Data Protection Executive
Closing date for receipt of applications is Friday (19th) at 17:00
Agency support not required for this role
About Pepper Advantage Ireland
Peper Advantage Ireland has been instrumental in helping Irish individuals, businesses and investors navigate their financial journey since ****.
We manage over €19bn worth of assets and have a skilled team of more than 600 people across Dublin and Shannon.
We're here to service loans and mortgages which includes processing loan payments and when needed, working with customers to resolve late payments or assist with financial difficulties.
As part of the international Pepper Advantage Group, we combine local knowledge with global expertise.
With operations across the UK, Europe and Southeast Asia, we employ over 3,500 people and have over €40bn in assets under management.
About this role
The purpose of the Data Protection Executive (DPE) role is to support the Data Protection Officer (DPO) with the development and oversight of the effective management of Pepper's data protection framework, the setting of the overall data protection strategy, and to monitor compliance with data protection legislative requirements.
Responsibilities of the DPE role will be to manage on behalf of the DPO, engagements with the Data Protection Commission for Complaints and Data Breaches.
In addition, the DPE role will engage with the Data Subject Access Request team and other internal stakeholders to provide advice and support on Data Protection related matters.
The DPE role will report directly to the DPO.
Additional duties will include identifying new and enhanced Data Protection laws and regulations, working closely with the DPO to monitor and oversee the implementation of changes and continuously enforcing and enhancing best practices to ensure all business carried out is in accordance with all applicable Data Protection legislation.
Supporting the DPO in their role to ensure that Data Protection risk is appropriately documented and adequately monitored and tested.
Location
Dublin/Shannon
Key Responsibilities
Maintenance of the Data Protection framework, driving a data protection culture through awareness, training, and the provision of advice.
Maintenance of the Data Protection Obligations register
Co-ordinate annual reviews and updates to Data Protection policies and procedures and communicate effectively to the business; and input into relevant policies and procedures developed by other business functions.
Determine optimal training strategy, content and mode of delivery; maintain accurate and easily accessible training materials and records, working closely with training colleagues for roll-out and delivery.
In conjunction with the Operational Risk team, monitor and audit compliance with GDPR and Pepper policy.
Provide advice and guidance with regard to documenting data processing activities in the form of Data Flows and Data Inventories.
Follow up with business as required to ensure records are maintained.
Provide advice regarding Privacy Impact Assessments (DPIA, LIA and TIA).
Maintain the Data Protection Risk Register ensuring all risks and controls remain up to date.
Point of contact internally for all queries from data subjects including providing advice to the DSAR team on data access requests where required.
Collaborate closely with each business function to understand information flows and evaluate how their data is processed and categorised, what business processes make use of the data and why, and how the controls provide proper security and compliance.
Co-ordinate periodic reviews with the business functions of their records of processing to ensure they remain up to date.
Data Protection representative on all projects involving the processing of personal data
Skills & Experience
3rd level education to Degree or Master level
Data Protection qualification
Strong experience either in-house or externally in a financial services environment
In-depth understanding of the General Data Protection Regulation and the regulatory landscape in Ireland
Experience in design and delivery of training courses
Previous 3/5 yrs experience operating in a role involving Data Protection
Key Performance Indicators
Relevant and timely updates on Data Protection matters to the business
Policies and procedures in place and communicated.
Relevant communications and training deployed.
Discussed with Operational Risk to ensure risks documented; controls in place; and monitoring/testing carried out.
Data flows and data inventories in place and up to date.
Privacy Impact Assessments completed where required (DPIA, LIA, TIA).
Documented risk assessment and plan, reviewed and updated as required.
Timely, robust responses to authorities, data subjects etc.
Delivery of prompt and accurate advice to the business
Audit logs and actions documented
Data flows and data inventories in place and up to date
Obligations register up to date
Competencies
Accuracy & quality
Analytical Thinking
Communication and Interpersonal Skills
Customer service & Commercial Awareness Delivery
Influencing/Persuasion & Negotiation skills
Judgement & Decision-making
Problem solving
Regulatory Requirements for this Role
Fitness & Probity Please note that this role is a Fitness and Probity Standards Impacted role and has been classified as a Controlled Function (CF).
This has been designated a CF2 Role as described below.
CF2 Ensuring, controlling or monitoring compliance by a regulated financial service provider with its relevant obligations.
You will be required to agree to abide by the Fitness & Probity Standards and complete all required due diligence checks.
IAF: Conduct Standards Please note the Common Conduct Standards apply to this role.
They impose a set of conduct obligations on individuals carrying out CFs within Pepper.
These standards are prescribed in the Individual Accountability Framework and subject to regulatory reporting for non-compliance.
The standards are:
Acting with honesty and integrity;
Acting with due, skill, care and diligence;
Cooperating in good faith and without delay with the Central Bank and other relevant regulatory authorities;
Acting in the best interests of customers and treating them fairly and professionally; and
Operating in compliance with standards of market conduct and trading venue rules.
Pepper is an equal opportunity employer.
RoleProfiles are subject to change in line with business needs.
#J-*****-Ljbffr