Senior Specialist - Data Protection

Transguard Group was established in 2001 and has diversified significantly, we lead in the fields of Cash Services, Security Services, Manpower Services, Facilities Management & Aviation. Transguard Group is the UAE’s most trusted business support and outsourcing provider and has a large, dynamic, and culturally diverse workforce with 55,000 employees!

We are currently recruiting for a Senior Specialist – Data Protection to join our ICT team in our HQ, located in DAFZA, Dubai Airport Free Zone.

Scope

The Senior Data Protection Specialist plays a crucial role in ensuring compliance with data protection regulations, clients’ requirements, and safeguarding personal information within Transguard Group LLC.

We are seeking a proactive and experienced Data Privacy Implementation Specialist to lead the implementation of data privacy measures from the ground up within our organization. This role will be instrumental in developing and executing strategies to ensure compliance with data protection regulations and industry best practices.

The position entails implementing data privacy processes, including administrative and technical controls across the entire group. The candidate will assess risks and provide guidance to internal teams on best practices for data handling.

Additionally, the specialist will serve as a point of contact for data protection inquiries, collaborate with stakeholders to address privacy concerns, and oversee the response to data privacy breaches. By effectively managing data protection initiatives, the Senior Data Protection Specialist mitigates legal and reputational risks, enhances trust among stakeholders, and fosters a culture of privacy and security within the organization.

Responsibilities  

Financial

• Implement and maintain data protection measures to minimize financial losses associated with data privacy breaches and non-compliance penalties
• Develop cost-effective strategies for data protection compliance, balancing security needs with budget constraints

Customer

• Serve as a knowledgeable point of contact for internal teams regarding data protection inquiries and concerns, ensuring timely and accurate responses
• Collaborate with cross-functional teams to design and implement robust data privacy frameworks tailored to organizational needs and regulatory requirements
• Collaborate with external stakeholders, such as clients, to address data protection requirements and build trust

 Process

• Develop and enhance data protection policies, procedures, and documentation to ensure alignment with regulatory standards and best practices
• Conduct assessments of data handling processes to identify areas for improvement and ensure compliance with policies
• Perform privacy impact assessments (PIAs) to identify and mitigate potential risks associated with new projects, systems, or processes
• Conduct training sessions and awareness campaigns to educate employees on data privacy best practices
• Lead the deployment of technical controls and mechanisms to protect data integrity, confidentiality, and availability
• Visit all Transguard branches to meet with business units and gain an understanding of the personal data collected and processed
• Conduct comprehensive assessments to identify gaps between current data privacy practices and ISO 27701 requirements
• Develop detailed implementation plans, timelines, and milestones to achieve ISO 27701 compliance
• Identify potential privacy risks and vulnerabilities and implement risk mitigation strategies to protect personal dataEstablish protocols for the timely reporting of all data privacy issues or incidents to the Data Protection Officer (DPO) Collaborate with relevant stakeholders to investigate incidents, assess their impact, and implement corrective actions to prevent recurrence. Ensure compliance with regulatory requirements for incident reporting and notification

Innovation

• Explore and implement innovative technologies and solutions to enhance data protection measures and improve efficiency in data handling processes
• Lead initiatives to develop and implement new processes or tools aimed at streamlining data protection practices and enhancing overall security posture

Hard skills:

• Minimum of 5 years of experience in data protection or related fields such as cybersecurity, privacy compliance, or information security
• Bachelor's degree in computer science, information technology, cyber security or a related field
• Relevant certifications such as Certified Information Privacy Professional (CIPP) or Certified Data Privacy Solutions Engineer (CDPSE) are mandatory, while having Certified Information Systems Security Professional (CISSP) is highly desirable
• Strong understanding of data protection regulations such as GDPR and UAE Data protection law (including DIFC Law No.5 of 2020 and Central bank of the UAE)
• Expertise in risk assessment methodologies and data protection impact assessments (DPIA)
• Strong knowledge of data protection technologies such as encryption, Information Labeling, data loss prevention (DLP), and identity and access management (IAM) solutions
• Familiarity with industry-standard frameworks and standards related to data protection, such as ISO 27001 or NIST (National Institute of Standards and Technology)

Soft skills:

• Excellent communication and interpersonal skills to effectively collaborate with internal and external stakeholders and convey complex data protection concepts
• Strong analytical and problem-solving skills to assess risks, identify vulnerabilities, and develop effective mitigation strategies
• Ability to work independently and as part of a team, managing multiple priorities and deadlines effectively
• Attention to detail and a commitment to maintaining the highest standards of data privacy and security
• Continuous learning mindset to stay updated on evolving data protection regulations, technologies, and best practices