Data Privacy&Info. Security Manager

What you’ll do

• Responsible for assisting in the design, development, coordination, and execution of data privacy compliance practices that identify risks to the business and demonstrate compliance; also supporting the creation and maintenance of security policies, standards and guidelines.
• Manage the design, delivery and development of the Data Protection and Information Security Policy to ensure it comprehensively meets current business needs and evolves to provide clear added value.
• Develop the operational processes and controls, and assess their effectiveness in mitigating Information Security and Data Protection risks faced by VFTR and VF Group Privacy 
• Lead the business with the creation and maintenance of data protection registers to monitor and track data sharing arrangements, data retention policies, breach notification, VERBIS registrations and effective asset management and disposal.
• Facilitate the remediation of identified vulnerabilities for IT security and IT risk.
• Perform regular data discovery exercises to ensure all personal identified data is identified and monitored.
• Act as the project manager/lead on IT security for projects providing subject matter expertise and technical knowledge in the areas of information security and data protection to  VF Technology Security 
• Privacy Impact Assessments on new products and complete Data Protection Audits on business functions and key risk areas.
• Member of  VF Group Privacy, working with the Data Protection Officer, on any enquiries or incidents related to PI data.
• Liaise with the technical teams and business teams to ensure PII data requirements are captured during Agile development process.
• Liaise with 3rd parties that may store sensitive data on behalf of Lifetime, ensuring that the data is stored and monitored appropriately. Act as the part of the supplier due diligence team. 
• Proactively monitor changes to data protection legislation, communicating and managing changes as they apply to the business
• Create and manage information security and risk management awareness training programs for all employees, contractors and approved system users
• Responsible for Governance of Privacy Commitee meetings 
• Assist Vodafone Turkey DPO in all related matters as desired
• Assist Vodafone Group Privacy team for certain projects in the local market
• Advise and supporting the business to manage privacy risks on a day-to-day basis, including handling and reviewing privacy impact assessments, where necessary, data inventories/mapping and other documents to evidence the organisation’s data privacy compliance; 
• Horizon scanning for upcoming regulatory issues which could impact upon Vodafone’s operations and craft appropriate technical strategy and direction;
• Operate privacy by design programme as desired; 
• Operate artificial intelligence programme as desired; 
• Responsible for supporting ongoing or potential data privacy audits;
• Collaborate with Cyber Security and other teams in investigating, documenting, and remediating potential privacy incidents that impact personal data;
• Conduct comprehensive risk assessments to identify potential data privacy vulnerabilities;
   

Who you are

• Bachelor's degree required in Electric & Electronic or Computing Engineering 
• Minimum 10 + years of relevant experience in information security, data privacy, data management or programme management, and process design 
• Project / Programme Management skills - demonstrable track record successfully managing projects at the highest technical and tactical levels, coordinating multi-discipline projects
• Strong knowledge and experience in data privacy regulations, privacy by design, professional security management certifications, data governance, security incident management 
• Excellent analytical skills and understanding of processes, risks and controls
• Exceptional risks and issues management, change control 
• Excellent verbal and written communication 
• Highly developed interpersonal skills with ability to effectively communicate and influence decision-making with senior management
• Ability to work with a global team. Energetic, self-starter, flexible, goal-oriented
• Professional security management certification such as ISO 27001 LA, ISO 22301 LA, IS 27701 LA  are required  –CIPM, CISA and CISM or CISSP also essential 

Not a perfect fit

Worried that you don’t meet all the desired criteria exactly? At Vodafone we are passionate about Inclusion for All and creating a workplace where everyone can thrive, whatever their personal or professional background. If you’re excited about this role but your experience doesn’t align exactly with every part of the job description, we encourage you to apply as you may be the right candidate for this role or another role, and our recruitment team can help you see how your skills fit in.

What's in it for you

We like to keep them flexible:

• Vflexy: Flexible Benefits Program

• Hybrid working kit

• Ergonomic kit allowance

• Digital meal voucher

• Flexible transportation allowance.

• Employee assistance hotline & counselling

• Comprehensive and flexible private health insurance

• Discounted price deals for wide range of products & services

Plus, plenty more to enjoy!

#LI-Hybrid

Data Privacy

By applying for this job, you accept the Vodafone Privacy Policy. Please visit Privacy Policy web page at https://careers.vodafone.com/privacy-policy/turkey/ for further details.
 

Who we are

You may have already heard of Vodafone - We're a leading Telecommunications company in Europe and Africa. But what you might not know is that we are continuously investing in new technologies to improve the lives of millions of customers, businesses and people around the world, creating a better future for everyone.

As part of our global family, whether that's Vodafone, Vodacom or _VOIS, you'll feel a sense of pride and purpose as you contribute to our culture of innovation. We pursue equality of opportunity and inclusion for all candidates through our employment policies and practices. 

Together we can.