Group Data Protection Officer

Ensure organisation’s compliance to Personal Data Protection Act (PDPA)

• Drive the development of the organisation’s regional Data Protection Management Programme (DPMP)
• Endorse the organisation’s data protection policies and DPMP
• Oversee the assignment of roles and responsibilities to ensure compliance with the PDPA
• Oversee data transfer activities and provide advice on personal data protection law in other countries
• Establish a group and/or regional-level data governance strategy, and audit and compliance strategy to strengthen internal controls
• Advise on data ethics and data governance, and facilitate business functions in their strategic utilisation of data assets to generate business value for the organisation
• Inform and advise on data protection laws and the organisation’s policies

Manage risks associated with collection, use, disclosure and storage of personal data

• Oversee measures for the safeguarding of data protection for internal data sources
• Develop remediation actions to minimise the risk of personal data protection breach, and managing data breach incidents at group/regional level
• Commission the conduct of Data Protection Impact Assessments (DPIA)
• Approve the DPIA plan and proposed action plans and solutions arising from the DPIA
• Develop strategies and guidelines on ethical data collection and usage practices
• Establish guidelines for cloud and on-site storage practices that would ensure protection of data from threats

Manage data breaches

• Evaluate the organisation’s response to the data breach incident
• Oversee the conduct of investigations into data breaches
• Lead in public communication of data breaches to regulatory authorities and stakeholders

Drive awareness of PDPA requirements in the organisation

• Champion the organisation’s data protection culture
• Act as a subject matter expert in cross-border data protection compliance
• Collaborate with regional offices to ensure compliance with cross border data protection requirements
• Manage the assignment of responsibilities to deliver compliance with data protection laws and policies of the organisation
• Formulate strategies and standards on due diligence policies and frameworks for the entire organisation

Handle queries, complaints and disputes on the organisation’s management of personal data

• Oversee requests for disclosure of data to public agencies, courts, and law enforcement agencies
• Represent the organisation in cross-border disputes relating to data protection
• Act as the point of contact for International and Regional Regulations that govern Data Protection and Privacy
• Oversee the necessary safeguard measures for data protection for the internal data sources

Advise on data innovation projects in the organisation

• Determine the need to value the organisation’s data to gain competitive advantage
• Generate potential use cases of data form the ecosystem the organisation operates in
• Keep abreast of evolving data innovation needs and expectations and its impact on the organisation
• Explore new ways to harness data in delivering innovative products and/or services
• Formulate data protection and privacy strategies during the entire data-related product development lifecycle

Manage people and organisation

• Review operational strategies, policies and targets across teams and projects
• Develop strategies for resource planning and utilisation
• Review the utilisation of resources
• Oversee the development of learning roadmaps for teams and functions
• Establish performance indicators to benchmark effectiveness of learning and development programmes against best practices
• Implement succession planning initiatives for key management positions

Governance and Compliance

Establish policies for data security and usage, facilitate industry consensus around data ethics, and provide expert advice on data transfer across geographies

Governance and Compliance

Establish audit and compliance strategy and objectives for the organisation, ensuring robustness of internal controls are strengthened

Business Finance

Develop long-term financial plans and budget requirements

Business and Project Management

Adapt overall processes and create a working environment of business agility

Business Development

Manage and direct negotiations and refining negotiation policies

General Management

Formulate organisational performance systems and key performance indicators in alignment with organisation’s vision, mission and values

Business and Project Management

Critically evaluate, review and drive organisation-wide risk mitigation and management initiatives

Business and Project Management

Direct the management of crisis situations

Operations and User Support

Formulate incident response strategies and direct teams in the remediation, resolution, communication and post-mortem of large-scale, unpredictable cyber and data incidents

Governance and Compliance

Formulate the organisation’s code of ethics, systems and processes to ensure adherence to professional, legal and ethical requirements for data usage

Governance and Compliance

Formulate the organisation’s data protection strategy and ensure effectiveness of Data Protection Management Programme (DPMP)

Governance and Compliance

Evaluate the net worth of the organisation’s data to achieve organisational and business goals

Design and Architecture

Establish effective design thinking processes, methodologies and frameworks to proliferate design thinking across the organisation

Governance and Compliance

Set guidelines for IT-related activities in alignment with relevant service, quality and global industry standards

People Development

Drive employee developmental programmes in alignment to business needs

Business and Project Management

Formulate organisational manpower plans to bridge gaps between manpower demand and supply based on current and projected needs of the organisation

Business Development

Implementing strategies to capitalise on new business opportunities

People Development

Establish organisation-wide performance management strategies

Business and Project Management

Lead end-to-end management of large programmes or multiple projects concurrently, coordinating project interdependencies

Stakeholder and Contract Management

Define a strategic stakeholder management roadmap, and lead critical discussions and negotiations, addressing escalated issues or problems encountered

Business and Project Management

Formulate the strategies and policies that are forward- looking and focuses on bottom line results

Strategy Planning and Implementation

Evaluate strategies for critical business functions to ensure plans are realistic and reflect health of business