Data Compliance Officer – Malawi Communications Regulatory Authority

Job Description

The Malawi Communications Regulatory Authority (MACRA) is a statutory body established under the Communications Act (Cap. 68:01 of the Laws of Malawi) to regulate the country’s communications sector. Under the Communications Act of 2016, MACRA is mandated to regulate and monitor the provision of communications services and ensure that, as far as it is practicable, reliable and affordable communications services are provided throughout Malawi. The Vision of MACRA is Communication Services for a digitally transformed Nation and in order to fulfill its mandate effectively and efficiently with strategic leadership and management, an opportunity has arisen within MACRA to fill various vacant positions.

The positions are highly demanding and require persons who have demonstrable capacity to initiate innovations geared at making MACRA a rejuvenated, vibrant and competitive Authority.

The following are the details of the vacant positions.

Data Compliance Officer

Key Duties and Responsibilities

i. Assist in the development and implementation of a comprehensive data protection compliance program for data controllers and processors
ii. Advise the Data Protection Unit leadership on data protection related matters and ensure strategic decisions consider data protection requirements.
iii. Maintenance of the Data Controllers/ processors related Registers as well as manage the registration process.
iv. Serve as a primary point of contact for data protection incidents/ issues and coordinate with other relevant authorities’ departments or directorates and stakeholders.
v. Prepare and submit required data protection compliance related reports, notifications for the DPU.
vi. Ensure that DPU’s data protection related activities related to compliance are documented
and communicated transparently to relevant stakeholders.
vii. Assist in the development and delivery of data protection training/ awareness programs.
viii. Establish and maintain incident response and breach management protocols relevant to data protection compliance.
ix. Conduct regular assessment and audits to identify potential areas of non -compliance and implement or recommend corrective actions.
x. Collaborate with key stakeholders such as legal, IT and other directorates to ensure effective implementation of data protection policies.
xi. Assist in risk assessment and incident response of data breaches.
xii. Assist with stakeholder engagement and reporting of issues related to compliance.
xiii. Monitor the effectiveness of the DPU’s compliance program and implement necessary updates and enhancements.

Qualifications & Experience

a) Bachelor ‘s Degree in Law, Computer Science, Information Technology, or any other related fields
b) Certification in data protection, privacy law, or information security (e.g. CIPP, CIPM, CIPT) will be an added advantage
c) Through understanding of data protection principles, privacy laws and the Data Protection Act
d) Minimum of 3 years’ experience in data protection, compliance or any closely related field.

METHOD OF APPLICATION

Applicants are required to apply by filling out the form at the following link https://tinyurl.com/ye2a97vh. The application process requires you to fill out the form and upload copies of your certificates on the link provided on the form. Please ensure you have a good internet connection. The application process is estimated to take fifteen (15) minutes to complete. Please submit your application by the end of the day on 25th October 2024.

Only short-listed candidates will be acknowledged.