Overview
Salary:
€60k Defendant on experience
Location:
Dublin East Point Business Park
Contract:
Permanent
Hours:
37.5 hours perweek.
Flexibility required
PrivacyRisk &Compliance Officer
ThePrivacyRisk &Compliance Officer, formerly known asPRCO,is responsible forthe overall administration and execution ofthe globalcompliance,riskand privacy programsfor the country and or subsidiary.This position reports directly into the countrymanagement structureand has adirectline reporting relationshiptothe RegionalPrivacy Officer,the Head ofRiskand the Head of Compliance.
Responsibilities
Responsibilities will include:
ThePRCOis responsible and accountable for the following activities as well asother activitiesat the direction of the local leadership team or theRegional Privacy Officer, the Head ofRiskand the Head of Compliance.
Privacy Management
Privacy Notice/ConsentFormCommunication andReporting –Ensure all new hires receive privacy notice/consent upon hire and all employees receive updated noticesand consentsas needed,working with local HR and recruiting teams.
Monitor and Track communication/disclosure ofappropriate notices(when required)to ensurethey are received byall employees
Monitor and tracking ofdistribution and receipt ofconsent (whenrequired)
Evaluate and coordinate with theGlobalPrivacy, Risk& ComplianceOfficeonthe communication ofanyprivacy notice and/orconsent
Ongoing monitoring ofallpersonal dataprocessing activitiesfor the country or subsidiaryand escalating new or changes to existingpersonal dataprocessingactivityto theGlobalPrivacy& ComplianceOffice.
Records of Processing(ROP) Completion & Ongoing Updates
Ensure completion ofROP's withinOneTrustfor Controller & ProcessorROP's, including:
Ensure new or changes to existingpersonal dataprocessing activitiesare appropriately documented and/or updated(controller and processor)
Ensure new local clients or changes to existing local client processing activities are appropriately documented and/or updated
Incoordination with local/regionalIT, review ITROP's to ensureaccuracy,completeness,andare regularlyupdated
In coordination withtheappropriate SAM,ensurethat data processing activities associated withnew global clients are documented in theROPProcessor andchanges to existingglobal client processing activities are appropriately documentedand updatedin theROPProcessor
In coordination withlocal/regional Functions, ensure that new personal data processing activities are appropriately documented in theROPController and is regularly updated with any changes to existing activities.
Records of Processing(ROP) Quality Review
Review completedROP's to ensure completeness and accuracy
Coordinate with functional team leads as necessary to ensure accuracy
ClientContracts
In coordination with SAM or local Account Managers, ensure existing clientshave been notifiedregardingdataprivacy amendments, the negotiation process has beeninitiated,andclientcontracts have been updatedwith data privacy amendmentsas needed
In coordination with Business Development, SAM, or local Account Managers, asappropriate, ensure liaison with the Legal Department so that contracts with new clients include theappropriate dataprivacyand complianceprovisions.
Report to theGlobalPrivacy, Risk& ComplianceOffice as requested on the status of client contract data privacyand complianceprovisionsnegotiations.
Vendor Due Diligence Review
Ensure the Privacyand ComplianceDue Diligence processesareconducted on allexisting, as well as newvendors for the country or subsidiary – working with both local and global procurement
In accordance withthe processestablishedby theGlobalPrivacy& ComplianceOffice, reviewandapprovecompleted Vendor Due Diligence Questionnaires,or escalate as neededto appropriate the SVP of Privacyor CPOand Regional Privacy Officer,
In coordination with local Procurement, ensure that the Privacyand ComplianceDue Diligence processesarecompletedprior toany newvendor contractexecution
Reporting
Provide specificreportingmetrics as required by theGlobalPrivacy, Risk& ComplianceOffice on a regular, consistent basis.
New Business
Support client bid activity,assistingwith pre-sale conversations about all elements of PRCO role and business policies
Support client due diligence activity
Deliver all go live activity to the TP control framework
Compliance Management
Ensure the implementation,maintenanceandmonitoring ofthe Global Compliance Framework within the area of responsibility.
