Job Summary
We are seeking a highly skilled and motivated Data Protection and Data Governance Specialist to support our insurance company's compliance with data protection regulations and data governance frameworks, particularly in the insurance sector and with a strong focus on Artificial Intelligence (AI) governance.
Key Responsibilities
* Collaborate with the Data Protection Officer and Data Governance Specialist to ensure alignment on data protection and data governance strategies.
* Monitor and ensure compliance with relevant regulatory requirements, including the EU AI Act and other applicable data protection laws.
* Conduct privacy and ethics impact assessments for existing processes in light of the dynamic environment and for new data and AI use cases or business processes.
* In consultation with key stakeholders, develop/enhance, implement and maintain new and existing governance frameworks and guidelines to ensure the integrity, security, and appropriate use of data and AI and to ensure organisational compliance.
* Provide guidance and support in the management of new use cases, ensuring they adhere to the company's data protection and data governance standards.
* In close collaboration with the business areas, identify and mitigate risks related to data protection and data governance through proactive measures and continuous monitoring.
* Assess data breaches and notify them to the Data Protection Officer. Provide support to the Data Protection Officer in maintaining comprehensive records of all data processing activities conducted by the company in line with the GDPR provisions.
* Assist the Data Protection Officer in maintaining a Privacy and Ethics by Design culture. Review third-party relationships, including due diligence, to ensure compliance with best practice and relevant data protection and AI legislation and regulation.
* Stay current with industry trends and regulatory changes to ensure the company remains compliant and ahead of potential challenges.
* Collaborate with cross-functional teams to embed data protection and data governance best practices in projects and initiatives.
Qualifications
Bachelor's degree in Information Technology, Law, Business Administration, or a related field is required. A Master's degree or relevant certifications (e.g., CIPP, CIPM, CDPSE) is preferred.
Essential Experience:
* Three years of proven experience in data protection, privacy law, or a related field, preferably within an insurance environment.
* Excellent analytical, problem-solving, and decision-making skills.
* Strong knowledge of regulatory requirements, including the EU AI Act and GDPR.
* Experience conducting privacy and ethics impact assessments.
* Familiarity with data governance frameworks and best practices.
* Strong communication and interpersonal skills, with the ability to work collaboratively across teams.
* Detail-oriented with a strong commitment to maintaining high standards of data integrity and protection.
Preferred Skills:
* Experience in a multinational organisation.
* Knowledge of emerging technologies and their impact on data protection and governance.
* Project management experience.