal skills are essential; a people person skilled at building and maintaining relationships both internally and externally. Strong analytical and guidance/report writing skills - ability to perform detailed analysis and write clear concise reports and advisory briefs. Proven ability to implement change and manage processes. To apply for the Data Protection Analyst - DSAR please send your CV to (url removed) Project People is acting as an Employment Business in relation to this vacancy.
May 15, 2024
Contractor
Data Protection Analyst - DSAR 6 month contract Glasgow or Reading As part of the Data Protection team, the Data Protection Analyst - DSAR will provide support to facilitate our compliance framework, including policies, processes, procedures and controls, in place to operate in line with its legal and regulatory obligations in relation to data protection. Responsibilities of the Data Protection Analyst - DSAR include: Assist the DPO and Deputy DPO in the development of appropriate policies and help influence key stakeholders to buy in to the policies, identifying and addressing gaps in compliance. Conduct GDPR compliance reviews with the DPO / Deputy DPO. Oversee and manage the public facing customer communication inbox, tracking activity, escalating issues and overseeing the successful completion of associated tasks. Oversee the subject access request process and individual rights, supporting government liaison team in the effective and ongoing delivery of individuals rights. Support the DPO with the management of data breach prevention in the event of non-compliance. Ensure breaches are adequately controlled, escalated and addressed. Manage and oversee recording and mitigating any identified risk/non-compliance. Collaborate with the wider Risk and Compliance Team supporting ongoing team activity and developing team knowledge on GDPR. Maintain a DP knowledge base on the intranet. Liaise with customers where necessary or required. The successful Data Protection Analyst - DSAR will have: Excellent organisational skills. Strong communication and interpersonal skills are essential; a people person skilled at building and maintaining relationships both internally and externally. Strong analytical and guidance/report writing skills - ability to perform detailed analysis and write clear concise reports and advisory briefs. Proven ability to implement change and manage processes. To apply for the Data Protection Analyst - DSAR please send your CV to (url removed) Project People is acting as an Employment Business in relation to this vacancy.
To see more Chinese jobs please follow us on WeChat: teamchinapf AND pfteamchina The Skills You'll Need: Mandarin andEnglish fluent, Solid IT Engineering experience within banking/financial services. Your New Salary: Competitive Depending on experience Fully office based Perm Start: ASAP Report to: DeputyHead of IT Mandarin Speaking IT Senior Engineer - What You'll be Doing Each Day: Assist IT deputy head to draft IT manuals, procedures, guidelines of production management include IT infrastructure and IT systems (hardware and software). To make plans for IT infrastructure and systems on the basis of understanding, analysis and forecasting of demands of the various departments, make sure the performance and capacity of IT infrastructure can meet the requirement of business development and system stability. Implement IT infrastructure and systems include servers, storage, network device, backup system, AD, WSUS, UPS, power plant, phone, printer, etc. In charge of virtual system maintenance include vCenter, ESXi, vmware, Ctrix etc. Guide and train bank staff with IT knowledge. Supervise the security program of the computer and telecommunications systems and delegate powers to authorized users. Formulate computer disaster recovery plans and arrange for relevant tests to ensure that the plan is compliant with the regulator s requirements. Liaise with HO and Data Center in relation to the task of IT Systems. Prepare reports to HO and Data Centre. Arrange the Disaster Recovery IT service when necessary. Mandarin Speaking IT Senior Engineer - The Skills You'll Need to Succeed: At least 5 years IT engineering experience Microsoft Server and Desktop operating systems (2019/2012 Server/Win10) Core Microsoft Infrastructure technologies and solutions (Exchange, AD, RDS, DFS) Systems Virtualisation (VMware, vSphere, Hyper-V) Backup technologies (Veeam, Backup Exec, System Recovery, Endpoint Protection, LTO) Server hardware maintenance and troubleshooting Hardware firewalls and router configuration Switching (HP, Cisco, Juniper) System and network monitoring. Qualifications (Desirable): MCSA-Microsoft Windows Server 2008/2012/Office365 MCSE- Microsoft Certified Solution Expert MCITP-Microsoft Certified IT Professional VMware Certified Professional CCNA/CCNP. Job status: Permanent Start date: ASAP Working hours: 9 to 5 with flexibility when necessary. Working style: 4 days in the office, 1 day at home Please view all our Team China jobs at people-first-recruitment Please follow us on Linkedin: people-first-team-china We would be grateful if you could send your CV as a Word document. If your application is successful, you will be contacted within 7 days. We regret that due to the high volume of applications we receive we cannot provide feedback on individual CVs. Please note that we can only consider candidates who are eligible to work in the UK and are able to provide relevant supporting documentation. People First is committed to increasing diversity, and maintaining an inclusive workplace culture. We welcome applications from all qualified candidates regardless of their ethnicity, race, gender, religious beliefs, sexual orientation, age, marital status or whether or not they have a disability. People First (Recruitment) Limited acts as an employment agency for permanent and fixed term contract recruitment and as an employment business for the supply of temporary workers. Please note that by applying for this job you accept our Terms of Use and Privacy Policy which can be found on our website.
