Data Privacy Specialist

Department: IT Team
Team: Data Privacy Team
Location: London with hybrid working
Position type: Permanent
 

What the hiring manager says

"Are you ready to make a significant impact and help shape the future of data privacy at GSMA? We’re looking for a passionate Data Privacy Specialist to join our small, evolving, and maturing team. In this role, you’ll have the unique opportunity to build, evolve, and mature GSMA’s data privacy function, playing a pivotal role in improving our privacy operations and practices across the organisation. Under my leadership, you’ll benefit from mentorship, autonomy, and the chance to contribute ideas that will directly influence how we protect and manage data. This is more than just a role—it’s an opportunity to grow your expertise, drive meaningful change, and help elevate GSMA’s data privacy maturity and posture to meet the challenges of an increasingly complex regulatory landscape. If you’re looking for a role where you can grow with the team and leave a lasting legacy, this is your opportunity."
Andy Scott, Head of Information & Cyber Security

About the Team

The GSMA Data Privacy team is responsible for managing and enhancing GSMA’s operational data privacy capabilities to ensure compliance with regulations and the protection of personal and business sensitive data. This includes managing data privacy incidents, implementing and maintaining privacy frameworks, conducting data protection impact assessments, and monitoring privacy risks. By driving operational excellence in data privacy, the team ensures that privacy obligations are met efficiently while fostering trust with stakeholders and supporting GSMA's broader strategic objectives.

About the Role

As a Data Privacy Specialist, your core accountabilities encompass a wide range of data privacy and protection responsibilities. You will be tasked with triaging and supporting Data Privacy incidents, including discovery and recovery processes, as well as handling and coordinating Data Subject Access Requests (DSARs). Your role involves managing inquiries related to data privacy practices and overseeing the Data Privacy mailbox. You will play a crucial part in supporting and conducting Data Privacy training, education, and awareness initiatives. Additionally, you will be responsible for maintaining various Data Privacy activities, including Records of Processing Activities (RoPA), Data Protection Impact Assessments (DPIA), data retention practices, policy management, and supplier assurance. A key aspect of your role will be to maintain and update the OneTrust platform, ensuring it aligns with the latest compliance requirements and best practices. You will conduct Data Privacy Risk Assessments on suppliers, systems, and services, and represent Data Privacy in all operational activities. Keeping documentation and records up-to-date, identifying trends, and conducting analysis are also essential parts of your role. Finally, you will be expected to produce reports that measure Data Privacy metrics, practices, and operations, providing valuable insights for the organisation.

Success in this role will be measured by your ability to proactively prevent data privacy breaches and maintain a robust compliance framework that minimises organisational risk. You will be considered highly effective if you can demonstrate continuous improvement in data protection processes, maintain zero significant compliance violations, and develop operational improvement that enhance GSMA's data privacy maturity and posture.

About You

• You will have a solid foundation in data privacy principles and regulations, particularly GDPR, CCPA, and other relevant privacy laws. Your knowledge should be demonstrable through practical application or recognised certifications in the field. 

• You will possess a keen eye for detail and the ability to interpret regulatory requirements, translating them into actionable policies and procedures.

• You will have demonstratable experience with data privacy tools and platforms, particularly OneTrust, and be adept at using these systems to manage privacy operations efficiently. 

• Your technical skills should include proficiency in data mapping, risk assessments, and privacy impact analyses. 

• Additionally, you will be comfortable working with various data formats and have a basic understanding of data security principles.

• You will exhibit strong analytical and problem-solving skills, with the ability to identify potential privacy risks and propose practical solutions. 

• Your communication skills should be excellent, as you'll be expected to articulate privacy concepts to both technical and non-technical audiences.

• You will also demonstrate a proactive approach to learning, staying current with evolving privacy regulations and industry best practices.

• You will show adaptability and the capacity to work effectively in a fast-paced environment, managing multiple priorities and deadlines. 

• Your organisational skills should be excellent, with the ability to maintain meticulous records and produce clear, concise reports. 

• You will also possess a collaborative mindset, ready to work across different teams and departments to foster a culture of privacy awareness throughout the organisation.

Contract type

Worker type

What We Offer

Working at the GSMA offers you unparalleled access to the mobile industry. We offer a chance to truly shape the direction of mobile, whatever your role. By joining the GSMA, you will be exposed to a fast-paced rapidly evolving environment, working on global solutions, genuinely fascinating and industry-changing projects and a stimulating and dynamic environment designed to enable you to flourish.

In addition to architect-designed offices and competitive compensation, our benefits include fantastic learning & development opportunities, generous holiday allowances, four additional days off for professional development and many others.

To learn more about the GSMA, visit our career site, our LinkedIn page and our Twitter page.

Being You at the GSMA

We care deeply about diversity, equity and inclusivity and aspire to be the best at it. Your well-being and work/life balance is important, so flexi-time and remote working is available to all staff. We're keen to ensure everyone is equal, represented and connected so we particularly encourage applications from all demographics. The sucess of the GSMA year on year will continue to be contributed by people from all walks of life.

GSMA Values

Our values not only drive our culture – they shape how we work and interact inside and outside our global organisation.

Passionately driven

We approach everything we do with unparalleled capability, tenacity and commitment, knowing that the challenging scale, pace and complexity of our work is what leads to its world-changing impact.

Insightful leaders

We continually develop and engage our expertise, insight and creativity so that we’re always ready to respond to the changing landscape with authority, agility and nuance.

Stronger together

We lean on each other so the industry can lean on us, embracing our diversity by actively seeking out perspectives and skill sets beyond our own, fuelling each other’s successes and constantly asking how we can help.

Underpinning our values is our collective mindset to show up purposefully as good human beings every day, in every situation. When we’re at our best – we are collaborative, considerate and compassionate to others, and we create a safe space for one another to thrive, assuming positive intent in our colleagues. And if we aren’t at our best and the pressure is on – we feel free to be ourselves but still remain curious, lean into the tough stuff and we are always respectful to others and accountable for the part we play.