#NC25MGT0045 - Personal Data Protection Programme Support Services to the NATO Office of the CIO - Closed
Deadline: February 23, 2025
Requester: NATO
Location: Brussels, Belgium
Job type: Contractor
Start date: April 7, 2025
Security clearance: NATO SECRET
SCOPE OF WORK / DUTIES / ROLES
NATO has the flexibility of choosing the best elements of GDPR (EU General Data Protection Regulation) and other personal data protection frameworks while avoiding spending effort on tasks that do not add much data protection value.
The contractor will have a key role in further implementing the PDPP strategy to ensure this, as well as assist with the policy’s implementation at the various NATO Bodies in Europe and North America.
We are looking for a well-rounded professional with excellent project management and communication skills as well as experience in personal data protection/privacy. NATO knowledge would constitute and asset.
The contractor will effectively and efficiently provide the following services:
- Monitor the implementation of the PDP Strategy;
- Conduct a comprehensive gap analysis of existing data protection practices across NATO bodies to identify areas of non-compliance and prioritize remediation efforts;
- Develop a risk-based prioritization framework for PDPP implementation, considering data sensitivity, volume, and potential impact of breaches;
- Maintain and review the PDPP Implementation Supporting Document;
- Create a modular framework for the Supporting Document, allowing for updates and revisions;
- Develop PDPP forms and templates;
- Develop user-friendly guidance and training materials to accompany the forms and templates;
- Assist the development of local directives and customized implementation plans for each NATO body across the NATO Enterprise;
- Write a lessons dentified report with analysis and recommendations. Conduct a post-implementation review to assess the effectiveness of the PDPP;
- Continuously monitoring for both PDPP incidents and new or emerging data protection regulatory changes;
- Develop and maintain a data breach response plan to ensure a swift and coordinated response in the event of a data breach;
- Establish a continuous monitoring and auditing program to assess compliance with the PDPP and identify potential risks.
REQUIRED SKILLS, KNOWLEDGE AND EXPERIENCE
- Must have project management experience. PM certifications (e.g. PRINCE2, PMP) are desirable;
- Must have a university degree. A university degree requiring excellent writing skills (humanities or journalism) is desirable;
- Must have excellent English writing skills and the ability to brief their work in English. o The ability to write and brief well in French is desirable;
- It is desirable that the contractor has experience in Personal Data protection or privacy. A certification in personal data protection management (e.g. CIPP/M) is desirable;
- If a Contractor has experience and certification in GDPR or another privacy law/regulation, it is essential the contractor is able to think outside of that paradigm, as NATO is not implementing GDPR;
- Must have a NATO SECRET security clearance;
- Should have a deep knowledge of the NATO Enterprise and its bodies, along with the relationship between them.
This position is now closed.
We regularly add new positions. We suggest exploring other available opportunities and staying updated by following our LinkedIn page.
If you don’t find any suitable opportunities, you can send us your CV, as an open application. However, we will not submit you to any vacancies without your written consent.