Data Management Officer (Data Governance, Records Management and Data Privacy) at Absa

Job Summary

The mandate of the Data Management Officer is to execute Data Governance and Records Management requirements, embedment thereof, and Data Privacy support.

• Ensure Data Governance, Records Management and Data Privacy controls and applicable regulatory requirements (Policy, Standards, Frameworks, Processes, and Procedures) are defined, applied implemented and adhered to.  Provide Subject Matter Expertise and support to the Data Portfolio Specialist and Relationship Banking Business.

Job Description

Accountability:  Data Governance Embedment (People, Process & Technology) (15%)

• The objective of Data Governance Support is to assist with the establishment and implementation of the Data and Records Management Policy, Standards, Processes and Guidelines.  Monitor progress on embedment of the controls for the Business Units / Areas.

The job holder will be responsible to:

• Assist in defining a practical and comprehensive Data Governance approach and strategy
• Be an active and influential member of Working Groups and Forums
• Provide advice and guidance on Data Governance requirements to Business
• Support Group Level and / or other Business Units on Data Governance related initiatives
• Obtain a thorough understanding of Governance challenges and assist to define control measures
• Develop and maintain good relationships with Stakeholders, Representatives, Data Owners and Data Stewards through ongoing collaboration
• Develop a good understanding of Business strategies and initiatives that has an impact on Data Governance through discussion and interaction with Stakeholders
• Support Business Units / Areas on all aspects of Data Management by being knowledgeable on Data Governance and providing guidance on implementation of requirements
• Assist to drive the implementation of the necessary toolsets to enable implementation of the Data Governance requirements
• Understand current issues experienced in Business by reviewing incidents and audit findings related to Data Governance
• Develop and maintain good relationships with Business and Technology Stakeholders through ongoing interaction
• Assist to establish the supporting Data Management Standards, Frameworks, Processes and Guidelines
• Implement and govern the Policy, Standards and Process
• Assist to implement the Road to Satisfactory (RTS) on Policy controls
• Assist with Dispensation, Waivers and Breaches (DWB) process
• Monitor progress on the embedment of the Policy and Standards
• Escalate non-compliance to controls

Accountability:  Records Management Embedment (People, Process & Technology) (30%)

• Adhere and contribute to the development of standard operating procedures and guidelines   within the area of accountability
• Report on transactional and process activities to enable timely and effective decision-making
• Provide advice and support for value-added process improvements, initiatives and services
• Identify and contribute to the development of solutions to improve operational service and quality and escalate unresolved issues to management and process owners
• Identify any weakness in Information Risk Management of data and suggest solutions in closing gaps and Identify and communicate the threat landscape of the Business and ensure that the Business is in a position to make informed decisions relating to information management
• Work closely with all stakeholders to build and maintain effective relationships between the Information Risk function and local Business areas
• Understand and implement Policy controls, whilst ensuring to create local requirements in Business.
• Monitor compliance of Policy and Standards and drive the closure of gaps and communicate Risk based Policies and minimum Standards
• Ensure completion and coordination of DWB’s
• Use Risk Management Principles to safeguard the confidentiality, integrity and availability of information in accordance with the Bank’s Operating Model and Risk appetite
• Ensure alignment of new projects to the Information Risk Framework.
• Review and use Risk and Control assessments / critical process assessments, key risk scenarios, risk events, audit findings and key risk indicators information to assess the Information Risk profile of the Business Unit
• In conjunction with Business and Group Technology, ensure that the appropriate Logical Access Management (LAM) Standards are in place for all relevant in-scope applications and infrastructure applications.
• Implement and embed the Record Management process and governance structure within the Business
• Ensure that the data classification and Records Management Standards are available and communicated to Business
• Ensure that classification is included as part of the Records Management process, and that the classification is included in the Business List of Records (BLOR)
• Ensure that mandatory training is rolled out to the Business, manage the timing of the training roll-out and track completion of training by relevant pares
• Implement and embed the End User Computing (EUC) process (EUDA-End User Development Application), reporting and governance structure within the business
• Implement and embed the data quality and reporting processes and governance structure within the cluster - Business is responsible for implementation of controls
• As required, contribute to the development strategies, by providing a view on potential improvements for services and enhanced Risk mitigation.
• Analyse the effectiveness of existing Risk Management processes (and reporting systems / mechanisms ⁄ tools) and supported environments and implement changes when necessary
• Identify and escalate Key Information Risks
• Compile relevant IRM reports, specific to the Subject Matter Expert (SME) area and general reporting.  This could include any Key Risk reporting (Principle Risk) required, and Business or Group specific reporting requirements

