Great that you're thinking about a career with BSI!
Head of Data Privacy
UK/Europe – Hybrid/Remote
About the role
As the Head of Data Privacy, you will report into the Chief Information Security Officer and lead BSI’s data privacy and protection strategy across all regions. You will be the subject matter expert and partner with cross-functional teams on all things privacy related at BSI. As part of this role, you will offer consultative support, while also ensuring compliance in line with privacy laws and regulations and best practices.
Responsibilities:
* Ensure privacy policies and practices are up to date with evolving global privacy laws and standards (e.g., GDPR, CCPA, HIPAA, etc.). Implement processes for handling personal data, ensuring lawful collection, use, storage, and disposal practices.
* Conduct regular data protection impact assessments (DPIAs) to identify, assess, and mitigate potential privacy risks. Oversee and manage audits of data privacy practices to ensure compliance with internal and external standards.
* Lead efforts to respond to data subject access requests (DSARs) and manage processes related to data breach incidents. Serve as the key point of contact for data protection authorities and manage regulatory inquiries, complaints, and investigations.
* Promote a culture of privacy awareness across the organization, ensuring staff at all levels understand their responsibilities in handling personal and sensitive data. Develop and deliver privacy training programs and materials to educate employees on their roles in protecting data.
* Work as part of the Information Security, Privacy, Resilience & Network Operations Team to ensure data privacy and security measures are integrated into technology initiatives and processes. Ensure that security measures are in place to protect data from breaches, unauthorized access, or accidental loss.
* Oversee data privacy due diligence and risk assessments of third-party vendors and partners to ensure compliance with privacy regulations. Ensure appropriate data processing agreements are in place with external vendors handling personal data on behalf of the organization.
* Establish key privacy metrics and reporting mechanisms to monitor compliance with data protection regulations. Provide regular reports to senior leadership on the status of the privacy program, including risks, incidents, and areas for improvement.
* Lead the response to any data privacy incidents, including investigation, mitigation, and notification processes. Ensure that appropriate steps are taken to prevent further breaches and that all necessary reporting to authorities and affected individuals is completed.
To be successful in the role, you will have:
* In-depth knowledge of GDPR and international data regulations.
* Previous experience working in privacy within an international organisation/business.
* Experience working with different functional teams across a matrix organisation.
* Demonstrable experience leading on privacy matters.
* Great experience creating and delivering privacy strategy.
* Previous experience in privacy transformation (developing/increasing privacy maturity in an organisation).
* Experience managing/resolving data privacy incidents.
The following are not needed, but would be highly beneficial:
* Legal background.
* Qualifications/certifications: CIPP, CIPT, CIPM.
* Experience working as part of an information security team.
* Experience with privacy tools and technology.
* Previous experience dealing with the ICO or alternative governing bodies.
* Multi-Lingual: European languages and/or Mandarin.
Grow your career and expand your skills and knowledge. At BSI, we offer opportunities to work across industries and across the globe. You’ll benefit from the different perspectives and experiences of your international colleagues, as well as ongoing training and development.
We’re looking for passionate people who want to make a difference in a purpose-led organisation. If that sounds like you, apply now. Together, we can help create a better society and a more sustainable world.
#J-18808-Ljbffr