Data Protection Officer, Vietnam

Job Description
Are You Ready to Make It Happen at Mondelēz International?
Join our Mission to Lead the Future of Snacking. Make It Matter.
Mondelez International is looking to recruit a Data Protection Officer ("DPO") to meet its obligations under Vietnam's Personal Data Protection regulations. The statutory DPO will monitor local compliance and data practices internally to ensure the business and its functions comply with the applicable privacy requirements in Vietnam. The DPO will be responsible for staff training, data protection impact and transfer assessments, government privacy filings, internal audits and any other requirements for the official DPO position as mandated by local privacy law. The DPO will also serve as the primary contact for the local supervisory authorities and individuals whose data is processed by the local entity.
How you will contribute
Essential Duties and Responsibilities
Reporting to the AMEA Region Data Privacy Lead, you will work closely with the Compliance, Legal, People Team and Mondelez Digital Services ("MDS") functions to develop and monitor policies and standards applicable to the business and in compliance with the local regulation. Duties will include:

• Implementing measures and a privacy governance framework to manage and protect personal information in compliance with the local regulation, including developing templates for data collection, assisting with data mapping, and vendor management reviews.
• Working with key internal stakeholders in the review of projects and related data to ensure compliance with local data privacy laws, and where necessary, complete and advise on privacy impact and cross-border data transfer assessments.
• Serving as the primary point of contact, responsible person and liaison for Vietnam Supervisory Authority on all data protection-related matters which are required under the local data protection laws of that country, including being responsible for managing and coordinating regulatory filings, data incident responses, complaints and privacy compliance reviews.
• Serving as the primary point of contact for privacy queries in the local business unit but working alongside local legal counsel on the execution and drafting of any required documentation.
• Reviewing vendor contracts and consents needed to implement projects in partnership with the Procurement, local Legal and MDS, and ensuring filing requirements with local regulators are achieved.
• Monitoring changes to local privacy laws and making recommendations to the AMEA Data Privacy Lead and Data Privacy COE.
• Working with the AMEA Data Privacy Lead and Vietnam BU Counsel to understand localization requirements to set local standards, and review local policies and procedures and make sure local regulatory requirements are met.
• Developing and delivering privacy training to various local business functions.
• Developing strategies and initiatives to ensure engagement with key internal and external stakeholders.
• Collaborating with the MDS to raise employee awareness of data privacy and security issues, and providing training on the subject matter.
• Collaborating with MDS to maintain records of all data assets and exports, and maintaining a data security incident management plan to ensure timely remediation of incidents, including impact assessments, security breach response, complaints, claims or notifications, and responding to subject access requests (SARs).
• Oversight of the protection data privacy. Comprehensively coordinate with MDS and relevant functions/person in charge within local organization and region in order to ensure personal information security.

What you will bring

• Minimum 5 Years of experience within a compliance, legal, audit, privacy and/or risk function is required.
• Minimum 5 Years of experience within a compliance, legal, audit, privacy and/or risk function is required.
• Experience in Vietnam data privacy laws, or any jurisdictions within Southest Asia, and ideally practical experience dealing with local privacy authorities, local data privacy office filings and regulatory issues is preferred.
• Strong knowledge of Vietnam data privacy and data protection regulation, and familiarity with local regulatory filing requirements in market
• Must be fluent both written and spoken in English and Vietnamese.
• Sufficient knowledge of information technology and data management systems is strongly preferred.
• Well-developed and professional interpersonal skills; ability to interact effectively with people at all organizational levels within Mondelez.
• Excellent writing and presentation skills.
• Strong change and project management skills, including the ability to manage time well, prioritize effectively, and handle multiple deadlines.
• Detail-oriented approach needed to recommend and implement strategic improvements on a range of data privacy and data protection issues.
• Ability to handle confidential and sensitive information with the appropriate discretion.
  tions and preparing risk analyses

Number of Openings Available
1
No Relocation support available
Business Unit Summary
Headquartered in Singapore, Mondelēz International's Asia, Middle East and Africa (AMEA) region is comprised of six business units, has more than 21,000 employees and operates in more than 27 countries including Australia, China, Indonesia, Ghana, India, Japan, Malaysia, New Zealand, Nigeria, Philippines, Saudi Arabia, South Africa, Thailand, United Arab Emirates and Vietnam. Seventy-six nationalities work across a network of more than 35 manufacturing plants, three global research and development technical centers and in offices stretching from Auckland, New Zealand to Casablanca, Morocco. Mondelēz International in the AMEA region is the proud maker of global and local iconic brands such as Oreo and belVita biscuits, Kinh Do mooncakes, Cadbury, Cadbury Dairy Milk and Milka chocolate, Halls candy, Stride gum, Tang powdered beverage and Philadelphia cheese. We are also proud to be named a Top Employer in many of our markets.
Mondelēz International is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation or preference, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law.
Job Type
Regular
Business Integrity & Security Governance
Legal