Data Privacy Manager at Equity Bank Kenya

Job Purpose:  

The Data Privacy Manager will be responsible for overseeing the Bank’s data protection strategy and its implementation to ensure compliance with various Data Protection Laws across the the diffrent jurisdiction that the bank operates. The role will work closely with Leadership of IT Security, Legal, Risk and Compliance functions.

Qualifications
 
Job Responsibilities/ Accountabilities:

• Implementing measures and a privacy governance framework to manage data handling and use in compliance with the all relevant privacy laws that Equity bank has to be compliant with across the region
• Working with key internal stakeholders in the review of projects to ensure compliance with local data privacy laws, and where necessary, complete and advise on privacy impact assessments
• Serving as the primary point of contact and liaison for the Data Commission Office and other Data Protection Authorities within the jurisdisctions that Equity bank operates in.
• Serving as the primary point of contact for queries in the business in regards to data Protection and Privacy.
• Reviewing Equity vendor contracts and consents needed to implement projects in partnership with the Bank’s Legal and Information Security functions, and ensuring filing requirements with local regulators are achieved
• Ensure fulfilment data Subject rights arising from the various touch points the bank has with the customer.
• Developing policies, standards and procedures that align to the requirements set out in the GDPR, Data Protection Act and any localization requirements in countries of operation
• Collaborating with the Information Security function to raise employee awareness of data privacy and security issues, and providing training on the subject matter across the group.
• Monitoring performance and providing advice on the impact of data protection efforts across the bank.
• Maintaining comprehensive records of all data processing activities conducted by the bank and group, including the purpose of all processing activities, which must be made public on request.
• Interfacing with Equity Bank customers  to inform them about how their data is being used, their Rights and what measures the company has put in place to protect their personal information.
• Collaborating with the Bank’s Information Security and Legal functions to maintain records of all data assets, ensure data classification and maintaining a data security incident management plan to ensure timely remediation of incidents, security breachs, complaints and claims.

KEY CRITICAL COMPETENCIES:

• Lead from the front
• Strong analytical skills.
• Adaptability.
• Excellent and effective communications skills, both orally and in writing.
• Reliability.
• Be efficient and effective in problem solving.
• Initiative.
• Planning and organization.

EDUCATION & SKILLS

• Degree in either Information Technology, Legal, Risk Management or other related fields
• Data Protection & Privacy Certification (e.g. in CDPSE CIPP, CIPM, CISA).
• 5 years experience, preferably in Legal, compliance, IT Security or Risk management related role.
• Proven relationship with executive management and communication skills.
• Extensive Microsoft office skills (Word, Excel, PowerPoint, etc.)
• Reasonable understanding of the principles, practices, and techniques related to Information Risk Management.
• Knowledge of relevant Data Protection Laws such as GDPR, Kenya Data Protection Act, Rwanda Data Protection Act, Uganda Data Protection Acts and POPI Act.
• Knowledge of wider aspects of risk control, operations and processes.
• Detailed understanding of the Risk assessment processes.

OTHER SKILLS and ABILITIES:

• Able to work on weekends, or extended hours
• The position requires participation in an on-call rotation and off-hours/weekend.
• Have strong communication skills to address customer phone calls and email inquiries
• High personal standards and goal oriented.
• Willing to learn how to navigate new software systems and attend training
• Excellent communications skills, good listener, team player, positive attitude is a must.
• Able to keep a good relation with customers. Flexible and cooperative
• Able to work under pressure, tolerate stress and be quality orientated
• Ability to carry out integrations through completion of System Integration Testing and User Acceptance Testing.
• Ability to work with diverse teams and various stakeholders to accomplish tasks in heterogeneous 24x7 high-availability operations environments, with significant levels of direct customer interaction

Clsoing date: 5 May 2022