Privacy Compliance Officer

The main purpose of this position is to develop and implement the compliance framework, including the standards, tools, measures and processes to ensure that the South African Reserve Bank (SARB) complies with the Protection of Personal Information Act 4 of 2013 (POPIA). Detailed Description - Develop and maintain personal information (PI) frameworks, measures, privacy tools, standards, procedures and manuals to ensure the lawful processing of PI. - Conduct impact assessments on existing processes and new projects in order to identify any compliance gaps and recommend remedial actions. - Drive the implementation of remedial actions on existing processes and new projects across the business units in the SARB. - Identify privacy training needs and gaps, and facilitate relevant training across the SARB Group. - Design and maintain a central PI repository, PI processes and compliance to PI conditions, gaps and status of remedial actions. - Conduct audits on existing and new PI processes (including high-risk third parties) according to the priority agreed with the Data Protection Officer. - Analyse data, identify patterns across the SARB, and provide insights and recommendations to address any compliance gaps. - Compile reports on the SARB’s compliance with POPIA for the Board of Directors, executive committees (Excos), the Governors’ Executive Committee (GEC), the management committees (Mancos), relevant steering committees and the Risk Management and Compliance Department (RMCD), (GEC). - Develop and maintain a registry for any PI breaches. - Conduct preliminary investigations in incident handling for any PI breaches, and coordinate and/or participate in problem identification, root cause analysis and recommendations to prevent future occurrences. - Stay current with PI knowledge and skills in order to maintain professional expertise and relevant accreditation. - Work with stakeholders to ensure business cluster compliance. - Develop and maintain a third-party risk assessment framework to ensure that third-party contracts comply with PI conditions. Job Requirements - a Bachelor’s degree in Auditing, Compliance, Finance or Law (NQF 7), or an equivalent qualification; - at least 3-5 years’ experience in compliance management, with a focus on privacy; and - knowledge of and experience in the South African generally accepted compliance practice framework. The following would be an added advantage: - a postgraduate diploma in Compliance; or - being an accredited member of the Compliance Institute of South Africa (CISA) and a compliance practitioner (CPrac SA). Additional requirements include: - POPIA and information-related legislation knowledge and skill; - project management knowledge and skill; - continuous improvement knowledge and skill; - industry, organisational and business awareness, knowledge and skill; - quality assurance knowledge and skill; - legislation, governance, risk and compliance knowledge and skill; - control definition knowledge and skill; - risk and compliance monitoring and reporting; - risk identification and analysis knowledge and skill; and - continued learning and/or professional development knowledge and skill. How To Apply All interested parties are invited to apply. - All the available vacancies will be visible. - Login: Is this your first visit to our Job Site? > Register today (Ensure that you include all your skills and qualifications during the registration process.); or Already registered on our Job Site? > Already registered? > Login here. - Select the ‘Date posted’ > ‘Last 3 weeks’ (in the drop-down menu). - Select the appropriate IRC number to view the full advertisement. **The SARB offers remuneration and benefits commensurate with the level of the position and in line with the market. The level at which the successful applicant will be appointed will depend on his/her competence and experience. **Ms Sarah Molomo ***Senior Manager: Recruitment and Selection ***Human Resources Department ***South African Reserve Bank Currency ZAR Amount of Travel Work At Home