May 10, 2024
Full time
To see more Chinese jobs please follow us on WeChat: teamchinapf AND pfteamchina The Skills You'll Need: Mandarin andEnglish fluent, Solid IT Engineering experience within banking/financial services. Your New Salary: Competitive Depending on experience Fully office based Perm Start: ASAP Report to: DeputyHead of IT Mandarin Speaking IT Senior Engineer - What You'll be Doing Each Day: Assist IT deputy head to draft IT manuals, procedures, guidelines of production management include IT infrastructure and IT systems (hardware and software). To make plans for IT infrastructure and systems on the basis of understanding, analysis and forecasting of demands of the various departments, make sure the performance and capacity of IT infrastructure can meet the requirement of business development and system stability. Implement IT infrastructure and systems include servers, storage, network device, backup system, AD, WSUS, UPS, power plant, phone, printer, etc. In charge of virtual system maintenance include vCenter, ESXi, vmware, Ctrix etc. Guide and train bank staff with IT knowledge. Supervise the security program of the computer and telecommunications systems and delegate powers to authorized users. Formulate computer disaster recovery plans and arrange for relevant tests to ensure that the plan is compliant with the regulator s requirements. Liaise with HO and Data Center in relation to the task of IT Systems. Prepare reports to HO and Data Centre. Arrange the Disaster Recovery IT service when necessary. Mandarin Speaking IT Senior Engineer - The Skills You'll Need to Succeed: At least 5 years IT engineering experience Microsoft Server and Desktop operating systems (2019/2012 Server/Win10) Core Microsoft Infrastructure technologies and solutions (Exchange, AD, RDS, DFS) Systems Virtualisation (VMware, vSphere, Hyper-V) Backup technologies (Veeam, Backup Exec, System Recovery, Endpoint Protection, LTO) Server hardware maintenance and troubleshooting Hardware firewalls and router configuration Switching (HP, Cisco, Juniper) System and network monitoring. Qualifications (Desirable): MCSA-Microsoft Windows Server 2008/2012/Office365 MCSE- Microsoft Certified Solution Expert MCITP-Microsoft Certified IT Professional VMware Certified Professional CCNA/CCNP. Job status: Permanent Start date: ASAP Working hours: 9 to 5 with flexibility when necessary. Working style: 4 days in the office, 1 day at home Please view all our Team China jobs at people-first-recruitment Please follow us on Linkedin: people-first-team-china We would be grateful if you could send your CV as a Word document. If your application is successful, you will be contacted within 7 days. We regret that due to the high volume of applications we receive we cannot provide feedback on individual CVs. Please note that we can only consider candidates who are eligible to work in the UK and are able to provide relevant supporting documentation. People First is committed to increasing diversity, and maintaining an inclusive workplace culture. We welcome applications from all qualified candidates regardless of their ethnicity, race, gender, religious beliefs, sexual orientation, age, marital status or whether or not they have a disability. People First (Recruitment) Limited acts as an employment agency for permanent and fixed term contract recruitment and as an employment business for the supply of temporary workers. Please note that by applying for this job you accept our Terms of Use and Privacy Policy which can be found on our website.
