Data Privacy Specialist

Posted 3 Days Ago
Be an Early Applicant
Riyadh, SAU
In-Office
Senior level
Artificial Intelligence • Information Technology • Software • Analytics
The Role
Designs, implements, and maintains the enterprise data privacy framework. Conducts DPIAs and privacy risk assessments, manages privacy compliance with PDPL/GDPR/ISO standards, supports privacy governance, creates data inventories and flow maps, delivers training, and collaborates with legal, IT, and business stakeholders to remediate privacy risks and ensure Privacy by Design across projects.
Summary Generated by Built In
Job Description – Data Privacy SpecialistJob TitleData Privacy Specialist
Job Location - Riyadh - KSA
Job Purpose

The Data Privacy Specialist is responsible for designing, implementing, and maintaining the organization's Data Privacy framework to ensure compliance with applicable privacy laws, regulations, and organizational policies. The role supports the implementation of privacy governance processes, conducts privacy assessments, manages privacy risks, and promotes a culture of data protection across the organization.

Working closely with the Data Privacy Officer (DPO), business stakeholders, IT teams, legal, compliance, and Privacy Champions, the specialist ensures that personal data is collected, processed, stored, and shared in accordance with regulatory requirements, including the Saudi Personal Data Protection Law (PDPL), SDAIA guidelines, and other applicable international privacy standards.

Key ResponsibilitiesData Privacy Governance
  • Support the Data Privacy Officer in developing, implementing, and maintaining enterprise Data Privacy policies, standards, procedures, and operating models.
  • Implement privacy governance processes to ensure compliance with organizational and regulatory requirements.
  • Develop and maintain privacy-related documentation, standards, and operating procedures.
  • Support the integration of privacy controls into enterprise data governance initiatives.
Privacy Compliance
  • Conduct periodic privacy compliance assessments to evaluate adherence to applicable data protection laws and organizational policies.
  • Monitor compliance with the Saudi Personal Data Protection Law (PDPL), SDAIA requirements, and other relevant privacy regulations.
  • Identify compliance gaps and recommend corrective actions.
  • Prepare compliance reports, dashboards, and management updates.
Privacy Risk Management
  • Perform Privacy Risk Assessments across business units and systems.
  • Develop and maintain the enterprise Privacy Risk Register.
  • Identify privacy risks and collaborate with stakeholders to define mitigation plans.
  • Monitor implementation of remediation activities and track residual risks.
Data Protection Impact Assessments (DPIA)
  • Develop, implement, and maintain Data Protection Impact Assessment (DPIA) processes.
  • Facilitate DPIAs for new systems, projects, and business initiatives involving personal data.
  • Ensure Privacy by Design and Privacy by Default principles are embedded throughout project lifecycles.
  • Review project documentation to ensure privacy requirements are addressed before implementation.
Personal Data Inventory & Data Flow Management
  • Guide Privacy Champions and business units in developing and maintaining Personal Data Inventories.
  • Support documentation and maintenance of enterprise Data Flow Maps.
  • Ensure personal data processing activities are accurately documented and regularly updated.
  • Validate processing activities against applicable regulatory requirements.
Privacy Awareness & Training
  • Develop and deliver privacy awareness programs for business and technical teams.
  • Conduct workshops and training sessions on privacy principles, regulatory obligations, and organizational privacy practices.
  • Promote a culture of privacy and responsible data handling across the organization.
  • Support Privacy Champions in driving privacy awareness within their respective business units.
Stakeholder Engagement
  • Collaborate with Legal, Information Security, Risk Management, Data Governance, IT, and business teams to implement privacy requirements.
  • Provide privacy guidance during system implementation, cloud adoption, and digital transformation initiatives.
  • Support internal and external audits related to privacy compliance.
  • Prepare executive reports and presentations on privacy compliance, risks, and improvement initiatives.
Qualifications & ExperienceEducation
  • Bachelor's degree in Information Security, Computer Science, Information Systems, Cybersecurity, Law, Data Management, or a related discipline.
  • Master's degree is preferred.
Experience
  • Minimum 7 years of professional experience in Data Privacy, Data Protection, Information Governance, Compliance, or related disciplines.
  • Proven experience implementing enterprise Data Privacy frameworks and compliance programs.
  • Experience supporting privacy governance within large organizations.
  • Experience conducting Privacy Risk Assessments, DPIAs, and privacy compliance reviews.
  • Experience working with cross-functional business and technical teams.
Mandatory Skills
  • Strong Arabic and English communication skills (written and verbal).
  • Strong understanding of Data Privacy principles, including:
    • Data Minimization
    • Purpose Limitation
    • Lawful Processing
    • Accountability
    • Privacy by Design
    • Privacy by Default
    • Consent Management
    • Data Subject Rights
  • Experience developing and maintaining Data Protection policies, procedures, standards, and operating models.
  • Strong understanding of privacy risk management methodologies.
  • Excellent project management and stakeholder management skills.
  • Strong analytical, documentation, and problem-solving capabilities.
  • Ability to interpret and apply privacy regulations to business operations.
Regulatory Knowledge

Good understanding of:

  • Saudi Personal Data Protection Law (PDPL)
  • SDAIA Data Privacy Guidelines
  • NDMO Data Management Standards
  • GDPR (General Data Protection Regulation)
  • ISO/IEC 27701 Privacy Information Management
  • ISO/IEC 29100 Privacy Framework
  • Other applicable regional and international privacy regulations
Technical Skills

Candidates should have experience with one of the following technology stacks:

Option 1 (Open Source / Modern Privacy Stack) – Mandatory Combination

Must Have

  • Ethyca Fides

Good to Have

  • Eramba
  • OCI Data Safe
Option 2 (Enterprise Privacy Stack) – Mandatory Combination

Hands-on experience with one or more of the following:

  • OneTrust
  • BigID

Experience with equivalent enterprise privacy management platforms is also considered valuable.

