5 Privacy Regulations jobs in the Philippines

JOB DESCRIPTION:

• Being a member of the Data Protection team, this position will support the efforts of Data Protection and Technology Services to ensure our adherence to regulatory and legal data protection and privacy requirements, supporting all lines of businesses and across all functional areas of our company and its companies globally.

RESPONSIBILITIES:

• Keep abreast of and maintain a current understanding of global data privacy laws and regulatory requirements that apply to our company and its companies.
• Conduct annual privacy inventory of data and processing activities, performing PIA and DPIAs.
• Manage and respond to inquiries received in the privacy mailbox and provide consultation, guidance, or escalate as needed.
• Perform privacy vendor evaluations to assess regulatory and privacy risks and practices associated with the onboarding of third parties.
• Liaise with business lines to identify privacy risk areas and determine appropriate privacy controls to limit privacy risks to new projects, cloud hosing initiatives and/or special projects.
• Draft and/or maintain our privacy policies, procedures and guidelines as needed. Assist other business lines with policies that may have an impact to individuals privacy (e.g., employee handbook, technology usage, social media policy, etc.)
• Assist in the review of changes to applicable laws and regulations and interpretation of impact to the company and its companies.
• Assist with annual privacy training and ongoing awareness program.
• Assist with procedures to address Data Subject Access Requests
• Assist with the annual review of monitoring policies to prevent the loss of personal data/data leakage prevention monitoring.
• Aligns risk and control processes into day-to-day responsibilities to monitor and mitigate risk; escalate appropriately.
• Keep current on evolving technologies (e.g., AI) and the associated risks and impact to data protection.
• Assist with data breach investigations, management reporting, and trend analysis impacting data privacy and/or client confidentiality.
• Support other daily program elements as needed.

**NOTE: The Primary Responsibilities of this role are not limited to the details above. **

QUALIFICATIONS:

• Minimum of 6 years of related experience
• Bachelor's degree preferred or equivalent experience.
• Relevant industry certification (e.g., CIPM, CIPP EU/A/C/US, CISSP, etc.
• Relevant experience to include (e.g, data privacy, audit, information security, risk management, etc.)

Must Have

• Minimum of 6 years of related experience
• Bachelor's degree preferred or equivalent experience.
• Relevant industry certification (e.g., CIPM, CIPP EU/A/C/US, CISSP, etc.
• Relevant experience to include (e.g, data privacy, audit, information security, risk management, etc.)

IT Governance Support
▪ Monitor compliance with IT governance policies and procedures, reporting any non- br>compliance or areas for improvement.

▪ Participate in internal audits and assessments to evaluate the effectiveness of IT governance controls. < r>
Data Protection Compliance
▪ Assist in the implementation and monitoring of data protection policies, ensuring compliance with data protection laws and regulations. < r>▪ Support the development and delivery of data protection awareness training for employees. < r>
Risk Management
▪ Collaborate with IT and business teams to ensure risk management practices are < r>integrated into daily operations.

Documentation and Reporting
▪ Maintain up-to-date documentation for IT governance and data protection processes, < r>procedures, and guidelines.
▪ Prepare reports on IT governance and data protection activities, including compliance < r>status and risk assessments.

Job Qualifications:

▪ Bachelor’s degree in Information Technology, Computer Science, Information Systems, or any related field.
▪ 1-2 years of experience in IT governance, data protection, or related areas is preferred.

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all.
Our business is highly regulated and EY is a complex, matrixed organization. Managing risk is of paramount importance to our brand and reputation, and our Risk Management team works side-by-side with the business to do this. Our aim is to enable responsible growth and that means working with the business to identify, monitor and manage risk, and consult and advise. Through oversight of key risk issues and processes such as independence, conflicts, and legal and regulatory compliance, we help maximize public trust and ensure EY and our clients are operating responsibly.

The opportunity

This opportunity is an ideal role for an individual who wants to directly contribute to EY's global organization. The Data Protection subfunction has oversight for a global data protection framework that is established in line with the needs of the business to protect all information that EY has responsibility for throughout the data lifecycle at an enterprise level, supporting immediate and future regulatory, legal, risk and operational requirements. It helps the business mitigate risks and costs, demonstrate compliance, defend against claims, and improve operations and productivity.
This is an exciting time to join Risk Management. Enabling responsible growth and working together with the business to do this is at the heart of many of the Next Wave strategic priorities. We are looking for data protection professionals to join global Risk Management to further enhance the program and deliver further capability in support of identifying and managing risk associated with the use of personal and confidential data at EY. You will build your professional knowledge and credentials, learn how EY operates globally and work with some of the most senior partners. We will benefit from your fresh perspective.

