Job Openings Data Information Protection Officer

About the job Data Information Protection Officer

All qualified candidates will be given fair consideration. Per GDPR, any CV or personal information you submit will be used strictly for recruitment. Your data will be processed based on legitimate interest, securely stored, and not shared outside the recruitment process.


About The Company

They are a consulting firm specializing in digital transformation, IT strategy, and regulatory compliance across Southeast Asia. With a dynamic international environment, they deliver tech-enabled transformation projects that drive operational excellence and long-term value for their clients. Consultants are deployed into high-impact projects where their expertise shapes business strategy, strengthens governance, and accelerates innovation.


Opportunity Details

  • Working Location: Ho Chi Minh City, Vietnam

  • Working Time: Full-time, standard office hours with project-based flexibility

  • Employment Type: Full-time

  • Compensation: Competitive, aligned with experience and qualifications

  • Benefits: According to the Labor Law

  • Reporting Line: Member of the Security Team; reporting structure confirmed upon project assignment

  • Team Management: No direct reports initially; works cross-functionally with legal, compliance, governance, IT, and product teams


Role Purpose

The Data Information Protection Officer safeguards sensitive data assets across the organization and its client projects. This role designs and oversees Data Loss Prevention (DLP) strategies, ensuring compliance with global and local data protection regulations. By integrating security and privacy into their operations, teams can innovate confidently, knowing that robust policies, controls, and governance safeguard information.


Main Objectives

  • Maintain 100% compliance with applicable data protection regulations across assigned projects.

  • Ensure all privacy policies and controls are fully implemented and functioning within agreed timelines.

  • Identify and close critical data security gaps within the first 6 months of deployment.


Responsibilities

  • Act as the primary point of contact for data security and privacy matters.

  • Develop, implement, and maintain data protection policies, standards, and procedures.

  • Design and guide the deployment of compliant processes in line with GDPR, HIPAA, CCPA, and other applicable regulations.

  • Embed Privacy by Design principles into product and process development from inception.

  • Collaborate with product teams to integrate privacy features into new data use cases.

  • Work with internal privacy program managers, legal, compliance, governance, IT, and operations teams.

  • Monitor data access and usage, investigating and preventing unauthorized activities.

  • Lead response efforts for data breaches and information security incidents.

  • Deliver training and awareness sessions on data protection best practices.

  • Stay current on evolving data protection laws, regulations, and industry standards.

  • Prepare documentation and reports for audits and regulatory submissions.


Candidate Profile

Education & Qualifications

  • Bachelor’s degree in Information Technology, Cybersecurity, or a related field.

  • Certifications such as CIPP, CIPM, CISSP, or CISM are a strong nice-to-have.

Professional Experience

  • Proven experience in data protection, information security, or privacy-focused roles.

  • Track record in designing and implementing DLP strategies and controls.

  • Experience working with cross-functional teams on data governance initiatives.

Technical Skills

  • Strong understanding of data protection regulations (GDPR, CCPA, HIPAA).

  • Knowledge of cybersecurity frameworks and best practices.

Behavioral Competencies

  • Strong analytical and problem-solving skills.

  • Clear and confident communicator, able to influence stakeholders at all levels.

  • Collaborative approach with the ability to work across multiple teams and geographies.

Knowledge Domain

  • Regulatory compliance in data protection and privacy.

  • Data security risk assessment and mitigation.

  • Privacy-enhancing technologies and frameworks (nice-to-have).


Application Process

To complete your application, Cotalent will email you at the address listed in your CV with a tailored questionnaire designed to enhance your chances of reaching the interview stage. Please check your inbox regularly, including your spam or junk folder, as completing the questionnaire is necessary to finalize your application and move on to the next phase.