data protection officer and AdministratorLeisure and Resorts World Corporation

Description
Evaluates current IT processes and policies and identifies potential areas for improvement and efficiency gains using best practices.
Ensures that IT policies and procedures are properly documented and updated to reflect the current IT environment and compliance with regulatory requirements.
Define & standardize/develop/deploy enterprise IT policies and controls, processes, performance tracking and dashboards, technology and tools.
Coordinates with internal business on technology compliance, audit and regulatory enquiries both internal and external. Represents IT from Information Security, recovery and technology risk perspective. Ensures proper analysis and timely findings/responses/mitigation in a consistent and factual manner; establish & follow the escalation or reporting process.
Act as Subject Matter Expert in IT methodologies, policies, etc. He/she will be the steward of IT these artifacts. Practices must align w/ the documented design/policies/process/standards
Drives IT organizations' performance and proper management of IT initiatives, services and resources.
Act as the primary point of contact within the organization for members of staff, regulators, and any relevant public bodies on issues related to data protection.
Ensure the company's policy is in accordance with the Data Protection Act (DPA) of 2012, its Implementing Rules and Regulations (IRR), issuances by the National Privacy Commission (NPC) and other applicable laws and policies.
Draft new and amend existing internal data protection policies, guidelines, and procedures, in consultation with key stakeholders.
Evaluate the existing data protection framework and identify areas of none or partial compliance and rectify any issues.
Collect information to identify the company's processing operations, activities, measures, projects, programs, or systems and maintain a record thereof.
Analyze and check the compliance of processing activities, including the issuance of security clearances to and compliance by third-party service providers.
Advise the company regarding complaints and/or the exercise by clients of their rights (e.g., requests for information, clarifications, rectification or deletion of personal data).
Ensure proper data breach and security incident management by the company including the preparation and submission to the NPC of reports and other documentation concerning security incidents or data breaches within the prescribed period.
Devise training plans and provide data protection advice and support for members of staff.
Ideal Person:
Somebody with extensive IT governance and project management experience..
Adequate knowledge on the Philippine Data Privacy Law
Can Start immediately
Requirements
Minimum education level: Bachelor ́s Degree
Years of experience: 1
Availability for travel: No
Availability for change of residence: No
People with disabilities: Yes

₱ 90,000.00 monthly ·  Pasig, National Capital Region ·  5 June