Type de consultant: Individual Consultant

Lieu de la mission: Abidjan, Côte d'Ivoire

Date de publication: 17-mar-2025

Date de clôture: 31-mar-2025

Domaine: General Services & Procurement,

Following is the indicative list of activities envisaged to meet the scope of work. However, the detailed scope of work and/or list of activities would be finalized at the time of issue of RFP.

• Design, implement, and maintain the organization’s Data Protection & Privacy program.
• Determines data protection & privacy compliance requirements by evaluating business strategies and requirements.
• Lead the implementation of Privacy Information Management System (PIMS) across the organization.
• Ensure that the organization’s data governance framework aligns with data protection and international compliance requirements and lead efforts to implement and maintain data governance technologies.
• Ensure privacy governance, privacy architecture and data lifecycle management practices are implemented using appropriate technology solutions.
• Lead the efforts to implement and maintain technical data protection technologies such as data discovery & classification, Data Loss Prevention, data protection impact assessments, database encryption, encryption, and key management.
• Provide technical expertise and direction on matters of data sovereignty, cross-border data transfers, data retention and inter-continental data sharing agreements to appropriate stakeholders.
• Promote privacy by design and conduct privacy impact assessments (PIA) to meet compliance specifications as the business processes sensitive or personal data.
• Measure and report on business operations compliance with various Data Protection Acts, especially with General Data Protection Regulation (GDPR).
• Design and enforce privacy risk mitigation cases and highlight any high-risk practices and activities to Senior Management.
• Lead the efforts to drive industry data protection standards, guidelines and regulatory compliance requirements related to information protection and cloud computing such as ISO 27701, Cloud Security Alliance (CSA), NIST 800-53, SSAE16 and SABSA etc.
• Participate in the Project evaluation meeting and project update meeting to ensure that