To see more Chinese jobs please follow us on WeChat: teamchinapf AND pfteamchina Ref: 22522 The Skills You'll Need: Mandarin andEnglish fluent, Solid IT Engineering experience within banking/financial services. Your New Salary: Competitive Depending on experience Fully office based Perm Start: ASAP Report to: DeputyHead of IT Mandarin Speaking IT Senior Engineer - What You'll be Doing Each Day: Assist IT deputy head to draft IT manuals, procedures, guidelines of production management include IT infrastructure and IT systems (hardware and software). To make plans for IT infrastructure and systems on the basis of understanding, analysis and forecasting of demands of the various departments, make sure the performance and capacity of IT infrastructure can meet the requirement of business development and system stability. Implement IT infrastructure and systems include servers, storage, network device, backup system, AD, WSUS, UPS, power plant, phone, printer, etc. In charge of virtual system maintenance include vCenter, ESXi, vmware, Ctrix etc. Guide and train bank staff with IT knowledge. Supervise the security program of the computer and telecommunications systems and delegate powers to authorized users. Formulate computer disaster recovery plans and arrange for relevant tests to ensure that the plan is compliant with the regulator's requirements. Liaise with HO and Data Center in relation to the task of IT Systems. Prepare reports to HO and Data Centre. Arrange the Disaster Recovery IT service when necessary. Mandarin Speaking IT Senior Engineer - The Skills You'll Need to Succeed: At least 5 years' IT engineering experience Microsoft Server and Desktop operating systems (2019/2012 Server/Win10) Core Microsoft Infrastructure technologies and solutions (Exchange, AD, RDS, DFS) Systems Virtualisation (VMware, vSphere, Hyper-V) Backup technologies (Veeam, Backup Exec, System Recovery, Endpoint Protection, LTO) Server hardware maintenance and troubleshooting Hardware firewalls and router configuration Switching (HP, Cisco, Juniper) System and network monitoring. Qualifications (Desirable): MCSA-Microsoft Windows Server 2008/2012/Office365 MCSE- Microsoft Certified Solution Expert MCITP-Microsoft Certified IT Professional VMware Certified Professional CCNA/CCNP. Job status: Permanent Start date: ASAP Working hours: 9 to 5 with flexibility when necessary. Working style: 4 days in the office, 1 day at home Please view all our Team China jobs at Please follow us on Linkedin: people-first-team-china We would be grateful if you could send your CV as a Word document. If your application is successful, you will be contacted within 7 days. We regret that due to the high volume of applications we receive we cannot provide feedback on individual CVs. Please note that we can only consider candidates who are eligible to work in the UK and are able to provide relevant supporting documentation. People First is committed to increasing diversity, and maintaining an inclusive workplace culture. We welcome applications from all qualified candidates regardless of their ethnicity, race, gender, religious beliefs, sexual orientation, age, marital status or whether or not they have a disability. People First (Recruitment) Limited acts as an employment agency for permanent and fixed term contract recruitment and as an employment business for the supply of temporary workers. Please note that by applying for this job you accept our Terms of Use and Privacy Policy which can be found on our website.
