**Job Descriptions**
- Develop and maintain data governance, policy, standard, and guideline specifically concerning security and privacy, in alignment with prevailing laws and regulations, and other internal policies such as information security policy,
- In collaboration with related teams, develop and maintain data flow diagrams, data catalog, and all other relevant metadata for data security and privacy.
- Solicit and inform the organization about risks and mitigation plans concerning data security and privacy in the organizations, including data managed in our products.
- Oversee data management life cycle across organizations
- Maintain record of data management activity
- Approve adhoc access to sensitive data
- Explore potential for improvement to data management
- Manage projects concerning data security & privacy protection anonymization/pseudonymization, encryption/hashing, least privileged/privileged access, and others.
- Provides analysis and recommendation for the work of access management, compliance, risk, product security, and internal audit.
**Requirements**:
- Good communication skills with active and passive english
- Ability to maintain the coherency of overlapping policy, standard, and guideline handling different aspects.
- Strong ability to articulate why certain policies are formulated in a certain manner and explaining the reasoning why certain exceptions are granted.
- Strong creative and logical ability to review risks of certain policy, guideline, standard, and ad-hoc decisions.
- Strong foundational technical knowledge to assess data security and privacy.
- Basic scripting and automation skills will be highly desirable.
- 5 years of working experience in various diverse roles where you are actively trying to understand relationships between your role and others are required.