The Information Governance Officer (IGO) provides assurance that the organization's information assets are protected against threats and manages the risk that comes from managing, using, and disposing of information handled by the SCOR Group. The IGO assists with the implementation of actions for Data Privacy and Protection (DPP) compliance, contributes to defining internal standards for information governance and DPP implementation, and ensures data quality learnings from the Data Protection Officer (DPO) are embedded in Operations and IT.
As a leading global reinsurer, SCOR offers its clients a diversified and innovative range of reinsurance and insurance solutions and services to control and manage risk. Applying "The Art & Science of Risk," SCOR uses its industry-recognized expertise and cutting-edge financial solutions to serve its clients and contribute to the welfare and resilience of society in around 160 countries worldwide.
Working at SCOR means engaging with some of the best minds in the industry - actuaries, data scientists, underwriters, risk modelers, engineers, and many others - as we work together to find solutions to pressing challenges facing societies.
As an international company, our common culture is defined by "The SCOR Way." Serving both to build momentum that drives the Group forward and as a compass to guide our actions and choices, The SCOR Way is anchored by five core values, reflecting the input of employees at all levels of the Group. We care about clients, people, and societies. We perform with integrity. We act with courage. We encourage open minds. And we thrive through collaboration.
The Information Governance Officer is responsible for defining the operational standards and rules of the organization to effectively manage information, including risk assessment, records retention and disposal, information sharing, and disclosures of information, within the Group defined frameworks (Group data management and data protection policies, control and third party governance frameworks etc). The IGO conducts data flow mapping/analysis for personal data, coordinates the Data Protection Impact Assessment (DPIA) completion across the organization, and provides support where required. Additionally, the IGO conducts Data Transfer Impact Assessment (DTIA) in coordination with Legal and Procurement, and monitors adherence to the policies and guidelines. The IGO contributes to the onboarding and the monitoring of third parties processing personal and confidential data and to the related contract management in collaboration with the procurement function. The IGO plays an active role in the control and monitoring for the protection of data processed by the SCOR Group.
As Information Governance Officer you:
- Assist with the implementation of actions for Data Privacy and Protection compliance.
- Define the internal operational standards for information management and contribute to implementing data privacy and protection standards such as data classification.
- Define the operational standards and rules of the organization to effectively manage information, including records retention and disposal, information sharing, and disclosures of information.
- Conduct data flow mapping/analysis for personal data.
- Coordinate the Data Protection Impact Assessment (DPIA) completion across the organization and provide support where required.
- Conduct Data Transfer Impact Assessment (DTIA) in support of Legal and Procurement.
- Conduct onboarding and monitoring of third parties processing personal and confidential data and to the related contract management in collaboration with Procurement.
- Monitor adherence to the relevant internal policies and guidelines.
- Ensure data quality learnings from Data Protection Officer (DPO) are embedded in Operations and IT.
- Conduct control and monitoring for the protection of data.
- Contribute to reporting, monitoring and remediation in case of data breach.
- Contribute to the personal data inventory to maintain the Register of Processing Activities (RoPA).
Key responsibilities & duties
- Information Management Experience: 5 -10 years of experience in similar information management roles. This extensive experience provides a deep understanding of data and information structures, databases, data applications, information management, legal requirements, and technologies.
- Regulatory Compliance: Significant experience in ensuring adherence to data and information management standards and compliance with data protection regulations such as GDPR.
- Information Governance Frameworks: Proven experience in developing, implementing, simplifying and managing information governance related policies and procedures.
- Cross-functional Collaboration: Extensive experience working closely with IT, Data and Information, and business units to establish and enforce governance initiatives.
- Project Management: Demonstrated ability to lead cross-functional team meetings to identify and resolve issues, with a track record of successful project management.
- Technical Proficiency: Deep understanding of data architecture, information management requirements, databases, and storage solutions, with the ability to leverage technical skills to improve governance practices.
- Strategic Thinking: Ability to develop and implement comprehensive policies, standards, and procedures that ensure the integrity and quality of information across the organization.
- Analytical Skills: Strong analytical skills to analyze and address complex problems and identify new improvement opportunities.
- Communication Skills: Excellent communication skills to provide clear guidance on data and information management, including lifecycle management, information quality, and data privacy.
- Leadership: Ability to conduct training and workshops to promote information governance awareness across the organization, with a proven track record of effective leadership.
- Adaptability: Stay updated with the latest industry trends and regulations related to data governance, with the ability to adapt and implement new practices as needed.
Required Education
- A Bachelor's degree in Information Management, Computer Science, Data Science, or a related field.
- A Master's degree in a relevant field is preferred.
- Professional certifications in information governance, information management, or data privacy are highly desirable.
- Equivalent experience in Information Governance or Information Management roles may be considered in lieu of formal education.