← back to jobs
> job detail
M
👽Other

Data Privacy & Protection Director

Moniepoint · Lagos, Nigeria
// classified as
Other (Adjacent or hard to classify.)
posted
1d ago
location
Lagos, Nigeria
languages
tools
> education
bachelorsmasters
> description
<p class="p1" style="line-height: 1; text-align: justify;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>About us</strong></span></p> <p class="p1" style="line-height: 1; text-align: justify;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;">Ranked in 2024 by the Financial Times, Moniepoint is Africa’s fastest-growing fintech, trusted by over <strong>10 million business and individual accounts</strong>, processing <strong>billions of Naira in transactions monthly</strong>. Our mission is to enable financial happiness for every African, everywhere.</span></p> <p class="p2" style="line-height: 1; text-align: justify;">&nbsp;</p> <p class="p1" style="line-height: 1; text-align: justify;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Job Title:</strong> Data Privacy &amp; Protection Director</span></p> <p class="p1" style="line-height: 1; text-align: justify;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Department:</strong> Compliance</span></p> <p class="p1" style="line-height: 1; text-align: justify;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Reports to:</strong> Chief Compliance Officer</span></p> <p class="p1" style="line-height: 1; text-align: justify;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Location:</strong> Lagos, Nigeria</span></p> <p class="p2" style="line-height: 1; text-align: justify;">&nbsp;</p> <p class="p1" style="line-height: 1; text-align: justify;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>About this role</strong></span></p> <p class="p1" style="line-height: 1; text-align: justify;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;">The Data Privacy &amp; Protection Director provides expertise and support in data privacy and protection matters, ensuring compliance with regulatory requirements such as the Nigerian Data Protection Act (NDPA) 2023 and other relevant data protection laws. The role oversees the entire data protection strategy, driving the implementation of policies and procedures that safeguard personal data and maintain the organization’s reputation for data security. You will also be responsible for managing the organization’s compliance framework, including conducting Data Protection Impact Assessments (DPIAs) and overseeing data breach response efforts.</span></p> <p class="p2" style="line-height: 1; text-align: justify;">&nbsp;</p> <p class="p1" style="line-height: 1; text-align: justify;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Responsibilities</strong></span></p> <ul class="ul1" style="text-align: justify;"> <li class="li1" style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Governance Framework:</strong> Implement a data privacy governance framework (including Binding Corporate Rules) to manage data use in compliance with the Nigeria Data Privacy Act (NDPA) 2023.<span class="Apple-converted-space">&nbsp;</span></span></li> <li class="li1" style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Policy Development:</strong> Set standards, formulate policies, and establish procedures for the organization to meet NDPA 2023 and other relevant regulations and requirements.<span class="Apple-converted-space">&nbsp;</span></span></li> <li class="li1" style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Stakeholder Awareness:</strong> Ensure that employees, third-party processors (TPPs), vendors, and data subjects are fully informed about their data protection rights, obligations, and responsibilities.<span class="Apple-converted-space">&nbsp;</span></span></li> <li class="li1" style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Regulatory Liaison:</strong> Serve as the primary point of contact and liaison for the Nigeria Data Privacy Commission (NDPC), other regulators, financial institutions, and customers on data privacy and protection-related matters.<span class="Apple-converted-space">&nbsp;</span></span></li> <li class="li1" style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Query &amp; Incident Resolution:</strong> Handle queries, complaints, claims, and notifications from regulators, law enforcement agencies, and data subjects, ensuring prompt feedback and resolutions.<span class="Apple-converted-space">&nbsp;</span></span></li> <li class="li1" style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Impact Assessments:</strong> Work with product managers, project managers, and other internal stakeholders to conduct data privacy impact assessments (DPIAs) to ensure compliance with NDPA 2023 and extant regulations.<span class="Apple-converted-space">&nbsp;</span></span></li> <li class="li1" style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Cross-Functional Alignment:</strong> Collaborate with IT teams to ensure that IT systems and procedures comply with NDPA and other relevant regulations.<span class="Apple-converted-space">&nbsp;</span></span></li> <li class="li1" style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Security Coordination:</strong> Collaborate with the information security team to maintain records of customer data and data processing activities, while sustaining a data security management plan, a data breach response plan, and data retention structures.<span class="Apple-converted-space">&nbsp;</span></span></li> <li class="li1" style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Training Strategy:</strong> Develop strategies to ensure continuous engagement with key internal and external stakeholders, and deliver targeted data privacy training to various business functions, TPPs, and vendors.<span class="Apple-converted-space">&nbsp;</span></span></li> <li class="li1" style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Privacy Audits:</strong> Coordinate and conduct routine privacy audits, including a comprehensive review of the active privacy governance framework.<span class="Apple-converted-space">&nbsp;</span></span></li> <li class="li1" style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>External Auditing:</strong> Work closely with the Data Privacy Compliance Organization (DPCO) to conduct external regulatory audits and provide guidance and advice on privacy-related regulatory issues.