Data Privacy Principle Expert at stc

, , Saudi Arabia -

Full Time

Start Date

Immediate

Expiry Date

28 Feb, 26

Salary

0.0

Posted On

30 Nov, 25

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Data Privacy, Compliance, Risk Management, Policy Development, Data Protection, Privacy Program, Regulatory Knowledge, Consultation, Impact Assessment, Third Party Management, Incident Management, Data Subject Requests, Personal Data Inventory, Privacy Assurance, Cyber Defense, Reporting

Industry

Telecommunications

Description

Job Purpose The role holder is responsible for developing and executing stc's Data Privacy vision, policies, and compliance, oversee the Privacy Program, manage privacy risks, and ensure adherence to data protection regulations. The role holder shall carry out their duties in accordance with the stipulated business policies and procedures.Job Responsibility Develop vision and roadmap for stc Data Privacy Maintain and update Data Privacy Policy, Standards, Procedures Improve DPP Controls Definition (Privacy and Data Protection Controls) Create Guidelines for implementing Data Privacy policies and procedures Establish Enforcement Mechanism to measure and remediate stc group Subsidiaries Data Protection and Privacy Compliance Direct the implantation and supervision of stc’ Privacy Program Develop Privacy Risk Management Framework Develop Program Dashboard and Risk Register Ensure co-operation and strengthening relationship with the supervisory authority Prepare all personal data issues & emerging technologies for senior advisory Monitor and evaluate privacy laws and regulations changes Provide consultation to translate legal regulations into actionable business requirements Cooperate with RA for all privacy regulatory discussions and communications Ensure supporting Legal and Procurement for privacy concerns related to contractual clauses Establish and ensure design of Centralized Privacy Impact Assessment (PIA) Process for new/change in any personal data Processing Activities and for legacy processing activities under Records of Personal Data Processing Activities (RoPA) Job Responsibility (cont.) Establish and ensure design of Centralized 3rd Party Privacy Risk Management and Due Diligence Process to manage privacy risks associated with personal data processing third parties Ensure and monitor operational compliance of Data Subject Requests Management & Consent Management Develop & maintain stc personal data processing register i.e. Records of Processing Activities (RoPA) Ensure Consolidating, generating, and maintaining up to date and accurate Personal Data Inventory (PDI) to integrate Records of Processing Activities (ROPA) with Assets Inventory and Vendors Inventory Establish a privacy assurance function conducting assurance activities for all privacy operations Privacy Impact Assessment (PIA), Records of Processing Activities (RoPA), 3rd Party Management, Incident Management Conduct Systems Privacy Impact Assessment Compliance Monitoring in cooperation with CS GRC Develop a harmonized and integrated Privacy and CS Risk Management Reporting to stc Group Management via coordination with CS GRC Lead the design and operation of Personal Data Breach Notification Management process in line with Incident Management Process under CS Cyber Defense and ensure notifying the external regulators of Personal Data Breach incidents. Ensure proper alignment with CSDG Enablement in regard to any topic require sharing with the stc group subsidiaries Preparing periodic reports regarding the activities related to processing of Personal Data and providing recommendations to ensure monitoring , and follow up on regulatory documents issued by the external regulators related to the protection of personal data to ensure adherence Ensure to handle violations related to Personal Data and taking corrective actions accordingly Years of Experience A minimum of 8 years Nature of Experience Prior experience in managing large-scale Data Governance projects in setting up policies and procedures a Telecommunications organizationJob Band STP- Similar Director Manager Skills Education Bachelor Degree in Computer Science or Information TechnologyAdditional Education Certifications

Responsibilities

The role holder is responsible for developing and executing stc's Data Privacy vision, policies, and compliance. They will oversee the Privacy Program, manage privacy risks, and ensure adherence to data protection regulations.