Job Openings Data Protection Executive

About the job Data Protection Executive

Data Protection Executive

The Data Protection Executive will support the Banks compliance with the Personal Data Protection Act (PDPA) and regulatory requirements issued by Bank Negara Malaysia. The role assists in implementing data protection policies, monitoring compliance controls, managing documentation, and supporting audits and privacy-related initiatives across the organization.

Responsibilities

  • Assist in ensuring compliance with PDPA and relevant guidelines issued by Bank Negara Malaysia including Risk Management in Technology (RMiT) and Management of Customer Information requirements.
  • Support the development, review, and maintenance of data protection policies, procedures, and governance documentation.
  • Maintain records of processing activities, data inventories, and assist in data classification and lifecycle management exercises.
  • Assist in conducting Privacy Impact Assessments for new products, systems, and business initiatives.
  • Support investigation and documentation of data privacy incidents, ensuring timely reporting and corrective action tracking.
  • Prepare documentation for internal audits, regulatory reviews, and compliance assessments; track remediation actions to closure.
  • Work closely with IT, Risk, Compliance, HR, and Business Units to embed data protection controls into operational processes.
  • Coordinate and support data protection awareness programs, employee training sessions, and communications.

Requirements

  • Bachelors degree in Law, Risk Management, Information Security, IT, Business Administration, or related discipline.
  • 2–5 years of experience in data protection, compliance, IT governance, risk, or related roles (banking/financial services preferred).
  • Basic understanding of PDPA and regulatory expectations from Bank Negara Malaysia; familiarity with RMiT is an advantage.
  • Experience maintaining compliance registers, risk logs, and regulatory documentation.

  • Strong analytical and problem-solving abilities with attention to detail

  • Good written and verbal communication skills with the ability to coordinate across departments.
  • Understanding of data lifecycle, information security principles, and privacy risk management concepts.
  • CIPP, CIPM, ISO 27001, or other data governance/privacy-related certifications are a plus.

Or refer someone