AI Privacy Specialist

at  World Food Programme

DEADLINE FOR APPLICATIONS

15 September 2024-23:59-GMT+01:00 Central European Time (Rome)
WFP celebrates and embraces diversity. It is committed to the principle of equal employment opportunity for all its employees and encourages qualified candidates to apply irrespective of race, colour, national origin, ethnic or social background, genetic information, gender, gender identity and/or expression, sexual orientation, religion or belief, HIV status or disability.
Are you interested in further developing your professional experience while contributing to ending global hunger? Are you passionate about helping those in need? Would you like to join a global organization investing in its people?
If so, an exciting & fulfilling career awaits you!!! Join our diverse and passionate team that works on varied and international projects directly contributing to saving & changing millions of lives around the globe.

SPECIFIC QUALIFICATIONS & EXPERIENCE REQUIRED:

Education

Advanced university degree in relevant discipline (including but not limited to law, computer science, information technology) or related field with relevant work experience.

• LLM or Master of Law on data protection, privacy, computer and communications law, compliance, international, digital or media law.
• Certifications such as Certified Information Privacy Professional/Europe (CIPP/E), Certified Information Privacy Manager (CIPM), Certified Information Privacy Technologist (CIPT) desired.
• Knowledge of international security management systems industry standards (ISO 27001, ISO 27701, NIST…) desired.
• Qualification to practice law or admitted to practice by a recognized national or state bar or law society desired.

Required Experience

At least 5 years of responsible professional experience in Data Protection, Privacy, and Information Security, preferably with a focus on AI technologies, in a law/consultancy firm and/or large public/private sector organization on Data Protection

• Proven experience in building and implementing global Privacy and Data Protection compliance programs, operations, and/or risk management programs in large corporations, with a specific emphasis on AI-related initiatives.
• Experience in conducting Privacy Impact Assessments (PIAs), maintaining records of processing activities, incident response management, and Subject Access Requests (SARs) mechanisms, drafting contracts, SOPs, policies, and guidelines in the context of AI projects.
• Strong familiarity with AI technologies and their implications for privacy and data protection, including machine learning, natural language processing, computer vision, and other AI techniques.
• Experience in operational risk management, compliance, audit, and implementation or management of control frameworks in AI-related projects.
• Experience working in a global, large-scale, complex, and fast-paced environments with AI technologies.
• Experience in roles that demand accuracy and quality, prioritization, and execution against timelines, managing a high volume of project milestones in AI-related contexts.
• Experience working autonomously with minimal supervision and as part of a team, as well as cooperating within a team across different regions and time zones, specifically in the context of AI initiatives.
• Experience working in a global, large-scale, complex, and fast-paced environments.

Knowledge & Skills:
Deep understanding of Data Protection, Privacy, and Information Security regulations, international security standards, and specific key legal issues, with a focus on their application to AI technologies.
-

Robust knowledge of AI technologies and their impact on privacy and data protection, including privacy by design and by default principles, ethical considerations, and regulatory requirements specific to AI applications.

• Ability to identify AI-related Data Protection related risks and gaps based on the local legal environment, developments, and projects.

Proven ability to contribute to large cross-functional AI projects requiring innovative analysis, recommendations, and approaches;

• Strong analytical interpersonal, communications and presentational skills with a specific emphasis on articulating complex AI-related privacy concepts to diverse stakeholders;
• Excellent drafting skills with the ability to write concisely and synthesize information from a variety of legal and technical sources in the context of AI;
• Demonstrated negotiating, cultural sensitivity and diplomatic skills;
• Demonstrated problem solving skills; client focus and results oriented;
• Ability to work harmoniously with people of different national and cultural backgrounds;
• Ability to plan and organize work programme with pre-defined reporting lines;
• Effectiveness orientation and pro-activity;
• Strong sense of responsibility, confidentiality and accountability.

Languages:
Fluency (level C) in English language. Intermediate knowledge (level B) of a second official UN language: Arabic, Chinese, French, Russian, Spanish is desirable.

• Develop, implement, and operationalize Data Protection and Privacy policies, governance mechanisms, procedures, and tools tailored to AI initiatives across WFP divisions and offices.
• Review current WFP policies and governance framework in Personal Data Protection to adapt them to WFP’s Privacy strategy and operational needs, particularly in the context of AI.
• Draft SOPs, position papers, guidance, and conduct legal research to stay informed about global Data Protection developments, trends, and regulations relevant to AI technologies (e.g., biometrics, digital identities, blockchain, big data) and their impact on humanitarian operations.
• Provide consistent advice to HQ divisions, regional bureaus, and field offices on Data Protection and Privacy issues related to AI initiatives, interpreting WFP principles, policies, guidelines, and international standards.
• Collaborate with cross-functional internal and external stakeholders to ensure regulatory compliance and mitigate organizational risks associated with AI projects.
• Operationalize different elements of WFP’s Data Protection and Privacy Program for AI initiatives, including privacy notices, Privacy Impact Assessments (PIAs), register of processing, training, and awareness campaigns, and data breach response mechanisms specific to AI.
• Prepare and/or review Data Protection and Privacy agreements and contracts related to AI projects, participating in negotiations to meet unique client needs while ensuring compliance with privacy regulations.
• Proactively contribute to improving systems, tools, processes, and templates aligned with WFP’s operational needs in AI.
• Develop reporting mechanisms to monitor Data Protection and Privacy activities, identify risks and gaps, and support remediation efforts.
• Document, track, and report relevant program metrics and milestones on the implementation of the Privacy Program for AI.
• Prepare reports, memoranda, talking points, and correspondence on data protection issues related to AI projects as required.
• Effectively communicate needs and insights to cross-functional audiences at different levels.
• Conduct training and awareness activities on Data Protection and Privacy specific to AI initiatives.
• Coordinate and draft responses to audit findings and evaluation requirements related to AI Privacy compliance.
• Perform any other related duties as required in the context of AI Privacy compliance within WFP.