Ongoing monitoring and tracking of applicable local laws, regulations and legal obligationsin the fields of risk, compliance andprivacy,and report new or amendments to applicable laws,regulations,or legal obligationsin the fields of risk, compliance and privacyto the Global Privacy, Risk& Compliance Office, as requested.
Act as point of contact for BCR/GDPR and other privacy and compliance related audits.
Regularlymeasureandanalyze the performanceofPrivacy, Riskand Compliance systems,assess the efficiency ofprivacy and compliancecontrolsand recommend effective improvements.
Identifyrisks or non-conformity issues in relation to Global Privacy and Compliancepolicies,proceduresand processes.
Together with the Global Privacy, Riskand Compliance Office, provide support to TP subsidiary toidentifycompliance issues and provide guidance asappropriate.
Keep abreast of regulatory developments within or outside of TP as well as evolving best practices in compliance control and risk management.
DocumentPrivacy, Riskand Compliance systemsand prepare reports for Global Privacy, Riskand Compliance Office, senior management and together with the Global Privacy, Riskand Compliance Office, external regulatory bodies asappropriate.
Ensure thatall required Privacy and Compliance training's are delivered to relevant personnel.
Oversight of country level operational compliance to internal TP standards, working across all departments and supporting local senior leaders to ensure compliance
RiskManagement
The PRCO willbe responsible forthe implementation and maintenance of the risk management framework within the area of responsibility in-line with our strategic plans.
The role will include developing andmaintainingdetailed risk management processes and working with key business stakeholders tofacilitatethe embedding of these.
It also includes review of control effectiveness and monitoring of mitigation action plans.
The PRCO is the key point of contact for risk reporting to the Global Risk Team, for ad-hoc incidentreportingand for the escalation of significant risk events.
Deployment and maintenance oftheRisk Management Framework.
Ensure this is embedded in core processes and individual roles
Identification and assessment of risks within the scope of the PRCO
Work with management teams, riskownersand others to ensure risks and internal controls are documented, current and complete
Work with local teams to document and roll-out mitigation plans
Delivery ofaccurateand complete Risk Registers
Provide regular updates on Risks and Controls to the Global Risk Team
Guide local teams and risk owners on the Risk Management Process
Promote a culture of risk awareness to the local management, ensure clear understanding of theobjectivesand the importance of the risk management and the internal controls, and explain the consequences of unmanaged risks
Provide guidance to local points of contact in identification and evaluation of risks
Provide guidanceon the correct use of Risk Categories
Challenge risk information where needed.
Ensure that all relevant details are reported for complete Risk evaluation and monitoring
Lead the documentation,communicationand implementation of the Teleperformance Risk Framework
Develop,maintainand communicate detailed risk management processes, including reviews of controls
Review, assess and report risks and issuesidentifiedor reported by the business in-line with the process andassistthe business in defining and agreeing remedial action whererequired
Review controls for effectiveness and manage risk deliverables
Gather,analyzeand report on financial risk exposures where applicable
Challenge and periodically review controls, recommending and agreeing remedial action whererequired
Develop programs of work that encourage managers and employees to use the risk management and controls systems in an effective way
Encourage and drive quality and continuous improvement of processes used across the business
Respondsto risk management inquiries and consultation requests
Location
-
Near Dublin Office
Qualificationsand experience
Integrity and commitment to compliance
Effective communication skills with bothfront-linerepresentatives and management
Assertivenessand astrong working knowledge of the TP country and or subsidiary
Proficient in Microsoft Office including a good working knowledge of PowerPoint and Excel
Previouswork experience in either risk,complianceor privacy.
Working knowledge of Data Privacy Regulations with arecognizedcertification ortheability to gainarecognizedCertification within the first 6 months intheposition
Ideally has a working knowledge of Anti Money Laundering legislation and application
Fluent inEnglish.
Strong analytical skills andthe abilityto apply critical thinking skills to a given problem or project.
Ability to engage and work well at all levels in theorganization
Strong influencingskills are a necessityfor thisposition as you will be working with multiple functions within the country and region to ensuredeliveryofthe globalprivacy,riskand complianceprogramobjectives.
Education
Bachelor Degree
Professional qualifications in either security, privacy,complianceor risk management
#J-*****-Ljbffr