Job Description

Overview PepsiCo products are enjoyed by consumers more than one billion times a day in more than 200 countries and territories around the world. At PepsiCo you will embark on an incredible career journey with a Fortune 50 company and join a world class team. PepsiCo is seeking an experienced and motivated Privacy Professional to form part of a Global Privacy Operations, that is part of a wider Privacy Center of Excellence (CoE). The role will support PepsiCo\'s compliance with Policy, Standards and Applicable Privacy Laws and Regulations. You will work with colleagues across various PepsiCo markets, providing guidance on data privacy requirements such as reviewing privacy impact assessments and responding to data subject access requests. The Privacy Associate Manager\'s key focus will be to support the Africa, Middle East and South Asia markets. Responsibilities Key Accountability: Standards, framework, controls and policies: Driving and supporting the implementation and integration of and embedding of privacy principles, policies, standards, and controls into standard business processes. Adoption of Global PEP Privacy Compliance Platform : Ensure use and adoption (e.g. by training and/or by leading required multi functional initiatives) by the business of PepsiCo\'s Privacy Compliance Platform for privacy related governance and operations and where necessary ensure the design of workflows/processes are capable of being incorporated into business-as-usual operations Privacy Risk Assessments (PIAs) for businesses / functions engaged in data processing: Facilitate the execution and completion of PIAs by business units (BUs) and functional stakeholders, documents remediation plans, monitors their execution and provides appropriate updates to Privacy Councils. This also involves if PIAs trigger a high risk processing activity that may need to be escalated to the sector DPO(s) e.g. via a Data Protection Impact Assessment (DPIA). Communication/Reporting: working with the CoE Privacy Manager to develop and maintain reporting metrics (i.e., KPIs, KRIs) and facilitate regular reporting to DPOs and/or Legal and/or Privacy Councils, as appropriate. Connects on a regular basis with key stakeholders across BU and Functions to understand their current and planned data processing activities and communicate applicable privacy operational requirements. Exercises judgment to raise key risk and compliance issues to the DPO and/or Legal and/or the Privacy Councils. Record of Processing Activities: Work directly with BUs and Functions to develop, create and maintain a log of processing activities undertaken by the business. Where necessary manages maintenance of a record of all personal data processing activities (i.e. data inventory). Data Subject Rights: Facilitate the completion of data subject rights request, partnering with data subject facing functions (Consumer Services, Insights and HR) in continuously endeavouring to make updates as regulatory requirement evolve, improve the management of processes to permit data subjects to exercise their rights afforded by applicable regulations (including facilitating records location/extraction/consolidation/deletion) in accordance withregulatory requirements and/or internal SLAs. Privacy Management Plan/Playbook : Facilitate the development of processes to ensure PepsiCo implements PepsiCo\'s Privacy Management Plan/Playbook and CoE procedures. Where necessary, recommend any required enhancements to address changing regulatory requirements or improve operational efficiencies of the CoE. Lead multifunctional initiatives in this regard (e.g. engaging needed areas, following up on needed actions etc). Data protection by design: Supports the business on the embedding of current privacy policies, standards, and controls into \'Business As Usual\', including third parties who process PEP personal data. This will involve assisting to formulate, embed and enforce protocols and ways of working with IT system owners across the business to ensure privacy risks are identified and addressed in system design as early as possible and prior to PEP implementation and/or onboarding. Training and Awareness: supports in the development of a privacy compliance training programme. Promotes privacy awareness throughout the business and ensuring adequate support is granted to the Sector DPOs in the roll out of a regular cadence of communications to keep privacy on the business agenda. Privacy Councils : Supports DPOs and/or Legal to lead quarterly Regional Privacy Councils as part of the PepsiCo global privacy governance framework, ensuring privacy risk/key privacy matters are raised and escalated appropriately and in accordance with PepsiCo\'s privacy policies and standards. The above mentioned items include all the specified accountabilities. Qualifications Key Skills/Experience Required Bachelor level degree (preferably in law or information technology/cyber security and data security) 6+ years experience Data Privacy (e.g., EU\'s GDPR), Regulatory Compliance, Risk Management, Audit, Data Governance experience Commercial and financial acumen Technology: Highly proficient with Privacy Compliance Platforms (e.g., OneTrust, TrustArc), ServiceNow, ERP, Content management, Computer, Business Analysis and Project Management Knowledge of operational management accounting Internal governance and control skills Knowledge of data privacy legislative & regulatory landscape Knowledge of reporting and presentation to various levels of stakeholders including senior level Communication and collaboration skills Writing skills (Strategy Roadmaps, Reports, KPIs, KRIs, Policies and Procedures and Standard Operating Procedures) Research skills Differentiating Competencies Required: Strong, positive, and professional attitude with highest level of integrity Excellent interpersonal skills, team player, perseverance and determination Strong business and financial acumen Analytical and lateral thinker Values-based leadership approach High energy and self-starter / self-motivated Strong prioritization, efficiency and organization skills needed to think independently Other competencies required: Emotional Intelligence, Adaptability, Assertive, Calm under pressure, Accountability and commitment, Delegation, Passion Integrity, Development & recognition of people, Consumer/ client focus, Innovation, Building Alliances, Strategic Thinking, Inspire Commitment, Developing Self and Others, Proactive cooperation.

foundit