Head Of Data Privacy And Protection

• In this role you will be required to take responsibility to ensure that the organisation processes the personal data of its staff, customers, providers, or any other individuals (also referred to as data subjects) in compliance with the applicable data protection rules, policies, and regulations, and in providing advice to minimise regulatory; reputational and compliance risk and endeavor to avert potential litigations/ penalties and ultimately increase shareholder value for the bank.
• This role oversees the Data Privacy and Protection Centre of Excellence which is responsible for establishing the Data Privacy and Protection Compliance Programme within the FirstRand Group. One of the key objectives of the programme is to mitigate compliance risk emerging from data privacy laws such as: 1) the General Data Protection Regulation (GDPR) and the UK Data Protection Act, including the Guernsey and Jersey data protection laws; 2) the Protection of Personal Information Act (i.e. the privacy law in South Africa); and 3) other data privacy laws and requirements that arises from certain jurisdictions in Africa.

Responsibilities

• Apply a customer-centric approach to ensure customer satisfaction
• Establish mutually beneficial relationships with stakeholders that support thought leadership, innovative and integrated practice solutions
• Draw up a budget aligned to tactical delivery plans to facilitate the provision of adequate financial resources
• Provide Subject Matter Expert guidance on Data Privacy and Protection Related regulatory changes and oversee the implementation of action plans to align to the upcoming regulatory requirements
• Demonstrate leadership behaviour through personal involvement, commitment, and dedication in support of organisational values
• Develop, encourage, and nurture collaborative relationships across business areas and across the group
• Manage team or teams in areas of responsibility in delivery against performance targets and achievement of wider human capital objectives
• Develop tactical strategy and delivery plans in support of functional strategic objectives in partnership with leadership
• Provide subject matter expertise and thought leadership in area of expertise
• Analyse information and reports to identify trends, discrepancies and inconsistencies for decision making purposes
• Identify, drive and implement ideas, policies, procedures, standards, and frameworks to enhance sales and increase profit and manage future fit practice
• Deploys integrated risk management, governance, and compliance frameworks throughout area of responsibility

Experience and qualifications

• Minimum Qualification - Post graduate qualification in Compliance or Law or Risk Management or Information Technology/Management or Business Computing or Cyber Security/Cybercrime
• Preferred qualification - Post graduate qualification in Compliance or Law Risk Management or Information Technology/Management or Business Computing or Cyber Security/Cybercrime
• Experience - 5 - 8 years’ experience in a similar environment, of which 2 - 3 years ideally at management level.
• Additional Knowledge: Risk Management, Audit Committee understanding, Business Conduct Market Conduct, POPIA, Cybercrime and Information Management and Governance