Skills: IT - Analysis & Management, IT - Programming & Database
Experience: 15 + Years
Education: Bachelors/3-5 yr Degree
INFORMATION & COMMUNICATION TECHNOLOGY IT SECURITY & GOVERNANCE
HEAD, INFORMATION PROTECTION
Primary Purpose of Job
The objective of this position is to lead and manage the privacy program across QP covering all the required privacy pillars in compliance to local and international privacy laws. Ensure information within QP is protected and used appropriately according to identified risks and regulatory controls. Work independently and as part of a cross functional team to drive the continuous improvement of the information protection and privacy function.
• Bachelor's in computer science or a related engineering field • Additional information security certifications are desirable such as CISSP, ISO27001 LA.
Experience & Skills
• 15+ years of relevant professional experience • Minimum 5 years in a managerial/supervisory role position. • Experience with large ICS & ICT environments in the Energy sector, preferably in Oil & Gas • General understanding of the information security governance and how different modules interact • Practical knowledge in local and international privacy laws, and their boundary to QP • Knowledgeable in privacy security controls from a technological and administrative aspect, and effective use of each control. • Know how approach to identify privacy stakeholders in a large environment, conduct and populate ROPA (Records of processing activities) with the ability to explain/present the objective in a simple non-technical language • Ability to conduct full cycle PIA (Privacy impact assessments) and LIA (Legitimate interest assessments) • Ability to evaluate the urgency and severity of privacy risks, and mitigate them with the proper privacy security controls • Make sure that privacy built by design concept is incorporated into processes and technologies through various procedures and frameworks. • Develop and manage the user consent system with the ability to answer users on any question related to privacy • Maintain and manage the PDMS (Privacy data management system) • Lead information classification and protection initiatives within QP, provide advice and recommendations to leadership • Lead regular assessments of information classification, effectiveness of protection controls and use of information. • Participate and serve as the information protection subject matter expert on the information security incident response team • Serve as the primary point of contact for inquiries into rights of individuals with regard to information use and privacy. • Strong project and risk management skills • Excellent written and verbal business communication and presentation skills
Qatar Petroleum is an integrated national oil company (NOC) responsible for the sustainable development of the oil and gas industry in Qatar and beyond.
Qatar Petroleum’s activities encompass the entire spectrum of the oil and gas value chain locally, regionally, and internationally, and include the exploration, refining, production, marketing and sales of oil and gas, liquefied natural gas (LNG), natural gas liquids (NGL), gas to liquids (GTL) products, refined products, petrochemicals, fertilizers, steel and aluminum.
Qatar Petroleum is committed to contribute to a better future by meeting today’s economic needs, while safeguarding our environment and resources for generations to come. Thriving on innovation and excellence, Qatar Petroleum is bound to the highest levels of sustainable human, socio-economic, and environmental development in Qatar and beyond.
For more information, please visit www.qp.com.qa