PD-PA/ Data Governance/ Privacy / Protection Sr Exec (Healthcare Sector)

Job Description • Working closely with the Legal, HR, and Information Security teams, you will develop and monitor policies and standards applicable to the business and in compliance with current data protection and privacy law.

• Continue ongoing work to implement measures and a privacy governance framework to manage data use in compliance with the current data protection law, including developing templates for data collection, risk assessments, and vendor management reviews.
• Work with key internal stakeholders in the review of projects to champion protection by design, introduce assurance controls, and ensure compliance with data privacy laws, and where necessary, complete and advise on privacy impact assessments.
• Serve as the primary point of contact and liaison with regulatory bodies on all data protection-related matters, as well as internal data protection queries.
• Review vendor contracts and consents required to implement projects in partnership across the business.
• Participate in and monitor the activities of the Data Owner Group, stepping in when necessary to assure the protection of data.
• Manage and conduct ongoing reviews of the company’s privacy governance framework.
• Monitor changes to Data Protection and Privacy laws, making recommendations to the Data Owners Group and the Board when appropriate.
• Set standards and review policies and procedures that meet the requirements under applicable law.
• Develop and deliver data protection and privacy awareness training to business functions.
• Develop strategies and initiatives to ensure engagement with key internal and external stakeholders.
• Coordinate and conduct data privacy audits.
• Collaborate with the Information Security function to continuously assess and improve the balance between protection and productivity.
• Collaborate with the Information Security function to maintain records of all data assets and exports and maintain a data security incident management plan to ensure timely remediation of incidents including impact assessments, security breach response, complaints, claims, or notifications, and responding to subject access requests.

• Min. Bachelor's degree from a recognized university
• Min 2 – 3 years of relevant experience would be an advantage
• Proficiency in MS Excel and applications like SAP and Oracle would be an advantage.