Mô tả công việc
Job overview
- The Head of Data Privacy & Compliance / Director of Data Privacy & Compliance will lead the organization's data protection, privacy, and compliance function, acting as a strategic partner to senior leadership in ensuring regulatory compliance while enabling sustainable business growth.
- This role requires deep, hands-on expertise in GDPR implementation, a strong legal or compliance foundation, and the ability to advise on corporate compliance standards such as SOX.
The role works closely with Legal, IT Security, Risk, Audit, and Business Units to embed privacy-by-design and compliance-by-default across the organization.
Reports to: Standing Deputy CEO / CEO
Key Responsibilities:
1. Data Privacy & Compliance Strategy Leadership
• Lead and oversee all data privacy, GDPR, and compliance initiatives across the organization.
• Act as a strategic advisor to executive leadership on data protection, privacy risks, and regulatory compliance.
• Establish and continuously improve privacy and compliance frameworks aligned with business strategy and regulatory requirements.
• Build, structure, and develop the Data Privacy & Compliance function, including policies, processes, and capabilities.
2. GDPR Implementation & Privacy Governance
• Lead and manage GDPR implementation projects, including gap assessments, remediation plans, and ongoing compliance monitoring.
• Develop, implement, and maintain privacy policies, procedures, standards, and documentation.
• Oversee Data Protection Impact Assessments (DPIAs), privacy risk assessments, and records of processing activities (RoPA).
• Ensure privacy-by-design and privacy-by-default principles are embedded into products, systems, and business processes.
3. Corporate Compliance & SOX Advisory
• Provide advisory and support to internal stakeholders on SOX compliance and related internal control frameworks, where applicable.
• Partner with Finance, Risk, Audit, and Legal teams to ensure alignment with corporate governance and compliance standards.
• Support internal and external audits related to data protection, privacy, and compliance.
4. Cross-Functional & Business Support
• Work closely with Legal, IT Security, Risk, Audit, and Business Units to ensure regulatory alignment.
• Advise business and product teams on data usage, personal data processing, cross-border data transfers, and third-party/vendor compliance.
• Support contract reviews and negotiations from a data privacy and compliance perspective.
5. Incident Management & Regulatory Engagement
• Lead the response to data privacy incidents, investigations, breach assessments, and regulatory reporting obligations.
• Serve as a key point of contact with external auditors, consultants, and regulatory authorities.
• Monitor regulatory changes, compliance trends, and industry best practices, proactively advising leadership on impacts and actions.
6. Training, Awareness & Compliance Culture
• Design and deliver internal training and awareness programs on data privacy, GDPR, and
compliance requirements.
• Build a strong, organization-wide culture of data protection and regulatory compliance.
Work Location: Hanoi: TechnoPark Tower, Vinhomes Ocean Park, Hanoi
Yêu cầu
• Bachelor's degree in Law, Compliance, Information Security, or a related field.
• Strong legal background or equivalent professional foundation in compliance, risk management, or corporate governance.
• Proven hands-on experience participating in or leading GDPR implementation projects.
• Experience working on or advising companies subject to SOX compliance is a strong advantage.
• Strong analytical, risk assessment, and problem-solving skills.
• Excellent communication and stakeholder management skills, with the ability to engage senior leadership.
• Ability to work independently and collaboratively in a fast-paced, evolving regulatory environment.
• Professional working English required.
Preferred:
• Prior experience working for a Big Four firm or a leading consulting organization in privacy, risk advisory, compliance, or audit-related functions.
• Experience working with large-scale, complex, or multinational organizations.
• Privacy or compliance certifications such as CIPP/E, CIPM, CIPT, or equivalent.
• Ability to balance regulatory compliance with business enablement.
Why You'll Love Working Here:
• Lead and shape the data privacy & compliance strategy for a large-scale, data-driven organization.
• Work directly with senior leadership, auditors, and regulators.
• High-impact role with strong ownership, visibility, and strategic influence.
• Opportunity to build and scale a privacy & compliance function from a leadership position.
• Competitive executive-level compensation and benefits.
Quyền lợi
Thưởng
Theo Policy của công ty
Chăm sóc sức khoẻ
Theo Policy của công ty
Nghỉ phép có lương
Theo Policy của công ty
Xem thêm
Thông tin khác
NGÀY ĐĂNG
21/05/2026
CẤP BẬC
Giám Đốc và Cấp Cao Hơn
NGÀNH NGHỀ
Công Nghệ Thông Tin/Viễn Thông > Quản Lý Công Nghệ Thông Tin
KỸ NĂNG
Data Privacy, Information Security, IT Security, SOX Compliance
LĨNH VỰC
Phần Mềm CNTT/Dịch vụ Phần mềm
NGÔN NGỮ TRÌNH BÀY HỒ SƠ
Bất kỳ
SỐ NĂM KINH NGHIỆM TỐI THIỂU
8
QUỐC TỊCH
Không giới hạn
Xem thêm
Thông tin chung
Nơi làm việc
- Vincom Center Đồng Khởi, Lê Thánh Tôn, Phường, Bến Nghé, Quận 1, Hồ Chí Minh, Việt Nam
- Tòa nhà Technopark, Ocean park, Gia Lâm, Hà Nội