Privacy Engineer

Summary

Implement and manage technical solutions that safeguard data privacy and compliance within the organization. Play a pivotal role in maintaining data security, regulatory compliance, and safeguarding Sagicor’s reputation. Ensure the confidentiality, integrity, and availability of user data and upholding our commitment to privacy. Work closely with cross-functional teams to design, implement, and maintain privacy controls, policies, and technologies.

Responsibilities

• • Collaborate with product development teams to integrate privacy into the design and development processes of new products and features.

• Provide expert privacy compliance advice to stakeholders, especially new projects involving the use of personal data.:

  • • Partner with stakeholders to align advanced technologies with privacy by design principles from the early stages of product development and undertake privacy impact assessments.
• • Implement and maintain data protection measures, including encryption, access controls and data anonymization techniques to safeguard sensitive data.
• • Participate in incident response efforts during data breaches or privacy incidents.
• • Act as the main point-of-contact for all privacy-related matters escalated by stakeholders.
• • Develop and enforce privacy policies, procedures and standards/ guidelines that align with legal and regulatory requirements.
• • Develop and oversee Privacy Impact Assessments (PIAs), data protection impact assessments (DPIAs), transfer impact assessments (TIAs) to identify and mitigate privacy risks associated with new projects and services.
• • Conduct audits to identify, assess and address privacy risks.
• • Assist in the development and execution of incident response plans related to data breaches or privacy incidents.
• • Provide training to internal teams on privacy-related topics and changes in privacy regulations.
• • Educate team members and end-users on best privacy practices, data handling and security awareness.
• • Continuously monitor and audit systems and processes for compliance with relevant privacy laws and industry standards.
• • Identify opportunities for privacy enhancements and work on their implementation, taking a proactive approach to evolving privacy requirements.
• • Support the Privacy team’s ongoing privacy compliance activities.
• • Proactively monitor and analyze evolving laws, rules, regulations and guidance to help the company to maintain compliance and strategic alignment.
• • Perform any other related duties assigned from time to time.

Required Skills

• • In-depth knowledge of data protection laws and privacy best practices.
• • Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Privacy Professional (CIPP), or Certified Information Privacy Manager (CIPM) would be an asset.
• • Has expertise in data protection technologies, privacy regulations and a commitment to ensuring data privacy by design.
• • Deep understanding of privacy laws and regulations, including JDPA, GDPR, CCPA, HIPAA.
• • Knowledge of data protection technologies, cryptography, access controls and privacy enhancing techniques.
• • Proven experience in privacy management, awareness or training.
• • Expertise in privacy-enhancing technologies (PETs) and privacy-by-design.
• • Experience in conducting privacy impact assessments (PIAs) and data protection impact assessments (DPIAs).
• • Prior experience in the financial industry would be an asset.
• • Knowledge of privacy tool, privacy by design and security standards would be an asset.
• • Strong understanding of data classification, encryption, access controls, data masking and data anonymization techniques.
• • Familiarity with privacy impact assessments and risk management.
• • Strong problem-solving and analytical skills.
• • Technical skills in data security tools, including data loss prevention (DLP) and encryption solutions.
• • Proficiency in conducting security assessments and audits.
• • Experience working in cross-functional teams and the ability to drive privacy initiatives across the organization.

Qualifications

• • Bachelor’s degree in Computer Science, Information Security or related discipline from a recognized tertiary institution.
• • Proven experience as a Privacy Engineer, Privacy Officer, or a related role with a focus on data protection and privacy.

Share This Job