Data Privacy & Protection Specialist

Data Privacy & Protection Specialist will be responsible for helping clients navigate the complex landscape of data protection laws and regulations, assess risks, implement compliance strategies, and develop best practices to safeguard data and ensure regulatory adherence.

Key Responsibilities:

1. Advise clients to grasp the ramifications of data protection laws, regulations, and emerging trends throughout their organization, and formulate strategies to advance their privacy & data protection program maturity.
2. Aid in crafting governance elements for privacy & data protection programs, such as policies, procedures, standards, frameworks, training modules, and notices, catering to intricate global clientele across varied industries.
3. Guide clients in recognizing the potential of privacy tools as facilitators for their privacy operations and support in the integration of top-tier privacy tools.
4. Support clients in conceptualizing, implementing, and overseeing technological and procedural solutions to diminish the risk of data breaches.
5. Collaborate with clients in formulating technical specifications, appraising vendor offerings, establishing architecture & designs, and assessing data protection and security solutions.
6. Define and manage Records of Processing Activities (RoPA) and conduct Data Privacy Impact Assessments (DPIA).
7. Perform gap assessment on client's privacy and data protection practices using existing personal data protection laws and regulations and rectify any issues.
8. Develop training materials related to privacy and data protection for clients in varied industries.

Knowledge, Skills, Experience & Qualifications:

1. Has a bachelor's degree or higher in Information Systems, Computer Science, Electronics and Communications, or related disciplines. Bachelor of law that fulfil other requirements are welcomed to apply.
2. At least 3 years of work experience, with a minimum of 2 years in assessing, designing and implementing privacy and data protection programs.
3. Experience in facilitating privacy and data protection stakeholder interviews and working sessions.
4. Strong knowledge and awareness of domestic and international privacy and data protection laws, regulations, and standards, especially Indonesian PDP Law, European GDPR, Singapore PDPA, etc.
5. Experience with data security solutions and tools, including tokenization, database activity monitoring, and encryption technologies.
6. Has excellent verbal and written English skills.
7. Capable of working as a team player
8. Inquiring mind and committed to self-development and continuous learning
9. Capable of understanding and responding to client's business needs
10. Able to forge solid professional relationship with clients and colleagues alike
11. Highly developed analytical skills and the ability to proffer well-grounded and practical solutions.
12. Preferred:
13. Certifications in one or more of the following: CIPP, CIPM, CIPT, FIP, CDPSE, CISM, CISSP

Familiar with with Data Management and Privacy platforms, e.g., OneTrust, TrustArc, Collibra, and BigID.