Data Protection Analyst - Islamabad

Description :

Grade Level: L2 / L3
Location: Islamabad
Last date to apply: 6th January 2025

What is Data Protection Analyst?

The Data Protection Analyst will ensure compliance with privacy laws, regulations, and corporate frameworks. This role involves developing and maintaining privacy documentation, conducting privacy risk assessments, assist and implement Data Loss Prevention (DLP) solutions to safeguard sensitive information. The ideal candidate will work collaboratively across departments to identify and mitigate privacy risks, address regulatory requirements, and enhance data protection capabilities.

What does Data Protection Analyst do?

• Develop and maintain privacy-related documentation, including Data Privacy Impact Assessments (DPIAs), privacy notices for employees and customers, and privacy risk registers.
• Conduct threat assessments related to privacy risks and processing activities.
• Perform regular Privacy Risk Assessments in line with Group guidelines and formats.
• Identify and mitigate privacy risks concerning PMCL data processing activities.
• Design, implement, and manage Data Loss Prevention (DLP) solutions to prevent unauthorized data access and leakage.
• Collaborate with the cybersecurity team to ensure DLP tools and practices are aligned with privacy and security frameworks.
• Regularly monitor and review DLP systems to identify and address gaps or vulnerabilities.
• Stay updated on local and international privacy regulations, adopting best practices in data privacy management to ensure compliance.
• Collaborate with legal teams to interpret and implement privacy-related laws and regulations.
• Address and resolve customer grievances related to privacy issues.
• Independently interact with government and regulatory bodies to address privacy-related inquiries or audits.
• Draft, review, and negotiate Data Processing Agreements and privacy provisions in contracts.
• Ensure contracts reflect compliance with privacy regulations and PMCL frameworks.
• Identify Data Controllers in various departments handling personal information.
• Train and guide teams to implement privacy best practices within their domains.
• Work closely with Information Security, Compliance, Regulatory Affairs Department, Risk, Revenue Assurance, and other teams to align privacy and security programs.
• Provide solutions to complex privacy scenarios while ensuring compliance with laws and regulations.
• Conduct data and process mapping to identify flows and ensure compliance with data protection regulations.
• Contribute to establishing a robust privacy strategy that positions the company as a preferred partner for privacy-conscious customers.
• Assist the Data Protection Officer (DPO) in running the privacy compliance program.
• Investigate privacy incidents and support the implementation of corrective measures.
• Maintain and update a comprehensive risk register for data processing activities.
• Support PMCL in addressing and mitigating privacy risks through proactive measures.

Key Deliverables:

• Conduct a yearly review of contracts to ensure compliance with data privacy requirements.
• Prepare and review responses for courts and regulatory agencies related to privacy matters.
• Design, implement, and manage Data Loss Prevention (DLP) solutions to mitigate risks of data leakage.
• Deliver company-wide privacy awareness sessions and targeted training for teams handling personal information.
• Assist in investigating suspected privacy incidents and recommend corrective actions.
• Support the DPO in negotiating and reviewing Data Protection Agreements, ensuring data processors uphold security and legitimate processing standards.

Jazz is an equal opportunity employer. We celebrate, support, and thrive on diversity and are committed to creating an inclusive environment for all employees.

Requirements

Qualifications:

• Certified Information Privacy Professional (CIPP) or equivalent.
• Certified Information Systems Auditor (CISA) or Certified Data Privacy Solutions Engineer (CDPSE).
• DLP-specific certifications or hands-on experience with DLP tools is highly desirable
• Demonstrated legal acumen, including experience in interpreting, drafting, and reviewing contracts, agreements, and regulatory compliance documentation, is highly desirable.

Skills:

• Bachelor’s degree in information security, IT, or a related field.
• Proven experience in privacy compliance, data protection, and DLP implementation.
• Knowledge of local and international privacy regulations.
• Strong analytical skills with the ability to provide practical solutions to privacy-related issues.
• Experience working with regulatory bodies and drafting or reviewing legal agreements.
• Excellent collaboration and training skills to work across teams and stakeholders.

Benefits

Why Join Jazz?

As one of the leading employers in the country, Jazz epitomizes the philosophy that each Jazz employee is passionately living a better every day inspired and enabled by visionary leadership, a unique professional culture, a flourishing lifestyle, and continuous learning and development.

Our core values include qualities essential for a positive organizational culture - truthfully guiding entrepreneurial and innovative mindsets, harnessing professional and interpersonal collaboration, and fostering across-the-board customer-obsession.

As one of the largest private sector organizations in Pakistan, our objective is to continue to change the lives of our 70 million customers for the better. This is an opportunity for someone who wants to be part of something transformative, someone who can play a critical role in driving our success. Together, we can empower millions more with the tools necessary to progress in an increasingly digital economy.