IDB Invest Data Privacy Officer

Inter-American Development Bank - Washington, DC

posted about 2 months ago

Full-time - Senior
Washington, DC
251-500 employees

About the position

The IDB Invest privacy function (the “PF”) operates within FNA/AKI. The PF will be led by the IDB Invest Data Privacy Officer, who will report to the Managing Director of FNA/AKI, with a dotted line reporting to the Chief Finance and Administration Officer (the “CFO”). The PO will provide leadership and will represent the PF in discussions with the other IDB Group Institutions' data privacy teams on Personal Data related issues as deemed appropriate by the PO. This includes coordinating, providing input, and driving consensus on Personal Data protection activities performed by shared services and representing IDB Invest Personal Data privacy interests on relevant IDB Group committees. Under the leadership of the PO, the PF is responsible for providing advice and guidance to IDB Invest Management and IDB Invest Organizational Units on all four areas of the Program: Data Privacy Strategy and Governance, Training and Awareness, Implementing Instruments, and Data Privacy Operations. The role involves defining and coordinating the Data Privacy strategy, ensuring proper training and awareness programs for employees, and supporting the Legal Department in defining Data Privacy language for contracts. The PO will also coordinate with IDB Group institutions' data privacy offices to provide direction on classification and appropriate protection of personal data, and will act as the first point of contact for Data Subjects regarding the Review and Redress Mechanism. The position also entails managing Data Privacy Protection Management Information Security Controls, advising on third-party risk management, coordinating incident response, and overseeing data retention and disposal. The PO will be responsible for reviewing and self-assessing IDB Invest's Personal Data processing activities, collaborating with the Risk unit to provide insights into risks and control assessments, and reporting findings to management. This role is crucial in ensuring compliance with data privacy regulations and fostering a culture of data privacy within IDB Invest.

Responsibilities

  • Provide leadership and represent the privacy function in discussions with other IDB Group Institutions' data privacy teams.
  • Define and coordinate the Data Privacy strategy, scope, and execution of IDB Invest's implementation of the Program.
  • Support and provide resources for personal data privacy training and awareness programs for employees.
  • Identify requirements for and coordinate the creation and updates to Implementing Instruments.
  • Support the Legal Department in defining Data Privacy language for contract templates and assist in negotiations with contractual counterparties.
  • Coordinate with IDB Group institutions' data privacy offices to provide direction on classification and protection of personal data.
  • Provide guidance on the interpretation and implementation of the Privacy Policy in consultation with the Legal Department.
  • Create and maintain an updated ledger of all personal data processing activities conducted within IDB Invest.
  • Provide tools for identifying and minimizing Data Privacy-related incidents, including coordinating Data Privacy impact assessments (DPIAs).
  • Advise on appropriate sharing of Personal Data with external parties and coordinate incident response plans.

Requirements

  • Master's degree (or equivalent advanced degree) in information management, information systems, law, computer science, or related field.
  • 4+ years of experience managing a robust Data Privacy and Protection program for a multi-region organization.
  • In-depth knowledge of regulatory frameworks for data privacy including the EU GDPR.
  • Experience in collaborative approaches to working with stakeholders.
  • Great communication and collaboration skills.
  • Experience with risk management frameworks to objectively measure risks and track remediation.
  • Solid understanding of privacy issues in relation to evolving technology (e.g., mobile, cloud, data lakes, machine learning).
  • Previous experience in information or data governance control activities, preferably in the financial services industry.

Nice-to-haves

  • Certification in Information, Data, Privacy Records, or Security such as CIPP, CIPM, CRM, CIPT, CISSP, IGP, CISM, and CISA is a plus.
  • Proficiency in Spanish, French, or Portuguese is a plus.

Benefits

  • Health insurance
  • Dental insurance
  • Paid time off
  • Parental leave
  • Vision insurance
  • Flexible schedule

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service