ABOUT US
Cognizant is one of the world's leading professional services companies, transforming clients' business, operating, and technology models for the digital era. Our unique industry-based, consultative approach helps clients envision, build, and run more innovative and efficient businesses. Headquartered in the U.S., Cognizant, a member of the NASDAQ-100, is consistently listed among the most admired companies in the world. Learn how Cognizant helps clients lead with digital at www.cognizant.com.
LEADING AT COGNIZANT
This is a Leadership role at Cognizant. We believe how you lead is as important as what you deliver. Cognizant leaders at every level: Drive our business strategy and inspire teams around our future. Live the leadership behaviors, leading themselves, others and the business. Uphold our Values, role modeling them in every action and decision. Nurture our people and culture, creating a workplace where all can thrive.
At Cognizant, leadership transcends titles and is embodied in actions and behaviors. We empower our leaders at every level to drive business strategy, inspire teams, uphold our values, and foster an inclusive culture. We invite you to see how you can contribute to our story.
ABOUT THE ROLE
Cognizant is seeking a Director, Data Protection to oversee the Corporate Security’s data protection strategy, regulatory compliance, training of staff, communication with regulators, and understanding relevant data processing risks across internal systems.
The candidate will possess expert knowledge of data protection law and practices, along with an understanding of Cognizant’s infrastructure, technology, and organizational structure. In this role, a risk-based approach to data protection should be taken and they will be the primary point of contact for Corporate Security with regard to potential complaints, queries, notices, and other notification requirements. Overall, an ideal candidate will possess a combination of legal knowledge, technical background, and communication skills, along with a strong sense of credibility, integrity, and independence.
JOB RESPONSIBILITIES
General Compliance
- Inform and advise Corporate Security, including staff who process personal data, of their obligations as per data protection provisions. The candidate will provide recommendations about the interpretation and application of all relevant data protection rules.
- Provide support to GDPR Program and other local data protection provisions and policies in relation to the protection of personal data.
- Inform Corporate Security of any failure to comply with the applicable data protection rules.
- Conduct data audits to ensure compliance and address potential issues proactively.
- Oversee implementation of compliance tools.
- Develop process to conduct due diligence to ensure information shared with partners/suppliers is in alignment with all requirements, protocols, and codes pertaining to personal data.
- Maintain comprehensive records for all data processing activities conducted by the company (such as with a Record of Processing), including the purpose of all processing activities, which may be shared on request.
Documentation
- Develop, review, and update new and existing documentation, including privacy policies, security policies, cookie policies, retention schedule, subject access requests, and others.
- Develop and integrate incident, breach, and data loss management and notification processes into the general incident response process.
- Author technical data protection standards relating to cryptography methods and encryption solutions as needed.
Risk
- Maintain a risk assessment process for personal data, including providing advice on performing data protection impact assessments (DPIA) and monitoring continued performance.
- Report into existing Corporate Security Risk Register of processing operations within Cognizant and notify managers regarding the specific risks, as necessary.
- Serve as the SME and “go-to” individual for all data protection, masking, encryption, obfuscation, tokenization efforts across Cognizant developed applications, services, and environments.
Communication
- Act as the point of contact between regulators.
- Facilitate communications with data subjects regarding the use of their data, their rights to have their personal data erased, and the measures that Cognizant has implemented to protect their personal data.
- Handle queries, complaints, and other communication on request by the controller, vendors, customers, and other person(s).
JOB REQUIREMENTS
Formal Education and Certifications
- University degree in computer science, computer privacy/law, or computer engineering, and/or equivalent work experience in privacy law, auditing, or related.
- Certifications in privacy, such as Certified Information Privacy Professional (CIPP/E, CIPP/US, or CIPP/C), Certified Information Privacy Manager (CIPM), or similar.
- Industry Certifications such as a Certified Information Systems Security Professional (CISSP) would be an asset.
Knowledge and Experience
- Proven expert knowledge of data protection law and practices
- Strong knowledge of privacy laws, security frameworks and compliance regulations globally (i.e. GDPR, NIST 800, ISO/IEC 27002, HI {AA, PCI, SOX, HITRUST)
- Experience interpreting complicated and/or ambiguous regulatory requirements into understandable and actionable requirements for the organization and staff.