Preferred Certifications

One or more of the following certifications is preferred:

  • Certified Information Privacy Professional (CIPP/E, CIPP/A, or equivalent)
  • Certified Information Privacy Manager (CIPM)
  • Certified Information Privacy Technologist (CIPT)
  • ISO/IEC 27701 Lead Implementer or Lead Auditor
  • ISO/IEC 27001 Lead Implementer or Lead Auditor
  • Certified Information Systems Security Professional (CISSP)
  • Certified Data Privacy Solutions Engineer (CDPSE)
  • Equivalent industry-recognized Data Privacy or Information Security certifications

Skills Required

  • Bachelor's degree in Information Security, Computer Science, Information Systems, Cybersecurity, Law, Data Management, or related discipline
  • Master's degree
  • Minimum 7 years of professional experience in Data Privacy, Data Protection, Information Governance, or Compliance
  • Proven experience implementing enterprise Data Privacy frameworks and compliance programs
  • Experience conducting Privacy Risk Assessments, DPIAs, and privacy compliance reviews
  • Experience supporting privacy governance within large organizations
  • Strong Arabic and English communication skills (written and verbal)
  • Strong understanding of Data Privacy principles (Data Minimization, Purpose Limitation, Lawful Processing, Accountability, Privacy by Design/Default, Consent Management, Data Subject Rights)
  • Experience developing and maintaining Data Protection policies, procedures, standards, and operating models
  • Strong privacy risk management methodologies and ability to maintain a Privacy Risk Register
  • Excellent project management and stakeholder management skills
  • Strong analytical, documentation, and problem-solving capabilities
  • Ability to interpret and apply privacy regulations to business operations
  • Good understanding of Saudi PDPL, SDAIA guidelines, NDMO standards, GDPR, ISO/IEC 27701 and ISO/IEC 29100
  • Hands-on experience with Ethyca Fides
  • Hands-on experience with OneTrust
  • Hands-on experience with BigID
  • Experience with Eramba
  • Experience with OCI Data Safe
  • Preferred certifications: CIPP (E/A), CIPM, CIPT, ISO/IEC 27701 or 27001 Lead Implementer/Auditor, CISSP, CDPSE or equivalent

Datamatics Technologies Compensation & Benefits Highlights

The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about Datamatics Technologies and has not been reviewed or approved by Datamatics Technologies.

  • Flexible Benefits Feedback suggests flexible timings and work-from-home options are available in some roles. This flexibility is highlighted as part of the employment experience across certain postings and materials.
  • Wellbeing & Lifestyle Benefits Feedback suggests flexibility around time off and remote work supports work-life balance. These elements can help offset leaner cash components for some individuals.

Datamatics Technologies Insights

Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
Dubai
65 Employees
Year Founded: 2016

What We Do

Datamatics Technologies (DMT) was established in Dubai. We specialize in providing onsite and offshore professional services, covering the full spectrum of Data Analytics and Data Science domains. Our experience of working with diverse industry sectors such as Telecoms, Finance, Government and Manufacturing, across multiple regions enables us to engage and deliver for our clients with confidence. We can offer our full portfolio of services through resource augmentation, managed services, both on T&M or fixed price financial arrangements. Through our end-to-end managed services offering we enable our clients to cut down costs, increase profitability and focus on value addition to their core business activities. Our project and delivery management team are certified in Agile, PMI and ITIL to ensure the planning and execution are carried out using industry best practices. We are working with our clients across Middle East and Africa Region.

Similar Jobs

Datamatics Technologies Logo Datamatics Technologies

Data Privacy Specialist

Artificial Intelligence • Information Technology • Software • Analytics
In-Office
Riyadh, SAU
65 Employees

Snap Inc. Logo Snap Inc.

Lead, Global Brand Experience

Artificial Intelligence • Cloud • Machine Learning • Mobile • Software • Virtual Reality • App development
Hybrid
Riyadh, SAU
5000 Employees

Ericsson Logo Ericsson

Domain Support Specialist

Cloud • Information Technology • Internet of Things • Machine Learning • Software • Cybersecurity • Infrastructure as a Service (IaaS)
In-Office
2 Locations
88000 Employees

Datadog Logo Datadog

Account Executive

Artificial Intelligence • Cloud • Security • Software • Cybersecurity
Easy Apply
Hybrid
Riyadh, SAU
6500 Employees
100K-1M Annually

Similar Companies Hiring

Golden Pet Brands Thumbnail
Digital Media • eCommerce • Information Technology • Marketing Tech • Pet • Retail • Social Media
El Segundo, California
178 Employees
Kepler  Thumbnail
Fintech • Software
New York, New York
6 Employees
Onshore Thumbnail
Artificial Intelligence • Fintech • Software • Financial Services
New York, New York
60 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account