OVERVIEW:

The Data Governance Manager of the Privacy & Governance (P&G) team plays a crucial role in supporting the Associate Director of IT Operations in developing, implementing, and maintaining governance, risk, and compliance (GRC) frameworks and policies. This position is essential for ensuring compliance across IT processes and activities while contributing to the organization’s strategic and operational goals.

SKILLS AND KNOWLEDGE:

• Knowledge of data security and compliance requirements
• Excellent communication and stakeholder management skills
• Ability to translate complex technical concepts for non-technical audiences
• Familiarity with data governance tools and technologies
• Strong project management experience
• Background in both business and technical aspects of data management
• 2-3 years of ERP experience

EDUCATION AND EXPERIENCE:

• Bachelor’s degree in Information Technology, Computer Science, Business, or a related field (Master’s degree preferred)
• Relevant certifications such as CIPM are highly desirable

Data Governance and Management

• Assign data ownership and establish clear accountability for data assets across the organization
• Monitor and report on data governance performance and compliance metrics
• Serve as a liaison between business and IT departments for data-related issues
• Promote data literacy and advocate for better data management practices throughout the organization
• Manage data catalogs, data lineage, and data stewardship activities

Risk Management and Compliance

• Identify, assess, and manage risks, developing and implementing mitigation strategies in collaboration with cross-functional teams
• Lead third-party risk management efforts by evaluating and monitoring vendors and service providers
• Contribute to the design and maintenance of the organization’s incident response framework for IT-related risks and breaches
• Conduct regular governance maturity assessments and recommend improvements
• Ensure compliance with regulations such as PDPA and other relevant data protection laws

Data Protection and Privacy

• Conduct data protection impact assessments (DPIAs) to identify and mitigate risks related to data processing activities
• Drive data classification and lifecycle management efforts
• Provide oversight on the organization’s compliance with global and regional privacy laws

Project Coordination and Delivery

• Coordinate enterprise applications, cybersecurity, and service management projectsWork with technical managers to address identified vulnerabilities in systems and networks

Stakeholder Engagement and Training

• Conduct training and awareness programs on data governance, asset management, and data safeguarding policies
• Facilitate workshops and seminars to promote a culture of compliance and risk awareness

Documentation and Reporting

• Prepare regular reports on governance, procurement, and compliance activities for leadership and stakeholders
• Track key performance indicators (KPIs) to measure the effectiveness of governance and compliance initiatives

The above job description is only indicative of the broad set of duties and responsibilities. Distribution of tasks is assigned by the supervisor. Other tasks may be assigned on the job, as deemed necessary by the supervisor.