May 09, 2024
Full time
To see more Chinese jobs please follow us on WeChat: teamchinapf AND pfteamchina Ref: 22522 The Skills You'll Need: Mandarin andEnglish fluent, Solid IT Engineering experience within banking/financial services. Your New Salary: Competitive Depending on experience Fully office based Perm Start: ASAP Report to: DeputyHead of IT Mandarin Speaking IT Senior Engineer - What You'll be Doing Each Day: Assist IT deputy head to draft IT manuals, procedures, guidelines of production management include IT infrastructure and IT systems (hardware and software). To make plans for IT infrastructure and systems on the basis of understanding, analysis and forecasting of demands of the various departments, make sure the performance and capacity of IT infrastructure can meet the requirement of business development and system stability. Implement IT infrastructure and systems include servers, storage, network device, backup system, AD, WSUS, UPS, power plant, phone, printer, etc. In charge of virtual system maintenance include vCenter, ESXi, vmware, Ctrix etc. Guide and train bank staff with IT knowledge. Supervise the security program of the computer and telecommunications systems and delegate powers to authorized users. Formulate computer disaster recovery plans and arrange for relevant tests to ensure that the plan is compliant with the regulator's requirements. Liaise with HO and Data Center in relation to the task of IT Systems. Prepare reports to HO and Data Centre. Arrange the Disaster Recovery IT service when necessary. Mandarin Speaking IT Senior Engineer - The Skills You'll Need to Succeed: At least 5 years' IT engineering experience Microsoft Server and Desktop operating systems (2019/2012 Server/Win10) Core Microsoft Infrastructure technologies and solutions (Exchange, AD, RDS, DFS) Systems Virtualisation (VMware, vSphere, Hyper-V) Backup technologies (Veeam, Backup Exec, System Recovery, Endpoint Protection, LTO) Server hardware maintenance and troubleshooting Hardware firewalls and router configuration Switching (HP, Cisco, Juniper) System and network monitoring. Qualifications (Desirable): MCSA-Microsoft Windows Server 2008/2012/Office365 MCSE- Microsoft Certified Solution Expert MCITP-Microsoft Certified IT Professional VMware Certified Professional CCNA/CCNP. Job status: Permanent Start date: ASAP Working hours: 9 to 5 with flexibility when necessary. Working style: 4 days in the office, 1 day at home Please view all our Team China jobs at Please follow us on Linkedin: people-first-team-china We would be grateful if you could send your CV as a Word document. If your application is successful, you will be contacted within 7 days. We regret that due to the high volume of applications we receive we cannot provide feedback on individual CVs. Please note that we can only consider candidates who are eligible to work in the UK and are able to provide relevant supporting documentation. People First is committed to increasing diversity, and maintaining an inclusive workplace culture. We welcome applications from all qualified candidates regardless of their ethnicity, race, gender, religious beliefs, sexual orientation, age, marital status or whether or not they have a disability. People First (Recruitment) Limited acts as an employment agency for permanent and fixed term contract recruitment and as an employment business for the supply of temporary workers. Please note that by applying for this job you accept our Terms of Use and Privacy Policy which can be found on our website.
Global Data Protection Officer Location: Cambridge, UK / Macclesfield, UK / Gothenburg, SWE Competitive salary and benefits package The Global Data Protection Officer functions at an advanced level of complexity spanning data processing activities across the enterprise. The role reports to the Head of Operations and Innovation for Global Compliance and has a dotted-line into the Deputy Chief Compliance Officer to ensure direct access to both Senior Management and the Audit Committee of the Board of Directors with respect to data privacy matters. The GDPO serves as the Data Protection Officer for AZ in jurisdictions in which a DPO is a central role to privacy governance, including, but not limited to the EU, UK, Brazil, etc. The GDPO will be the central point of contact for data subjects and supervisory authorities. In addition to EU/UK data protection officer responsibilities, this role is also responsible for global horizon scanning and providing advice and oversight based upon strong subject matter expertise and guidance across the elements of an effective compliance program with respect to data privacy. The GDPO works closely with the rest of the Data Privacy Office and broader compliance organisation to enhance privacy risk management and compliance while embedding and fostering a privacy mindset across AZ. Typical Accountabilities Company representative for data subjects and supervisory authorities: Point of contact for supervisory authorities related to AZ data processing activities and data subjects Maintain required licenses, registrations and other local regulatory requirements to enable compliant processing and transfer of personal data within the AZ Group and among AZ partners/vendors (e.g., Binding Corporate Rules) Oversight of responses to subject access requests Consult with members of the Global Privacy Office when required on data protection impact assessments and serve as contact to authorities as required on data protection impact assessments and other