Data Protection Officer - Armonk
Armonk, NY

Job Description

Data Protection Officer - Armonk

About Swiss Re

The Swiss Re Group is one of the world's leading providers of reinsurance, insurance and other forms of insurance-based risk transfer, working to make the world more resilient. It anticipates and manages risk - from natural catastrophes to climate change, from ageing populations to cybercrime. The aim of the Swiss Re Group is to enable society to thrive and progress, creating new opportunities and solutions for its clients. Headquartered in Zurich, Switzerland, where it was founded in 1863, the Swiss Re Group operates through a network of around 80 offices globally. It is organised into three Business Units, each with a distinct strategy and set of objectives contributing to the Group's overall mission.

The Data Protection Officer is responsible (a) to coordinate and monitor data protection compliance for Swiss Re Corporate Solutions globally and (b) to consult Swiss Re overall on data protection matters in the Americas region. The role is set up to support the Global Data Protection Officer and for strengthening Swiss Re's global data protection compliance program.

This position can be based in Armonk-NY, Kansas City or Toronto.

Overall responsibilities:

* Establishes and coordinates Swiss Re's data protection compliance framework in the Swiss Re Corporate Solutions business units
* Provides guidance on data protection compliance in Swiss Re's Corporate Solutions business with a good understanding of the direct (corporate) insurance business.
* Consults Swiss Re on data protection compliance matters in the Americas region.
* Reports to and supports the Global Data Protection Officer in strengthening Swiss Re's global data protection compliance program.
* Designs, implements and maintains an adequate incident response and data breach notification procedure as required by the business unit and applicable jurisdictions in the region that is in line with Swiss Re Group policies, standards and procedures.
* Monitors and communicates regulatory developments in the region.
* Coordinates and provides guidance, assessments, training, and monitoring of the data protection control environment within the business unit.
* Supports and actively participates in the Data Protection Officer Network.

Requirements:
* Minimum of 5 years professional experience on data protection compliance with a legal, compliance, risk management, audit or consulting background (ideally with a few years having been in the role of a Data Protection Officer).
* Good knowledge of data protection requirements in the Americas, i.e. for the USA and Canada (with additional countries in the region a plus), with detailed knowledge of GLBA, HIPAA, state security and breach notification requirements, or cross-border data transfer requirements being an advantage.
* Ability to assess data protection compliance risks in the direct (corporate) insurance business and to propose and coordinate mitigating measures.
* Ability to analyse data processing activities to make effective recommendations that enables Swiss Re's business.
* CIPP certification or similar being highly desirable
* Good understanding of project management, keen interest in IT being an advantage.
* Gravitas and a high level of independence and integrity.
* Solid English writing, presentation and communication skills, with fluency in Spanish or Portuguese being an advantage.