Why is this role important?
Overall Summary :
The Manager, Privacy (DI&A) will work under the direction of the Director, Enterprise Privacy to build, implement and operate the Loblaw Privacy Program within our Data Insights & Analytics (DI&A) organization.
Serve as a dedicated privacy subject matter expert within the DI&A organization.Support the development, customization (when applicable) and execution of the Privacy Program components (i.
e., policies, training, privacy assessments, compliance and reporting) within DI&A.Identify and manage privacy risks in day-to-day data management operations (e.
g., data governance, acquisition, ingestion, and use cases), including within new and existing projects.Monitor and report on adherence to these policies and instances of noncompliance.
Stay abreast of global privacy developments and monitor advancements in data protection technologies to ensure organizational adaptation and compliance.
Gather relevant information from project and / or data teams and review, assess, document findings against requirements and create formal reports pertaining to privacy risk findings.
Provide advice, risk assessment, and recommendations regarding privacy controls.Support the Director, Enterprise Privacy by identifying and escalating privacy issues or risks as and developing program updates for the Privacy Committee and varying levels of management.
Support the broader development, implementation and upkeep of the Loblaw Privacy Program across the Company as needed by the Privacy Office as needed.
Develop and maintain strong and collaborative relationships within DI&A as well as with peers and management across the Company.
Role Requirements :
3+ years’ of working and management experience in Privacy Risk Management.Post-secondary education at either the college or university level.
Certificate in CIPP and CISSP preferred.Well versed with Canadian privacy laws and knowledge of international laws and privacy trends.
Privacy-related experience within a large corporate retail and / or health environment.Strong knowledge on privacy issues in relation to evolving technology (e.
g., mobile, cloud, data lakes, analytics, etc.).Familiar with data governance and data management practices and protocols.
Experience with risk management, security, and compliance, including, performing assessment activities around the application of security and privacy controls.
Strong communication and presentation skills, including the ability to present effectively to varying levels of management.
Strong analytical skills and ability to synthesize complex information into practical guidance.Strong interpersonal skills, including the ability to develop strong relationships across all levels of the organization, a positive attitude, thoughtfulness as well as collaboration and creativity.
Ability to work in a fast-paced, changing environment while organizing and managing multiple responsibilities and projects with competing priorities and deadlines.
Ability to approach situations and challenges with an action-oriented mindset and act decisively.Forward thinking with respect to identifying, assessing and prioritizing risk, issues and challenges.