Other Technical & Professional - European Cyber Security and Privacy Protection
标准职责
* Gain regional insights into privacy laws/regulations, law enforcement dynamics, policies and standards, industry practices, and global ecosystem, analyze the requirements in privacy laws/regulations in the countries in the European Region, and participate in the development and execution of privacy protection strategy plans.
* Participate in the operation of the privacy expert team in Europe and provide professional comments.
* Develop the data processing agreement for the European Region, promote agreement implementation and signing with suppliers in relevant countries, review the data processing agreements proposed by customers to Huawei, and serve as an owner to ensure that the agreement content is free from high risks.
* Review the requests from all rep offices to ensure compliance of personal data transfer out of the European Region, and sign relevant agreements.
* Participate in the company's key risk mitigation projects for cross-border transfer as the owner of the European Region.
* Develop and maintain a unified privacy notification template for the European Region based on existing personal data inventories (DIs) and processing activity statements, and make efforts to ensure its implementation.
* Act as a contact in privacy compliance management in non-anchor countries to assist CSPOs in fulfilling compliance responsibilities.
* Support privacy compliance inspection by the EU DPO and drive the closure of professional issues in rep offices.
* As a flexible resource, support key privacy risk management projects and activities of rep offices in the European Region.
Position Requirements
* Knowledge: EU GDPR, privacy laws and law enforcement cases in different countries, and international and national standards such as ISO 27701.
* Skills: gaining insights into privacy laws/regulations; developing policy and process documents; risk assessment methods; project management.
* Others: English as a working language.
* Abilities: Insight gaining and planning; internalization and implementation of external laws/regulations; learning; understanding of business.
* Experience: More than 2 years of experience in cyber security and privacy governance.
* Others: Obtain at least one of the international certifications in the privacy protection field, such as CIPP/E, CIPM, and CIPT.
Department
European Cyber Security and Privacy Protection
#J-18808-Ljbffr