<span class="Apple-converted-space">&nbsp;</span></span></li> <li class="li1" style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Regulatory Monitoring:</strong> Monitor updates to local data privacy laws and regulations and make proactive recommendations to executive leadership when appropriate.<span class="Apple-converted-space">&nbsp;</span></span></li> </ul> <p class="p2" style="line-height: 1; text-align: justify;">&nbsp;</p> <p class="p1" style="line-height: 1; text-align: justify;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Experience &amp; Background</strong></span></p> <ul class="ul1" style="text-align: justify;"> <li class="li1" style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Educational Background:</strong> A Bachelor’s degree in Law, Information Technology, Computer Science, Business Administration, or a related field. A Master’s degree in information security or law is highly preferred.<span class="Apple-converted-space">&nbsp;</span></span></li> <li class="li1" style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Required Experience:</strong> Minimum of 5 years of hands-on experience in data protection, compliance, or a related field, with a deep operational understanding of the NDPA and other relevant data protection laws.<span class="Apple-converted-space">&nbsp;</span></span></li> <li class="li1" style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Proven Track Record:</strong> Demonstrated experience managing data privacy in complex organizational settings, including executing data protection audits, leading DPIAs, and managing data breach responses.<span class="Apple-converted-space">&nbsp;</span></span></li> <li class="li1" style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Professional Certifications:</strong> Relevant certifications in data protection/privacy (such as CISSP, CIPM, CIPP, CPT, CDPSE, or CDPO) are highly preferred.<span class="Apple-converted-space">&nbsp;</span></span></li> </ul> <p class="p2" style="line-height: 1; text-align: justify;">&nbsp;</p> <p class="p1" style="line-height: 1; text-align: justify;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Skills &amp; Competencies</strong></span></p> <ul class="ul1" style="text-align: justify;"> <li class="li1" style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Regulatory Insight:</strong> Mastery of data privacy legislations, framework applications, and financial sector compliance structures.<span class="Apple-converted-space">&nbsp;</span></span></li> <li class="li1" style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Analytical Skills:</strong> Strong capability to break down complex system flows, audit technical processing records, and discover potential vulnerabilities in data privacy management.<span class="Apple-converted-space">&nbsp;</span></span></li> <li class="li1" style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Ethical Integrity:</strong> Uncompromising commitment to confidentiality, objectiveness, and ethical compliance standards.<span class="Apple-converted-space">&nbsp;</span></span></li> <li class="li1" style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Effective Communication:</strong> Excellent verbal and written communication skills to successfully collaborate with regulators, external bodies, and internal cross-functional stakeholders.<span class="Apple-converted-space">&nbsp;</span></span></li> <li class="li1" style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Leadership:</strong> Strong capability to direct compliance sub-functions, spearhead company-wide training initiatives, and influence technical or product decisions.<span class="Apple-converted-space">&nbsp;</span></span></li> </ul> <p class="p2" style="line-height: 1; text-align: justify;">&nbsp;</p> <p class="p1" style="line-height: 1; text-align: justify;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>What success looks like in this role</strong></span></p> <ul class="ul1" style="text-align: justify;"> <li class="li1" style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Perfect Regulatory Standing:</strong> Total alignment with the NDPC, resulting in smooth external regulatory audits and zero compliance violations or penalties.<span class="Apple-converted-space">&nbsp;</span></span></li> <li class="li1" style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Flawless Risk Mitigation:</strong> Active, seamless execution of DPIAs for all internal structures, products, and tool variations prior to deployment.<span class="Apple-converted-space">&nbsp;</span></span></li> <li class="li1" style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Proactive Incident Management:</strong> Rapid and completely documented closure of queries, compliance gaps, and unexpected breach notification vulnerabilities within strict timelines.<span class="Apple-converted-space">&nbsp;</span></span></li> <li class="li1" style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>High Organizational Maturity:</strong> An established and well-maintained culture of data safety where employees and third-party partners clearly follow data processing protocols.<span class="Apple-converted-space">&nbsp;</span></span></li> </ul> <p class="p2" style="line-height: 1; text-align: justify;">&nbsp;</p> <p class="p1" style="line-height: 1; text-align: justify;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;"><strong>Why join us</strong></span></p> <ul class="ul1"> <li class="li1" style="line-height: 1; text-align: justify; font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;">Competitive compensation, benefits, and career growth opportunities.<span class="Apple-converted-space">&nbsp;</span></span></li> <li class="li1" style="line-height: 1; text-align: justify; font-family: arial, helvetica, sans-serif; font-size: 12pt;"><span style="font-family: arial, helvetica, sans-serif; font-size: 12pt;">A collaborative and supportive work culture dedicated to professional development and continuous learning.<span class="Apple-converted-space">&nbsp;</span></span></li> </ul>