Data Protection Officer

Basic job summary:
The job holder will ensure the effective management of the University data processes and subjects in compliance with the Data Protection Act, No. 24 of 2019.
Duties & Responsibilities:

Act as point of contact with the office of the Data Protection Commissioner, other supervisory authorities, internal teams and other stakeholders including partners of the University;
Establish the Data Protection framework and implementation plan;
Drive implementation of essential elements of the Data Protection Act, such as; the principles of data processing, data subjects’ rights, data protection by design and by default, records of processing activities, security of processing, and notification and communication of data breaches;
Interface with data controllers and data subjects and sensitize them about their rights, obligations, and responsibilities;
Provide regular status updates to management and draw immediate attention to any compliance risks and exposure to the applicable data protection rules;
Collaborate with the Information Security function to maintain records of all data assets and exports, and maintain a data security Incident Management Plan to ensure timely remediation of incidents: including; impact assessments, security breach response, complaints, claims or notifications, and responding to subject access requests (SARs);
Identify and evaluate the University’s data processing activities;
Provide advice and instructions on how to conduct Data Protection Impact Assessments (DPIAs);
Monitor data management procedures and compliance within the University;
Participate in meetings with managers to ensure privacy by design at all levels;
Maintain records of processing operations;
Ensure we address all queries from data subjects within legal timeframes (e.g. delete their information from our databases);
Liaise with other organisations that process data on our behalf;
Write and update detailed guides on data protection policies;
Perform audits and determine whether we need to alter our procedures to comply with regulations;
Offer consultation on how to deal with privacy breaches;
Arrange for training on compliance for all stakeholders of the university including employees and students;
Follow up with changes in law and issue recommendations to ensure compliance.

Minimum Academic Qualifications:
Academic Qualifications

A Law degree from an accredited law school is required.
Bachelor’s degree (or equivalent) in computer science or related field will be an added advantage.

Professional Certification and Training

Hold at least one Data Protection or Privacy certification.

Work Experience

Minimum of three (3) years within a compliance, legal, audit, or risk function.
Work experience in data protection and legal compliance is a plus.

Competencies and Attributes

Proficiency with software for preparing reports and presentations.
Ability to handle confidential information.
Ethical, with the ability to remain impartial and report all noncompliance.
Organizational skills with attention to detail.
Excellent communication skills.

Are you qualified for this position and interested in working with us? We would like to hear from you. Kindly send us a copy of your updated resume and letter of application (ONLY) quoting “DATA PROTECTION OFFICER”  on the subject line to recruitment@strathmore.edu by 22nd February 2023.

Apply via :

recruitment@strathmore.edu