As part of the Data Protection Governance Team, support IT and Business to improve their Data Protection Governance posture
Contribute to development of the Data Protection Framework, provided services, training and awareness campaigns.
Collaborate and interact with Stakeholders, Leadership and IT to ensure efficient execution of processes and services within the function by introducing appropriate measurement and KPIs, identifying weak points and bottlenecks, and proposing respective improvements.
Responsibilities:
• Interacts with business, IT, Legal, and other internal and external stakeholders to identify core requirements towards handling of Hitachi Energy data.
• Proactively contributes to Data Protection Governance Framework development ensuring alignment with relevant standards of Hitachi Energy, Hitachi, the industry, legal, regulatory and other applicable regulations.
• Interacts with Business, IT and 3rd party counterparts to operationalize requirements into tangible, actionable requirement profiles.
• Define and maintain the measurement and KPIs both on internal function execution as well as the organization's Data Protection maturity
• Create and provide appropriate reporting to respective stakeholders
• Identify weak points and bottlenecks in the efficient function processes execution
• Contribute to Data Protection assessment services development by collecting feedback and proposing improvements
• Support in creating appropriate communication and training materials
Required skills:
• Stakeholder Management
• Strategy Operationalization
• Analytical skills
• Data analysis
• Learning agility
• Communication skills
• Demand management
• Compliance Management
• IT Governance
• IT Architecture
• Information Security Governance
• English (verbal and writing) required
• Ability to travel internationally, travel ca. 20%
Required experience:
• 8+ years of experience in IT/Information Security Governance in large, global organizations (e.g., consulting, audit, industry/operations)
• Experience in processes monitoring, defining and follow up of KPIs, basic data analysis
• Experience in reporting, knowledge of ServiceNow reporting capability is a plus
• Experience in working with data protection related regulations, e.g., GDPR, GLBA, eIDAS is a plus
• Security Governance/Risk Management certification (CISSP, CGEIT, CISM, CRISC ..) is a plus
• Knowledge of relevant security/governance frameworks (NIST CSF, ISO27001, …) is a plus
Tools & Methodologies:
• MS Tools
• ServiceNow IRM
• Agile Methodology
• ITIL
• L6S
• Risk Management