Tadawul
Data Protection Head
- Permanent
- Riyadh, Saudi Arabia
- Experience 5 - 10 yrs
- Urgent
Report job as expired
Job expiry date: 30/06/2025
Job overview
Date posted
17/05/2025
Location
Riyadh, Saudi Arabia
Salary
SAR 40,000 - 50,000 per month
Experience
5 - 10 yrs
Seniority
Director
Qualification
Bachelors degree
Expiration date
30/06/2025
Job description
The Data Protection Head will be responsible for overseeing the establishment, governance, and execution of a robust Data Protection Program aligned with regulatory compliance and corporate strategy. The role includes defining and implementing privacy frameworks, policies, standards, and tools; managing risk-based monitoring; and coordinating with internal departments to ensure enterprise-wide data protection compliance. The position also involves managing relationships with regulatory authorities and continuously enhancing protection maturity across the organization.
Required skills
data protection
privacy framework development
data privacy risk assessment
data protection impact assessment
compliance monitoring
regulatory reporting
data breach notification
consent management
data governance
CISSP
ISO 27001 lead implementer
CRISC
CISA
CISM
PMP
CIPM
FIP
data inventory review
policy implementation
KSA data protection regulations
Key responsibilities
- Established governance, oversight and accountability for Data Protection
- Ensure proper oversight on development and implementation of Privacy Framework, Policy and Standard
- Ensure development of core Data Protection program components such as processes, tools, templates, guidance and privacy notices
- Establish protection risk assessment requirements and perform second line risk-based monitoring
- Coordinate with business units and project teams for implementation of protection requirements
- Ensure development and implementation of competency-based training and awareness
- Ensure delivery and maintenance of best-in-class Data Protection capabilities (e.g. Consent, Data governance, Data Breach Notification)
- Ensure compliance with regulatory requirements related to Data Protection
- Review personal data inventory and DPIA results
- Develop and maintain DPIA methodology and qualifiers
- Work with legal on protection and confidentiality documentation
- Identify and address challenges related to personal data protection
- Report Protection program performance to management and committees
- Manage regulatory communications on data protection
- Assess current state of Protection maturity and develop roadmap for target state
- Align Data Protection initiatives with department and corporate strategy
- Manage departmental projects and ensure adherence to guidelines and quality
- Ensure effective budget utilization and report on progress
- Set team objectives, support performance evaluation and feedback
- Ensure adherence to information confidentiality and risk procedures
- Develop and implement departmental policies and processes
Experience & skills
- Bachelor degree in Computer Science or IT Engineering or equivalent (preferably postgraduate)
- 8+ years of experience in related field
- Certifications such as CISSP, ISO 27001 Lead Implementer, CRISC, CISA, CISM, PMP, CIPP/E, CIPM, FIP
- Industry recognized privacy or data governance related certification
- Advanced proficiency in English
