ICG APAC Data Privacy Lead ICG APAC Data Privacy Lead …

in Hong Kong
Permanent, Full time
Be the first to apply
in Hong Kong
Permanent, Full time
Be the first to apply
ICG APAC Data Privacy Lead
Function background/context:

The ICG APAC Data Privacy Lead will directly support the ICG Global Head of Data Privacy, liaising between the APAC Regional Chief Privacy Office within ICRM and the entirety of the ICG business. This role is the first line of defence for all ICG APAC-related data privacy matters.

Job Purpose:
The ICG APAC Data Privacy Lead will work to ensure that the ICG business is compliant with all data protection laws, regulations, policies, standards and processes in the APAC region.

In particular, the ICG APAC Data Privacy Lead will provide oversight to the APAC Data Privacy Operating Model, ensuring alignment with the Global ICG Data Privacy Operating Model. This role will also support the implementation of, and ongoing compliance with, major privacy regulations across the region, including the New Zealand Privacy Act (NZPA), the Thailand Personal Data Protection Act (PDPA), and the Singapore Personal Data Protection Act (PDPC).

Key Responsibilities:
A programme manager with operational risk experience whose responsibilities will include, but are not limited to:

  • Supporting ICG in its ongoing compliance with the Citi Privacy and Bank Customer Confidentiality Policy

  • Acting as the ICG APAC Data Privacy primary point of contact, representing ICG at privacy-related forums across the region

  • Managing the ICG APAC Data Privacy Operating Model, providing oversight to the regional In-Business Privacy Officers to ensure cross-business alignment and to identify operational synergies

  • Collaborating with APAC Data Privacy Legal and the APAC Privacy Office to understand regulatory requirements and to articulate these as actionable tasks to key stakeholders

  • Leading the implementation of APAC data privacy regulations throughout the end-to-end programme lifecycle

  • Building and maintaining programme plans, internal communication plans, and Risks, Issues, Decisions, and Actions (RIDA) Logs to actively track programme progress, to drive stakeholder engagement, and to mitigate risks and issues

  • Facilitating programme reviews, proactively engaging stakeholders and collaborating with partners across the enterprise to ensure successful programme delivery

  • Reporting, identifying and validating metrics to measure compliance, monitor risks and track mitigating actions

  • Monitoring the development and execution of privacy Corrective Actions Plans (CAPs) to resolve identified control deficiencies and to achieve process improvement opportunities

  • Ensuring that privacy requirements are incorporated in the Regulatory Control Matrix (RCM) and Manager's Control Assessment (MCA) for ICG where applicable

  • Supporting initiative owners in conducting Privacy Impact Assessments (PIAs), reviewing new or modified initiatives, identifying privacy impacts, and recommending controls to mitigate any potential privacy risks

  • Ensuring that all programme documentation and artefacts are completed, organized, and easily accessibly in order to meet internal audit requirements and PMO Best Practices

Expanded reach of Privacy across the Globe:

As a result of the GDPR, the expectation is that most countries will follow a similar path, instituting stringent privacy requirements in their respective jurisdictions. This role will ultimately play a part in implementing a consistent privacy philosophy and approach across all of Citi's APAC region, business and functions.

Knowledge / Experience:
A programme manager with experience leading major regulatory implementations concurrently throughout the programme lifecycle. Experience in operational risk management is also required. Experience in data privacy is preferred.
Significant experience of demonstrated delivery of large-scale programmes and active risk management within a complex financial services organization.

PMP and IAPP / CIPM certifications are an advantage.

College/University education is preferred, but an exceptional record of accomplishments will be deemed equally important.

Exceptional candidates who do not meet these criteria may be considered provided they have the necessary skills and experience.

  • Strong interpersonal and team-building skills
  • Heightened attention to detail
  • Highly organised, efficient, and able to multi-task
  • Strategic and goal-oriented
  • Self-starter, comfortable leading high-profile initiatives with minimal oversight
  • Motivated, enthusiastic, and positive
  • Strong written and oral communication skills
  • Comfortable making educated business judgements using analytical skill
  • Committed to co-operative and collaborative working

Leadership Standards / Competencies:
Drives Value for Clients
Encourages others to provide economic value and positive social impact for clients and other stakeholders, drives innovation
Delivers Results
Sets stretch goals, provides direction, drives performance Works as a Partner
Builds stakeholder relationships, positively influences others, drives diversity
Champions Progress
Champions a culture of high standards, challenges the status quo, reassures during change
Lives Our Values
Ensures responsible outcomes whilst driving performance and balancing short and long-term risks
Develops our People
Promotes a meritocracy, encourages self-development, celebrates initiative and courage

Development Value: The successful candidate will have the opportunity to work across the whole of ICG and to collaborate with Citi Global Functions including Independent Compliance Risk Management and Legal across all jurisdictions, undertaking a broad variety of tasks and responsibilities.

Job Family Group:
Risk Management
Job Family:
Business Risk & Controls
Time Type:

Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi") invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi .

View the " EEO is the Law " poster. View the EEO is the Law Supplement .
View the EEO Policy Statement .
View the Pay Transparency Posting
Citi logo
More Jobs Like This
See more jobs