Company | Certisciscp2See more |
Address | New South Wales |
Category | Education |
Job description
- Keep Management updated about the relevant Data Protection regulations and related corporate policies (including responsibilities).
- Annual review of all Data Protection procedures and related policies.
- Recommend modifications to Data Protection policies from time to time.
- Assist BUs to do personal data mapping and complete PIAs.
- Assess and advise BUs on exceptional cases requiring deviation from guidelines set out in Data Protection policies.
- Review risk controls and risk mitigating measures and alert Management on any risks and issues that might arise.
- Handle personal Data Protection queries & complaints.
- Dealing with requests from individuals to access the data that Certis Australia holds about them (also called ‘subject access requests’).
- Checking and approving any contracts or agreements with third parties that may handle the Certis Australia sensitive data.
- Establishing and maintaining a list to identify the various personal data collection processes to ensure that all aspects of personal data collection, use and disclosure is well monitored and addressed.
- Liaise regulator (OAIC/PDPC) on Data Protection matters (AU Legal to assist where needed)
- Manage all security requirements that are defined and designed into all AU systems and ensure they comply with prevailing Certis group security policies and standards. To identify design gaps and recommend enhancements including Data Protection IT security measures such as data masking and encryption.
- Review and align security architecture, frameworks and standards with overall business strategy and requirements.
- Perform security compliance checks on systems to ensure systems comply with cybersecurity policy and procedures. This includes checking all systems’ renewal/upgrade status to prevent EOSL, patching (inclusive of urgent vulnerabilities patches and system configurations).
- Make assessment and report to Certis group management on the IAF (Integrated Assurance Framework) security dashboard for the security posture of the organization.
- Coordinate Cybersecurity incidents response with Certis group for the response and to ensure prompt containment measures. This includes close tracking for closure of activities and follow up measures.
- Coordinate & report to Certis group on IT audits on governance & compliance on AU systems.
- Recommend and provide inputs on cybersecurity and IT implementation feedback.
Refer code: 1644517. Certisciscp2 - The previous day - 2024-03-04 20:48