Data Protection Officer

We are seeking an experienced and proactive Data Protection Officer (DPO) Manager to lead our data privacy and protection initiatives. The ideal candidate will be responsible for ensuring our organization’s compliance with global data protection laws and regulations (e.g., GDPR, CCPA, local data protection acts), implementing policies and procedures, and serving as the point of contact for regulatory bodies and data subjects.

This role requires a strategic thinker with hands-on experience in privacy governance, risk management, and data handling practices across digital and physical environments.

Key Responsibilities

• Data Protection Compliance
• Monitor and ensure compliance with applicable data protection regulations (e.g., GDPR, CCPA, PDPA).
• Develop, implement, and maintain data protection policies, procedures, and training programs.
• Governance & Risk Management
• Conduct data protection impact assessments (DPIAs) and risk assessments for projects and new technologies.
• Maintain records of data processing activities and ensure data mapping is kept up to date.
• Identify and mitigate data privacy risks through proactive audits and monitoring.
• Training & Awareness
• Lead regular training and awareness programs for staff on data privacy obligations and best practices.
• Foster a culture of privacy and data protection across the organization.
• Incident Response & Breach Management
• Manage data breaches and coordinate response, investigation, and reporting with relevant stakeholders.
• Liaise with regulatory authorities and data subjects in the event of incidents.
• Stakeholder Engagement
• Act as the primary point of contact for data subjects, regulatory authorities, and internal teams.
• Work closely with IT, Legal, HR, Security, and other departments to align data protection across the business.
• Monitoring & Reporting
• Develop and deliver regular reports on data protection performance, risks, and improvement initiatives to senior leadership.

Requirements

• Bachelor’s degree in Law, Information Security, Compliance, or related field.
• 5+ years of experience in data protection, compliance, risk management, or information governance.
• In-depth knowledge of data protection laws and frameworks (e.g., GDPR, CCPA, ISO 27001).
• Certified Data Protection Officer (C-DPO), CIPP/E, CIPM, or equivalent certification preferred.
• Strong understanding of data privacy technologies and data governance frameworks.
• Excellent communication and stakeholder management skills.
• Experience handling regulatory engagements and audits is highly desirable.

Desirable Skills

• Legal or regulatory background.
• Experience in sectors handling sensitive data (e.g., healthcare, finance, tech).
• Project management experience or certification (e.g., PMP, PRINCE2).
• Familiarity with data security tools and platforms.