- Deep understanding of encryption methods across applications and supporting application infrastructure (i.e. databases).
- Knowledge of encryption technologies across private and public cloud as well as common vendors who provide encryption, tokenization and/or data protection solutions.
- Direct experience with building,and leading a global data protection discipline and team from the ground up.
- Expertise with encryption SDK architectures and implementation of such SDK’s within applications.
- Familiarity with common encryption algorithms and key management protocols and practice
- Experience providing guidance on privacy and security risk assessments, countermeasures, and data protection impact assessments.
- Well versed in the discipline of Identity & Access Management with specific expertise focused on access controls
- Demonstrated leadership skills, project management experience, and delegation skills, while working with a diverse set of stakeholders and varied projects.
- Experience working with board-level executives and other experienced personnel who may or may not understand the complexities of data protection.
- Experience in developing legal and technical training, as well as awareness distributing material, to ensure staff and data subjects are aware of their rights and responsibilities.
- Demonstrated diplomatic and negotiation skills to deal with DPAs and other regulators.
- Experience implementing and managing compliance tools.
- Strong understanding of computer systems, databases, and how personal data is stored and processed.
- Excellent understanding of Cognizant’s goals and objectives.
#LI-CTSAPAC
Ce que nous offrons
- La possibilité d’avoir une carrière avec un impact. Ici, vous avez la possibilité de partager vos idées transformatrices pour aider notre entreprise et nos clients à améliorer le quotidien de tous.
- Prenez votre carrière en main grâce à notre écosystème d'apprentissage et de développement. Et lorsque vos ambitions changent ou que nous vous offrons de nouvelles occasions, nous vous aidons à pivoter en vous proposant des formations et des conseils pour trouver des postes qui pourraient mieux vous convenir.
- L’occasion de s'épanouir au sein d’une communauté diversifiée. Nous célébrons les expériences et perspectives d’autrui et encourageons un sentiment d'appartenance à travers nos groupes d'affinité et nos initiatives en matière de diversité et d'inclusion.
- Rémunération compétitive qui comprend un salaire concurrentiel et une pension avec des contributions équivalentes.
- Des prestations de soins de santé et financières flexibles pour vous soutenir, ainsi que vos personnes à charge admissibles, dès le premier jour au travail.
- Une vraie conciliation travail-vie personnelle. Nous offrons des vacances, des modalités de travail flexibles, des occasions de bénévolat, des événements sociaux et bien d’autres afin que vous puissiez être au mieux.
À propos de nous
Cognizant est l’un des leaders mondiaux des services professionnels. Nous transformons les modèles commerciaux, opérationnels et technologiques de nos clients pour les adapter à l’ère numérique. Notre approche consultative, basée sur une connaissance sectorielle, aide nos clients à concevoir, développer et gérer des entreprises plus innovantes et plus efficaces. Basée aux États-Unis, Cognizant (membre du NASDAQ-100 et l’un des meilleurs employeurs du monde en 2024 selon Forbes) figure régulièrement parmi les entreprises les plus admirées au monde. Découvrez comment Cognizant aide ses clients à garder une longueur d’avance grâce au numérique sur le site www.cognizant.com.
Renseignments suppplémentaires sur l'emploi
Cognizant est un employeur souscrivant au principe de l’égalité d’accès à l’emploi. Votre candidature et votre dossier ne seront pas examinés en fonction de la race, de la couleur, du sexe, de la religion, des croyances, de l'orientation sexuelle, de l'identité de genre, de l'origine nationale, du handicap, de l'information génétique, de la grossesse, du statut d'ancien combattant ou de toute autre caractéristique protégée telle que décrite par les lois fédérales, provinciales ou locales.
Si vous avez un handicap qui nécessite un aménagement raisonnable pour rechercher une offre d'emploi ou poser une candidature, envoyiez un courriel à [email protected] avec votre demande et vos coordonnées.
Bien que notre système vous permette de postuler dans n'importe quelle langue, les langues requises pour ce poste et le niveau de compétence varient. Une connaissance de base de l'anglais est nécessaire pour les communications internes à l'échelle de l'entreprise. De plus, pour les postes situés au Québec, une maîtrise de l’anglais professionnel est requise afin de communiquer avec nos clients à travers le monde.