StamfordRecruiter Since 2001
the smart solution for Stamford jobs

VP - Group Data Privacy Officer

Company: Aspen 56 Holdings Limited
Location: Stamford
Posted on: August 3, 2022

Job Description:

Stamford, Connecticut Permanent - Full Time About usSince Aspen was founded in 2002, we have become a leading, diversified specialty insurance and reinsurance company. We respond thoughtfully and creatively to find the best outcomes for our clients and business partners through carefully-tailored solutions.
We believe the way we work is just as important as the work we do, and we are guided by our core values of respect, honesty, trust and professionalism.
Aspen is a great place to develop your career offering an exciting and challenging environment where achievement is rewarded.The roleAspen, we are committed to ensuring that all of our employee and customer data is protected We're seeking a Data Privacy Officer to maintain and oversee the group-wide privacy framework. As Group Data Privacy Officer, you will be responsible to coordinate, embed and monitor data protection and privacy compliance in accordance with our corporate policies and applicable legal and regulatory requirements. Our Aspen Values are expected to be reflected in the delivery and performance of every role.Key accountabilities - Maintain Aspen's privacy framework to ensure that Aspen manages Sensitive and Personally Identifiable Information ((S)PII) related to staff, policyholders, beneficiaries, third-party claimants and other interested parties, as well as Non-Public Information (NPI) including commercially sensitive data, in compliance with all relevant legislation and regulation. - Act as the primary point of contact within the organization for members of staff and regulators on issues related to privacy and data protection.
- Promote a culture of data protection compliance across all units of the organization Policy, Process and Procedures
- Maintain policies and standards to ensure continued alignment with privacy laws and regulations in the jurisdictions in which Aspen operates, including, but not limited to, the General Data Protection Regulation, the UK Data Protection Act 2018, Bermuda PIPA, California Consumer Protection Act, the NYDFS Cyber Regulations and the Indian Data Protection Act..
- Develop privacy-related training plans and deliver training to all members of staff ensure staff are adequately informed of privacy related expectations and requirements. Environmental Awareness/Customer Focus
- Develop positive, open and productive relationships with key stakeholders, working in partnership to ensure a robust internal privacy compliance program.
- Monitor changes to privacy laws and regulations, and make recommendations to the business as appropriate - Maintain an awareness of industry best practice in order to ensure an effective and dynamic privacy framework.
- Monitor operational privacy practices to assess adherence to Aspen policy requirements and provide assurance that all relevant privacy processes are effectively embedded into the business. Technical Performance
- Inform and advise the Data Controllers or Data Processors on matters related to data protection and embedding operational privacy related processes and practices into the business
- Perform Data Privacy Impact Assessments ('DPIAs') and maintain Aspen's Register of Processing Activities ('ROPAs'), working closely with the business to ensure that all relevant changes in processing are captured and assessed in a timely fashion.
- Provide oversight and regulatory input to data incident management, working closely with Legal, IT and InfoSec teams to ensure appropriate and timely resolution, and related regulatory and data subject reporting. Cooperate with the relevant supervisory authorities as appropriate
- Manage Data Subject Access Requests ('DSARs') from inception to completion in line with applicable regulations, working closely with local DPMs, Legal and the Information Security team as necessary.
- Participate in reviews of 3rd-party data processors or data controllers to assess controls in place to govern transfers and management of (S)PII.
- Review vendor contracts in partnership with the firm's Legal, Procurement and Information Security functions, to ensure inclusion of appropriate privacy-related contractual clauses.
- Maintain and ongoing management of a privacy operations technology platform, namely OneTrust.
- Participate in the relevant privacy governance committees, and providing input to Aspen Entity Boards and / or other group Committees as required
- Report on data privacy matters to senior management, appropriately escalating any privacy risks as required. - May be required to register as the statutory Data Protection Officer for all relevant Aspen Group entities and to maintain and oversee all required registrations for relevant Group entities in accordance with applicable legislation. People Management
- Exhibit indirect leadership and influence to ensure that people, resources and processes are aligned with Aspen's privacy framework and deliver the the required standards of performance.Skills & experience - Strong knowledge of data privacy and data protection regulation in major jurisdictions worldwide
- Experience developing and implementing controls applicable to privacy risks.
- Industry acumen, including a thorough understanding of privacy risks specific to (re)insurance.
- Ideally, knowledge of capital markets and alternative risk transfer.
- Sufficient knowledge of information technology and data management systems required
- Excellent organizational, written, verbal and presentation skills including the ability to interpret and communicate compliance guidance.
- Ability to influence the behaviour of others (informal leadership) to bring about desired change or results.
- Ability to operate with confidence in ambiguous situations and to help others navigate complexity.
- Self-starter with the ability to meet or exceed deadlines, prioritize, multi-task, and maintain flexibility in a fast-paced, changing environment with expanding responsibilities.
- Intermediate knowledge of MS Office software - Excel, Word and Outlook - Ability to deliver effective problem solving and drive decision making.
- Ability to work creatively and analytically in a problem-solving environment, demonstrating teamwork, innovation, and excellence. - Ability to define pragmatic and innovative solutions.
- Able to manage conflicting priorities to achieve deadlines.
- Ability to collaborate effectively within a team environment.
- Minimum 5 years' experience within a data privacy, compliance, legal, audit and/or risk function
- Preference for role holder to hold a Data Protection and/or Privacy certification, such as CIPP, CIPT, ISEB, etc.
- Experience in developing and delivering privacy training
- Significant experience and understanding of the insurance industry, including specific knowledge of UK, US, EU, and Bermuda privacy laws and regulations.
- Experienced at communicating with regulators, senior managers and directors, and external stakeholders on complex regulatory matters.
- Experience operating in a matrix organization.OtherWe are an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status.

Keywords: Aspen 56 Holdings Limited, Stamford , VP - Group Data Privacy Officer, Executive , Stamford, Connecticut

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category

Log In or Create An Account

Get the latest Connecticut jobs by following @recnetCT on Twitter!

Stamford RSS job feeds