This position reports into the Global VP ‐ Information Security and the individual will be responsible for managing the security and privacy requirements for the geography and to implement as well as manage Sutherland’s data governance program as it relates to personal data and in particular implement proper GDPR compliance. He/she will also serve as the subject matter expert for addressing global privacy practices and requirements for the organization.
Duties and Responsibility
Experience required: 10 to 15 years.
Must be from large MNC BPO/KPO/ITES firm
Ø Working/Expert knowledge of EU and UK data privacy laws including the Data Protection Directive (Directive 95/46/EC) and Data Protection Act 1998 (DPA)
Ø Working/Expert understanding of the General Data Protection Regulation (GDPR)
Ø Working/Expert knowledge of data transfer mechanisms including: EU‐U.S. Privacy Shield, and Standard Contractual Clauses
Ø Additional requirements (Desirable):
Ø A certification from the International Association of Privacy Professionals (IAPP): CIPP/E (Europe), CIPP/US, CIPM, or CIPT
Ø A Certified Information Systems Security Professional (CISSP) from ISC2
Ø CISM, CRISC from ISACAØ Regulatory/Compliance/Security or Legal background.