More jobs:
Job Description & How to Apply Below
Essential
Job Duties Global Compliance Monitoring & Strategy Serve as the primary point of contact for data protection authorities and lead the organization’s response to data protection inquiries and investigations.
Monitor global privacy law changes, interpret their implications, and implement necessary updates to internal data processing activities.
Develop, implement, and maintain internal data privacy policies, procedures, and data governance frameworks across all operational regions.
Maintain comprehensive Records of Processing Activities (RoPA).Data Subject Access Requests (DSARs) & Data Rights Own and manage the end‑to‑end DSAR process, ensuring timely and compliant responses to data access, rectification, erasure, and portability requests globally.
Develop robust, scalable processes to identify, locate, and process sensitive data across various organizational systems.
Evaluate complex data requests, ensuring the protection of individuals’ rights while balancing third‑party confidentiality.
Risk Management & Privacy by Design Oversee Data Protection Impact Assessments (DPIAs) for high‑risk processing, new products, and vendor technologies.
Collaborate with IT/Security teams to ensure technical safeguards (encryption, data minimization) are implemented by design.
Conduct audits to proactively address compliance vulnerabilities.
Incident Response & Breach Management Lead the investigation and management of data breaches, ensuring effective response and containment.
Coordinate notifications to regulatory authorities and affected individuals within legal timelines.
Training & Cultural Transformation Foster a proactive data protection culture through employee training and awareness programs.
Act as a "privacy evangelist," providing actionable guidance to HR, Marketing, and Engineering teams.
Competency7+ years of dedicated data privacy experience, with at least 3 years in a senior or global role managing complex privacy programs.
Deep understanding of GDPR (EU & UK), with experience in Brazilian LGPD, CCPA/CPRA, or other international laws.
Proven track record of managing complex DSAR requests, including in‑depth data mapping, redacting, and navigating legal exceptions.
Demonstrated ability to work independently, report to top management, and challenge data processing activities without conflict of interest.
Bachelor’s degree in Law, IT, or related field. A Master’s degree is preferred.
IAPP Certifications (CIPP/E, CIPM, or CIPT) are highly desirable.
Fluency in English is required;
Italian or French is a strong advantage given the locations.
Key Competencies Strategic Thinking:
Ability to translate complex regulations into practical business requirements.
Communication:
Exceptional verbal and written communication skills to educate staff and interact with stakeholders at all levels.
Problem‑Solving:
Strong analytical skills to assess privacy risks and implement mitigating controls.
EEO Statement Abercrombie & Kent is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.
#J-18808-Ljbffr
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
Search for further Jobs Here:
×