privacy impact assessments Reporting of significant and/or serious breaches (whether requiring external notice or otherwise), including advice on remediation measure, related oversight and trend analysis All Deputy Data Privacy Officers will have a dotted-line to the GDPO to ensure he/she is able to effectively communicate with data subjects and cooperate with supervisory authorities as needed Partner with the Global Assurance team within Global Compliance, Internal Audit and independent auditing resources (where necessary) to monitor compliance with applicable data protection and privacy laws and broader data privacy requirements and provide assurance on effectiveness of our global compliance program with respect to data privacy risk Advisor (in consultation with Global Privacy Officer Leadership, legal, outside counsel and local resources as necessary) for members of the Privacy Office and other Global Compliance personnel in their support of the business and evolution of the global privacy program with respect to: Company policy and implementation Data protection impact assessments Ongoing monitoring and enhancing risk assurance capabilities Evolving expectations of supervisory authorities Remediation and continuous improvement activities Unique, novel or high risk business activities or projects as needed As the leader of AZ Privacy Risk and Assurance function, manage horizon scanning for key jurisdictions globally related to regulatory developments, proposed legislations, expectations of supervisory authorities and best practices (in consultation with legal, external counsel and local resources as needed) Collaborating with the members of the Privacy Office, Data Privacy Forums/DDPOs and broader Global Compliance committee, as well as key stakeholders from IT, HR, and the business, to fulfil his/her responsibilities and to foster a global privacy mindset across AZ. Education, Qualifications, Skills and Experience Essential: Legal degree or qualifications with extensive experience in privacy law and/or Data Privacy Programs. In-depth knowledge of GDPR, EU/EEA local data protection legislation, UK Privacy Act and UK GDPR, familiarity with US, China and other local data privacy regulations Significant experience and knowledge of privacy program elements and best practices/tools Substantial experience working in a multi-national and multi-regional organization in a highly regulated sector Familiarity with data processing operations in the Global Bio- pharmaceutical sector Significant experience in pharmaceuticals or a related industry; corporate governance, health care regulations, laws and standards Excellent analytical, written and oral communications skills Strong collaborative, partnering, and interpersonal skills, ability to influence across different levels and sectors of the organisation Strong experience speaking to and working with senior leaders, including Board members and executive team members Demonstrated ability to work independently High ethical standards, trustworthy, operating with absolute discretion Demonstrated ability to remain independent and objective while collaborating effectively with stakeholders Desirable In-depth knowledge of US federal and state privacy regulations and China privacy/cyber-security regulations IAPP certifications (e.g., CIPP/US, CIPT, CIPM) CIPP certification High degree of digital literacy, familiarity with use of AI, machine learning and automation in across different business applications (e.g., marketing, business services and processes, research and drug development activities) Familiarity with computer security frameworks and technologies Experience interacting with regulatory authorities, auditors, inspectors, and other third external assurance stakeholders Why AstraZeneca? At AstraZeneca we're dedicated to being a Great Place to Work. Where you are empowered to push the boundaries of science and unleash your entrepreneurial spirit. There's no better place to make a difference to medicine, patients and society. An inclusive culture that champions diversity and collaboration, and always committed to lifelong learning, growth and development. We're on an exciting journey to pioneer the future of healthcare. So, what's next? Are you already imagining yourself joining our team? Good, because we can't wait to hear from you! Where can I find out more? Our Social Media, Follow AstraZeneca on LinkedIn Follow AstraZeneca on Facebook Follow AstraZeneca on Instagram r Job open date: 09/09/2022 Job closing date: 30/09/2022
Sep 23, 2022
Full time
Global Data Protection Officer Location: Cambridge, UK / Macclesfield, UK / Gothenburg, SWE Competitive salary and benefits package The Global Data Protection Officer functions at an advanced level of complexity spanning data processing activities across the enterprise. The role reports to the Head of Operations and Innovation for Global Compliance and has a dotted-line into the Deputy Chief Compliance Officer to ensure direct access to both Senior Management and the Audit Committee of the Board of Directors with respect to data privacy matters. The GDPO serves as the Data Protection Officer for AZ in jurisdictions in which a DPO is a central role to privacy governance, including, but not limited to the EU, UK, Brazil, etc. The GDPO will be the central point of contact for data subjects and supervisory authorities. In addition to EU/UK data protection officer responsibilities, this role is also responsible for global horizon scanning and providing advice and oversight based upon