Your key responsibilities

Responsible for leading the relevant aspects of the data protection global program owned by Global Risk Management, supporting business enablement across Asia Pacific in delivery of data protection compliance and achieving key performance indicators (KPIs). You will take a leading role in implementing, establishing, and developing Global Data Protection program RM initiatives in the Area. You will be responsible for coordinating the implementation of Data Protection best practice throughout the Area and will be the Area's main point of contact with Asia Pacific personnel on Data Protection matters in collaboration with the Asia Pacific Data Privacy Leader.
You will be expected to contribute to EY Global data protection projects and initiatives, providing Area input and you will report to Global Data Protection Risk Management Leader.
Skills and attributes for success
Interest in enhancing EY's ability manage the risks associated with the operational use of personal data and confidential information.
Interest in strengthening the capabilities and knowledge of the business in Asia Pacific in how to address data protection risk throughout their operational responsibilities
Interest in working with a culturally diverse team from around the globe to design, develop, and deploy programs and share knowledge
Excellent relationship-building and interpersonal skills, with a proven inclusive and flexible approach
Team player and active listener with the ability to respond to and develop the ideas of others
Effective communicator with excellent written and oral presentation skills
Proven ability to lead and influence outcomes without direct authority
Ability to persuade, influence, negotiate and gain leadership buy-in for proposed change initiatives
Ability to formulate recommendations to solve complex data protection business issues
Proven project management skills and experience of delivering projects in a matrixed organization
Strong knowledge of EY and a willingness to grow your skillset

To qualify for the role you must have
University graduate with several years' experience in data protection, either through legal practice, in-house operational risk/compliance or a professional services environment information lifecycle / management, information governance experience
Certification in Program Management from the International Association of Privacy Professionals (CIPM) or similar certification, or willingness to obtain certification within the first year
Good knowledge of the key global data protection frameworks and general understanding of data privacy rules in local countries
Advanced MS office knowledge (Word, Excel, PowerPoint)
Understanding and/or experience of the use of data privacy tools and platforms in managing operational privacy requirements
Excell

Our Client is a renowned Global player in the financial markets.

Position Title: Senior Associate Data Protection & Technology (EMEA/US Shift)
Compensation: USD $800,000 $1,000,000 per annum
Location: Manila, Philippines (Hybrid Minimum 3 days onsite per week)

Role Overview:

As part of the Data Protection team, this role plays a key part in ensuring that data privacy and security practices comply with global regulatory standards. The Senior Associate will contribute to enterprise-wide compliance efforts, supporting various business units and operational functions worldwide.

Key Responsibilities:

• Stay up to date with global data privacy regulations and ensure the organizations practices align with evolving requirements.

• Lead and support annual privacy audits, including data mapping exercises, Privacy Impact Assessments (PIAs), and Data Protection Impact Assessments (DPIAs).

• Manage incoming queries from the privacy inbox, providing guidance or escalating when necessary.

• Evaluate third-party vendors from a privacy and regulatory compliance perspective during onboarding processes.

• Collaborate with internal teams to identify areas of privacy risk and propose appropriate mitigation strategies, especially in relation to new technologies, cloud solutions, or special initiatives.

• Draft, update, and maintain privacy-related documentation such as policies, protocols, and internal guidelines. Support cross-functional teams in aligning broader policies (e.g., employee handbook, IT usage policies) with data privacy standards.

• Monitor changes in privacy legislation and interpret the implications for company operations and compliance.

• Assist with the rollout of annual privacy training and internal awareness campaigns.

• Support the fulfillment of Data Subject Access Requests (DSARs) and ensure efficient handling in compliance with applicable regulations.

• Contribute to regular reviews of data loss prevention measures and personal data handling procedures.

• Incorporate risk and control considerations into daily tasks, ensuring timely identification and escalation of potential issues.

• Stay informed on emerging technologies such as AI and assess their impact on data protection.

• Provide support during data breach investigations and help compile insights for reporting and analysis purposes.

• Participate in other privacy and security-related initiatives as needed.

Note: The responsibilities outlined above are not exhaustive and may evolve over time based on business needs.

Requirements:

• At least 6 years of professional experience in a related field (e.g., data privacy, audit, cybersecurity, risk management, or compliance).

• Bachelors degree preferred; equivalent professional experience considered.

• Recognized industry certifications such as CIPM, CIPP (EU, A, C, or US), or CISSP are highly desirable.

• Strong knowledge of global privacy standards and practical experience in implementing data protection frameworks.

Ready to Create an Extraordinary Caeer?
If you thrive in high-energy environments, we want to hear from you! Join a dynamic team where your ideas matter, your skills shine, and your work puts you on the global stage. 

Apply now and bring your career to life !

Follow me or DM