This role provides subject matter expertise in developing, implementing, and maintaining the Bank’s Privacy and Data Protection framework. It ensures compliance with applicable data protection laws and regulations, embeds privacy-by-design principles into business operations, and manages data-related risks across products, services, and third-party relationships.

1. Maintain, and monitor the bank’s Privacy & Data Protection Framework, policies and standards.
2. Maintain records of processing activities and lawful basis inventory across departments and the Bank as a whole.
3. Provide advisory on privacy-by-design for new products, digital channels and new technology implementations.
4. Conduct Data Privacy Impact Assessments as required.
5. Coordinate data protection inquiries, breach notifications, and inspections.
6. Co-lead incident response for data protection incidents.
7. Coordinate post incident root cause analysis and lessons learned to enhance controls.
8. Embed privacy in third party risk management.
9. Design and deliver role-based privacy and data awareness training.
10. Oversee retention and disposal aligned to legal, regulations, and business needs and work with IT and Records Management to operationalize deletion and archive controls.
11. Plan and execute privacy control testing, thematic reviews, and supplier audits.
12. Track remediation and report control maturity and risk posture.
13. Prepare data protection compliance reports and dashboards.

1. Bachelor’s degree in Law, IT, Business, or related field
2. Membership of good standing in relevant professional association/ Institute.
3. Professional certifications such as CIPP/E, CIPM, or equivalent privacy qualification is an added advantage.

Minimum 5 years' experience in data protection, privacy compliance, or related risk roles in an organization of similar size and complexity.

Technical Competencies
1. Regulatory Expertise in data protection, privacy compliance,
2. Ability to assess privacy risks and design effective mitigation strategies.
3. Proficiency with data lifecycle management, encryption and cloud security
4. Strong capability to interpret complex data flows and identify compliance gaps.
5. Proficiency in offering guidance on risk management, including the identification of risks at both the departmental and bank-wide levels, and developing corresponding mitigation measures.

Behavioural / General Competencies
6. Proactive, self-driven, and committed to divisional objectives.
7. Excellent interpersonal and stakeholder management skills.
8. Strong problem-solving and organizational abilities.
9. High integrity, professionalism, and adherence to CBK values.
10. Strong communication skills (oral and written).

Register / Login to apply for this job

Register Login