strong subject matter expertise and guidance across the elements of an effective compliance program with respect to data privacy. The GDPO works closely with the rest of the Data Privacy Office and broader compliance organisation to enhance privacy risk management and compliance while embedding and fostering a privacy mindset across AZ. Typical Accountabilities Company representative for data subjects and supervisory authorities: Point of contact for supervisory authorities related to AZ data processing activities and data subjects Maintain required licenses, registrations and other local regulatory requirements to enable compliant processing and transfer of personal data within the AZ Group and among AZ partners/vendors (e.g., Binding Corporate Rules) Oversight of responses to subject access requests Consult with members of the Global Privacy Office when required on data protection impact assessments and serve as contact to authorities as required on data protection impact assessments and other privacy impact assessments Reporting of significant and/or serious breaches (whether requiring external notice or otherwise), including advice on remediation measure, related oversight and trend analysis All Deputy Data Privacy Officers will have a dotted-line to the GDPO to ensure he/she is able to effectively communicate with data subjects and cooperate with supervisory authorities as needed Partner with the Global Assurance team within Global Compliance, Internal Audit and independent auditing resources (where necessary) to monitor compliance with applicable data protection and privacy laws and broader data privacy requirements and provide assurance on effectiveness of our global compliance program with respect to data privacy risk Advisor (in consultation with Global Privacy Officer Leadership, legal, outside counsel and local resources as necessary) for members of the Privacy Office and other Global Compliance personnel in their support of the business and evolution of the global privacy program with respect to: Company policy and implementation Data protection impact assessments Ongoing monitoring and enhancing risk assurance capabilities Evolving expectations of supervisory authorities Remediation and continuous improvement activities Unique, novel or high risk business activities or projects as needed As the leader of AZ Privacy Risk and Assurance function, manage horizon scanning for key jurisdictions globally related to regulatory developments, proposed legislations, expectations of supervisory authorities and best practices (in consultation with legal, external counsel and local resources as needed) Collaborating with the members of the Privacy Office, Data Privacy Forums/DDPOs and broader Global Compliance committee, as well as key stakeholders from IT, HR, and the business, to fulfil his/her responsibilities and to foster a global privacy mindset across AZ. Education, Qualifications, Skills and Experience Essential: Legal degree or qualifications with extensive experience in privacy law and/or Data Privacy Programs. In-depth knowledge of GDPR, EU/EEA local data protection legislation, UK Privacy Act and UK GDPR, familiarity with US, China and other local data privacy regulations Significant experience and knowledge of privacy program elements and best practices/tools Substantial experience working in a multi-national and multi-regional organization in a highly regulated sector Familiarity with data processing operations in the Global Bio- pharmaceutical sector Significant experience in pharmaceuticals or a related industry; corporate governance, health care regulations, laws and standards Excellent analytical, written and oral communications skills Strong collaborative, partnering, and interpersonal skills, ability to influence across different levels and sectors of the organisation Strong experience speaking to and working with senior leaders, including Board members and executive team members Demonstrated ability to work independently High ethical standards, trustworthy, operating with absolute discretion Demonstrated ability to remain independent and objective while collaborating effectively with stakeholders Desirable In-depth knowledge of US federal and state privacy regulations and China privacy/cyber-security regulations IAPP certifications (e.g., CIPP/US, CIPT, CIPM) CIPP certification High degree of digital literacy, familiarity with use of AI, machine learning and automation in across different business applications (e.g., marketing, business services and processes, research and drug development activities) Familiarity with computer security frameworks and technologies Experience interacting with regulatory authorities, auditors, inspectors, and other third external assurance stakeholders Why AstraZeneca? At AstraZeneca we're dedicated to being a Great Place to Work. Where you are empowered to push the boundaries of science and unleash your entrepreneurial spirit. There's no better place to make a difference to medicine, patients and society. An inclusive culture that champions diversity and collaboration, and always committed to lifelong learning, growth and development. We're on an exciting journey to pioneer the future of healthcare. So, what's next? Are you already imagining yourself joining our team? Good, because we can't wait to hear from you! Where can I find out more? Our Social Media, Follow AstraZeneca on LinkedIn Follow AstraZeneca on Facebook Follow AstraZeneca on Instagram r Job open date: 09/09/2022 Job closing date: 30/09/2022