Back to Job Search

Head of Data Privacy

  • Location: Bangkok
  • Salary: attractive per year
  • Job Type:Permanent

Posted over 3 years ago

Argyll Scott is helping the client looking for Head of Data Privacy. This role will responsible for oversee data protection strategy and implementation with Personal Data Protection regulations.

Key Responsibilities

  • Act as Data Protection Officer (DPO) for Thailand PDPA and lead Data Privacy Program and compliance activities
  • Ensure Privacy by Design and By Default being implemented on the new projects and enhancement
  • Develop, communicate and ensure compliance with organizational data privacy/protection and the related security policies and standards
  • Create and manage data privacy and risk management awareness training programs for all employees, contractors and relevant parties
  • Has responsibilities to participate in certain Architecture Review Board meetings, Data Governance meetings, and Data Privacy Exec Committee meetings, especially related to sensitive / personal data
  • Actively Lead and participate in Data Breach incidents, including possible claims
  • Work collaboratively with Information Security team in reviewing policy related to personal data protection
  • Develop, implement and monitor a strategic, comprehensive IT risk management program to ensure the integrity, confidentiality and availability of information owned, controlled or processed by the organization
  • Work directly with the business to facilitate IT risk analysis and risk management processes, identify acceptable levels of risk, and establish roles and responsibilities with regard to information classification and protection
  • Provide subject matter expertise to executive management on a broad range of data privacy, data protection, information security standards and best practices, such as GDPR, PDPA, NIST, ISO 17799, CobiT and ITIL
  • Coordinate risk management projects with staff from the IT organization and business unit teams
  • Coordinate with Information Security team to ensure that security programs are in compliance with applicable laws, regulations and policies to minimize or eliminate risk and audit findings
  • Liaise between the information security team and corporate compliance, audit, legal and HR management teams as required
  • Develop business-relevant metrics to measure the efficiency and effectiveness of the data privacy compliance program, facilitate appropriate resource allocation and increase the maturity of the compliance program

Key Qualifications

  • Bachelor or Master degree in Computer Science, IT, or any related fields
  • 10+ years of experience with information security, data protection, data privacy, risk management, security threats, and the design, processes, and operation of a comprehensive information security environment
  • Extensive knowledge and experience with driving and implementing the Data Privacy Compliance Framework.Executing compliance assessments for regulatory requirements, including ISO, DSS, and effective management, leadership, organization, and planning expertise
  • Experience in DPO role and legal background on global and local data privacy regulatory is desirable
  • CIPP Certification and Knowledge of Information Security are considered an asset
  • Ability to display a proven track record of leadership in creating and implementing new program directions and initiatives and build and establish excellent business relationships within IT and related departments to maximize efficiency and opportunities to improve an organization
  • Ability to communicate a clear vision to continually advance the organizational security posture, with key milestones and measurements for success
  • Ability to handle difficult or sensitive situations, think strategically, synthesize business data, and develop innovative and holistic business solutions that are forward thinking and growth-oriented

Argyll Scott Asia is acting as an Employment Agency in relation to this vacancy.