 Accountability:  Data Privacy Support (People, Process & Technology) (5%)

• Ensure to align to Data Privacy requirements and support the RBB (RB) Compliance Officer on reporting

Accountability:  Policies, Standards and Process (10%)

• Assist to drive, implement and monitor Data Governance, Records Management and Data Privacy Standards and Processes covering all aspects and requirements
• Assist to review, update, enhance (where appropriate) Standards and Processes

Accountability:  Monitoring (10%)

• Be an active member of Working Groups and Forums.
• Assist to define and implement a Data Governance, Records Management and Data Privacy reporting and tracking system / mechanism for issues
• Receive and consider significant / serious untoward incidents / issues relating to Data Governance, Records Management and Data Privacy and drive remediation activities with the relevant Stakeholders
• Implement processes to ensure that the Head of Data Management is informed of all serious and untoward Data Management related incidents / issues
• Escalate unresolved and overdue issues to the relevant Stakeholders and Committees
• Assist to define and receive reports from Stakeholders and Forums to enable the monitoring of Data Governance, Records Management and Data Privacy progress
• Monitor and track the relevant Stakeholders in the delivery of the agreed action plans and escalate non-performance and non-delivery to the appropriate Forums / Structures
• Assess and receive assurances from Stakeholders that they are fully compliant with all the requirements of Data Governance, Records Management and Data Privacy
• Identify risks associated with Data Governance, Records Management and Data Privacy and address and / or report them to the appropriate Risk Committees or Forums

Accountability:  Communication, Training, Awareness and Change Management (10%)

• Liaise and work closely with internal Committees, Forums, Programmes and Groups to promote Data Management
• Collaborate and align with other Committees / Forums on Data Management issues to ensure that Data Management is integrated into other initiatives
• Ensure that Relationship Banking’s approach to Data Governance, Records Management and Data Privacy is communicated to the relevant Stakeholders
• Assist to develop and implement a communications programme to raise awareness within Relationship Banking about all aspects of Data Management
• Implement related training and ensure that it is taken up by relevant staff as necessary to support their roles
• Cater for specific in-Cluster training needs by defining generic material for awareness and training as well as specific training material for Data Management
• Create and maintain a central communication portal for Data Management and ensure knowledge content is fully up to date

Accountability:  Technology (5%)

• Assist to drive the implementation of the necessary toolsets to enable implementation of Data Management requirements
• Ensure alignment and assist to facilitate collaboration between IT and business on Data Management requirements, activities and issues
• Ensure that IT initiatives / projects align with the long term vision and key Business and regulatory objectives of Data Management
• Ensure that Data Management Standards and Principles are followed from a Business and IT perspective affecting Relationship Banking
• Ensure that all Data Management functions performed by IT are executed in accordance with Standards and Processes
• Promote the use of Data Management technologies by educating Stakeholders on the tools and benefits thereof as when required

Accountability:  Self Development and Growth (5%)

• Encourage frequent knowledge sharing between team members
• Grow own knowledge and understanding by staying abreast of knowledge and skills relevant to the level and area of work, as well as actively seeking to attain those required for the next level of work.
• Ensure that training needs are identified and included in development plans.

Accountability:  Reporting (10%)

• Effectively manage Data Management risks and actions required and report control deficiencies to the Data Management Council.  (This should include reporting on control issues, control requirements, internal and external audit observations).
• Ensure the timely completion of operational reporting by submitting in accordance with requirements
• Escalate unresolved issues to the relevant Data Management Stakeholders and Committees by planning, monitoring and reporting back on progress of the Governance, Records and Privacy initiatives

Education

Bachelors Degree and Professional Qualifications: Business, Commerce and Management Studies (Required)

• Absa Bank Limited is an equal opportunity, affirmative action employer. In compliance with the Employment Equity Act 55 of 1998, preference will be given to suitable candidates from designated groups whose appointments will contribute towards achievement of equitable demographic representation of our workforce profile and add to the diversity of the Bank.
• Absa Bank Limited reserves the right not to make an appointment to the post as advertised