Engenheiro de Segurança do Trabalho na Capco, consultoria global no setor de serviços financeiros e energia. Foco em segurança ocupacional, operacional e vigilância sanitária.
About the role
- Head of Data Protection & Cybersecurity Risk at FIFA ensuring compliance with data protection laws. Leading strategy while managing risks related to data security and privacy.
Responsibilities
- **These are your key tasks:**
- Lead the development and execution of FIFA´s Data Protection & Cybersecurity Risk strategy in alignment with business objectives.
- Responsible for ensuring global compliance with data protection laws and regulations.
- Develop and implement data protection policies, procedures, and guidelines to safeguard sensitive information.
- Conduct regular risk assessments and audits to identify potential vulnerabilities and areas of non-compliance.
- Legal counselling to internal stakeholders on new projects, systems, or processes to assess and mitigate privacy risks, overseeing the completion of Data Protection Impact Assessments.
- Serve as the primary point of contact for data protection authorities, customers, and employees regarding privacy-related inquiries, complaints, and breaches.
- Establish and maintain effective security governance structures, policies, and procedures to ensure compliance with relevant standards and regulations.
- Identify, assess, and prioritize information security risks, and develop risk mitigation plans to protect the organization's assets and reputation.
- Develop and oversee incident response plans and procedures to promptly detect, respond to, and recover from security incidents and breaches.
- Promote a culture of security awareness and compliance among employees as well as FIFA´s Member Associations through training programs, communication campaigns, and education initiatives regarding data protection best practices and compliance with legal requirements.
- Evaluate, manage relationships and manage contracts with third-party vendors and service providers to ensure that they adhere to appropriate security standards and practices and comply with applicable data protection laws.
Requirements
- **We work hard at FIFA.**We are dedicated, ambitious and innovative.******And we respect our values. Always.****For all roles, we seek talented people with an entrepreneurial spirit and a global mindset.****The specific competencies we require for this position are:
- 10+ years of experience in a similar role.
- In-depth knowledge and experience in Audits, Training & Awareness and Project Management.
- Master degree or similar higher education in Compliance, Law, Technology or related field.
- Professional certifications in the area of Data Protection & Cybersecurity (CIPM, CISSP, CISM, CISA) would be an advantage.
- Strong working knowledge of current IT risks, relevant data protection and cybersecurity related standards (e.g. NIST, COSO, COBIT, ISO27001) and tools.
- Client oriented, efficient and effective.
- Ability to define strategic goals, give clear directions and to lead and empower team members.
- Thorough analytical and problem-solving capabilities.
- Excellent planning, documentation and organizational skills.
- Ability to adapt speech to audience coming from a broad spectrum of disciplines and with various levels of technical knowledge.
- Outstanding communication skills.
- Proficient in Word / PowerPoint / Excel.**Proficiency in Data Protection & Cybersecurity tools is an advantage.
- Fluent in English.
- Proficiency in any other FIFA language (F / ES / GER) is an asset
- Willingness to travel to specific events.
- Readiness for stand-by duties during specific events.
Benefits
- **The biggest benefit of a career at FIFA is the privilege to work for the beautiful game and create something that matters.******Alongside that privilege, we also offer some extra perks and benefits:
- **Health and fitness:** Regular football sessions for all abilities, plus on-site gym.
- **Home office:** Up to two days of home office per week if work permits and home office allowance for all.
- **Language courses:** Offered to all staff to aid personal and professional growth.
- **Continuous learning**: We care about your development and encourage internal mobility, offering a variety of training and education to help achieve it.
- **Pension:** Flexible pension benefits with generous employer contributions.
- **Relocation assistance:** A dedicated team will be on hand to support your relocation.
- **Sustainability:** We support all employees using public transport.
- **Vacation:** Maintain a healthy work/life balance with a generous vacation allowance.
- **Volunteering:** Make an impact beyond your regular role and bond with colleagues by volunteering with one of our partners.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Privacy and Cybersecurity Counsel providing legal advice on privacy laws and cybersecurity regulations for a global financial services firm. Advise on legal frameworks and support compliance initiatives across teams.
Security Guard monitoring premises to prevent theft and violence for Logan Health. Engaging with staff, patients, and visitors while ensuring safety and compliance.
Cybersecurity Associate focusing on identity and access management at PwC. Collaborating on secure access systems and safeguarding sensitive data.
Técnico/a Avanzado de Ciberseguridad en Mapfre gestionando proyectos de seguridad de inversiones. Dirigiendo evaluaciones de riesgos y cumplimiento de normativas de seguridad.
Security Officer providing safety and security for ERIE's employees and physical assets. Responding to emergency situations and enforcing safety protocols in Erie, PA.
Operational Security & Public Safety Manager for East West Railway Company. Leading operational security and public safety strategy for a major railway infrastructure project.
Mid - level to senior associate attorney for privacy litigation in a collaborative environment. Join a team focused on groundbreaking privacy issues for marquee tech and retail clients.
Network Security Engineer supporting network security improvement programmes focused on segmentation and vulnerability management in the public sector. Collaborating with architecture and security teams to implement secure controls.
Cloud Security Engineer focused on enhancing security in a cloud - native fintech platform. Collaborating with teams to integrate security into infrastructure and software development processes.