(1085) Data Protection Officer - BSTD at South African Reserve Bank

Detailed description

The successful candidate will be responsible for the following key performance areas:

• Develop policies and ensure the implementation of conditions for the lawful processing of personal information within the SARB Group.
• Oversee the development and maintenance of personal information frameworks, processes, measures, Promotion of Access to Information Act 2 of 2000 (PAIA) manuals, privacy tools, standards and procedures to ensure the lawful processing of personal information.
• Conduct impact assessments on existing processes and new projects to identify compliance gaps and recommend remedial actions.
• Lead the resolution of incidents and subject requests in line with service level agreements.
• Guide investigations and requests from the regulator and internal/external stakeholders.
• Provide training to key role players to increase their competence in executing information roles across the Group.
• Conduct awareness sessions to boards and executive committees and oversee sessions for the management committee.
• Provide statutory reporting to the regulators as required.
• Provide advisory and consultancy services on data privacy and access to information to the SARB Group.
• Stay informed about local and international (including other central banks) developments and best practices and ensure their application within own work.
• Ensure governance forums fulfil their responsibilities according to privacy legislative requirements.
• Approve any privacy and security technical solutions, ensuring they meet legislative requirements.
• Manage internal and external stakeholder relationships, ensuring sound and productive relationships.
• Prioritise a privacy auditing approach for the Group.
• Manage team performance and support career management and development.
• Lead the team with set objectives and targets, prioritise work, and manage resource utilisation and the quality of deliverables.

Qualifications

Job requirements

To be considered for this position, candidates must be in possession of:

• an Honour’s degree in Compliance, Law, Information Systems, Risk Management or an equivalent qualification in a related field;
• a certified information privacy manager qualification;
• a certified information security professional (CISSP), certified information security manager (CISM) or equivalent qualification; and
• at least 8 to 10 years’ experience in data privacy, data protection or information security – either from a compliance or implementation perspective of which at least 3 years should be in people management.