Senior Executive Data Protection Officer (DPO)
Senior Executive Data Protection Officer (DPO)
DXN Holdings Bhd is listed on Main Board of Bursa Malaysia (Code 5318), in Business since 1993. DXN Holdings Bhd is the investment holdings and management company of DXN Group. Based in Malaysia, with worldwide operations of 79 subsidiaries across 48 countries.
DXN is principally involved in the sales of health-oriented and wellness consumer products through a direct selling model. It operates a vertically integrated production facilities, right from research and development to cultivation, manufacturing, and distribution. DXN's other business activities that primarily serve to support their core business include conducting laboratory testing services for third parties, offering of lifestyle products, and operating cafe.
Under its massive expansion programme, we are currently looking for a diligent and experienced Senior Executive Data Protection Officer (DPO) with the opportunity to develop a professional future career growth within the group to be based at Cyberjaya.
Responsibilities:
- The Data Protection Officer (DPO) is responsible for overseeing the DXN Group of Companies’ data protection strategy and ensuring compliance with the Personal Data Protection Act 2010 (PDPA), the Personal Data Protection (Amendment) Act 2024, GDPR, and other related data protection acts applicable to the DXN Group of Companies. The DPO will act as the key point of contact for regulatory authorities, employees, and stakeholders regarding data protection matters. The DPO will be responsible for staff training, data protection impact assessments, and internal audits. Other responsibilities include advising, advocating, and ensuring a sustainable, comprehensive, detailed, and customizable roadmap to facilitate security and resiliency to support business demands.
Regulatory Compliance & Governance:
- Ensure the DXN Group of Companies' data protection strategy complies with the Personal Data Protection Act 2010 (PDPA), the Personal Data Protection (Amendment) Act 2024, GDPR, and other relevant data protection laws applicable to the regions where the DXN Group of Companies operates.
- Develop and implement data protection policies, procedures, and guidelines.
- Conduct regular reviews and audits to ensure ongoing compliance.
- Maintain documentation related to data processing activities.
- Establish and maintain a robust data protection framework.
- Ensure that data protection impact assessments (DPIAs) are conducted where necessary.
- Identify and mitigate data protection risks across the organization.
Training & Awareness:
- Develop and deliver training programs on data protection and privacy awareness.
- Provide guidance and support to employees regarding data protection best practices.
- Monitor, investigate, and report data breaches in accordance with legal requirements.
- Implement corrective actions and improvements to prevent future breaches.
Stakeholder Engagement:
- Prepare/Serve as the main point of contact for the Department of Personal Data Protection (JPDP).
- Liaise with external auditors, regulators, and legal advisors on data protection matters.
- Assist in handling data subject requests (e.g., access, correction, withdrawal of consent).
Analytical and Problem-Solving Skills:
- Strong analytical abilities to monitor compliance metrics and identify trends.
- Aptitude for resolving regulatory issues efficiently.
- Monitor changes in relevant data privacy laws and regulations, ensuring the company adapts its compliance practices accordingly.
High Ethical Standards and Integrity in Handling Confidential Data:
- Ensures that all personal and sensitive information is processed lawfully and ethically.
- Maintains strict confidentiality of proprietary and personal data.
- Takes full responsibility for ethical data handling.
Requirements:
- Comprehensive set of qualifications, skills, and behaviors designed to ensure effective regulatory adherence and familiarity with the Personal Data Protection Act 2010 (PDPA), the Personal Data Protection (Amendment) Act 2024, GDPR, and other relevant data protection laws applicable to the regions where the DXN Group of Companies operates.
- Strong knowledge of data privacy and data protection regulation, and a good understanding of other major privacy frameworks and evolving legislation worldwide.
- Knowledge of data privacy monitoring tools and software and proficiency in data analysis tools for compliance monitoring.
- Degree in a relevant field: Law, Finance, Business Administration, Economics, or related disciplines.
- 3 years' experience in Data Governance, Data Protection Compliance, or related field.
- Experience in IT Governance, IT Compliance, IT Audit, Information Security, Legal, Risk, or Privacy Compliance.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
