Job description

Data Privacy Manager

Big Bank Funding. FinTech Thinking.

Business area overview

Data and Architecture Office (DAO) was formed in early 2020, bringing together some of the critical services which are used by all GBGFs into one organisation. Established to transform HSBC into a truly data-driven organisation by ensuring that every design decision has a built-in data consideration.  As DAO we will provide leadership that enables data and analytics to be a key driver of our business strategy. Working closely to partnership with senior stakeholders and delivery teams all over the world to connect the business processes, data, products, services, and technology that underpin customer value and financial success. At the same time, we’ll work to drive consistency and simplification of our architecture.

 Some careers grow faster than others.

If you’re looking for a career that will give you plenty of opportunities to develop, join HSBC and your future will be rich with potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further.

DataVisa is the global tool for undertaking some of our mandatory data privacy controls, including Internal and External Data Transfers, Privacy Impact Assessments and Records of Processing.  The DataVisa Operations team is responsible for the day to day operational management of the tool including ensuring business users understand how to use the tool and cases are input correctly as well as conducting Privacy Impact Assessments on behalf of the Chief Data Offices. 

We are currently seeking an experienced individual to join the DataVisa Operations team within Group Data Privacy Management in the role of Data Governance Manager.  The role holder will work as part of the centralised utility which will help deliver faster, simpler and more efficient results, helping avoid duplication of work across Global Businesses and Global Functions (GBGFs) and reduce time to market for business sponsored programmes; helping in reducing the risk of breach of customer data and other data privacy risks; driving adherence to the Global Data Management Policies across HSBC, and ultimately increasing customer trust and value of customer data to the organisation. 

Your responsibilities will include:

• Guide business users across multiple markets and Global Business/Global Functions in using DataVisa, ensuring cases are input accurately in order to meet controls.
• Perform privacy assessments of operational processes, identifying, and mitigating risks across the company through effective tools, training and guidance.  Working with Project Mangers to ensure data privacy initiatives are understood and implemented in the program
• Grow awareness and knowledge of the data privacy and other changing laws and regulations within the remit of HSBC operations
• Act as a subject matter expert on data privacy and protection law across the globe, working collaboratively with Legal Data Privacy and Regulatory Compliance to communicate on data risk policies
• Assist in developing, managing and maintaining data standards, policies and methodologies in line with Group Data Privacy Policy
• Develop and administer guidance, training and educational materials
• Identify areas of improvement in local practices relative to managing data privacy
• Support the development and delivery of data privacy and protection controls based on data policies that assure the compliant use of data and information across the global business requirements
• Remain up to date with the requirements of legislation and conduct necessary gap analysis processes to identify and help build remedial work programs and highlight ongoing program risks.  Work with stakeholders to plan future data privacy needs and adhere to the global scope

Requirements

To be successful in this role you should meet the following requirements:

• Preferably have worked in an Organization’s Privacy office or with Data Privacy officers, or in Risk Management role.
•  General awareness and understanding of Privacy regulations (e.g. GDPR, CCPA, PIPL).  In depth knowledge of a least one of the main regulations would be beneficial, however training and support will be provided.
• Detail-oriented, with the ability to multitask and quickly apply new concepts to accomplish assignments
• Show ability to manage multiple stakeholders, strong business partners and understand technology and commercial concepts quickly
• Ability to identify and mitigate data risks with the ability to understand materiality of data risks and prioritise / differentiate response accordingly
• Strong communication skills with the ability to explain complex issues clearly, bridge between different stakeholders, especially, business, IT and legal
• Ability to work effectively under pressure with competing and rapidly changing priorities
• Proven track record of taking ownership / responsibility for work and be comfortable working independently

The base location for this role is Birmingham,Chester, Sheffield or Edinburgh. Other UK locations may be considered.

 
Come Power a Business that Defines How to Power the World

 As a business operating in markets all around the world, we believe diversity brings benefits for our customers, our business and our people. This is why HSBC is committed to being an inclusive employer and encourages applications from all suitably qualified applicants irrespective of ethnicity, religion, age, physical or mental disability/long term health condition, marital status, sexual orientation, gender identity, gender expression, genetic information (including characteristics and testing), military and veteran status, and any other characteristic protected by local law in the jurisdictions in which we operate. 

 Within the work place you will have access to various employee resource groups which aim to promote and achieve a healthy work / life balance and support our diversity ambitions.  

 HSBC has in place processes in order to avoid nepotism, which means to avoid creating circumstances in which the appearance or possibility of conflicts of interest may exist within the hiring process.

 Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.

You can find out more about the recruitment journey and what to expect by viewing our Recruitment Process FAQs in HR Direct and by clicking here (only available via internal access)