Apply Now »

Manager - Data Privacy

Company:  Abu Dhabi Commercial Bank PJSC
Date:  Jun 17, 2026
Description: 

Manager - Data Privacy

Embark on a journey where your unique contributions are celebrated, and your professional growth is embraced. At ADCB, we nurture a diverse, inclusive community where every voice is valued.

 

About the business area - Group Risk Management

ADCB prioritises a disciplined approach to risk, recognising its fundamental importance to the Bank’s long-term organisational and financial resilience. Group Risk Management oversees the implementation of ADCB's risk objectives, identifying and addressing gaps in the bank's risk infrastructure/framework. Their responsibilities include nurturing the independence of the risk function, establishing provisioning policies, and introducing changes to energise risk awareness among front office personnel and decision-makers. Continuously tuning the risk organisation in line with market best practices, they manage ADCB's portfolio and associated risks to international standards, while establishing a clear risk culture across all areas of operation.

 

In this role, your key responsibilities include:

  • Manage the implementation and continuous enhancement of the Data Protection Framework
  • Maintain and review core policies and standards aligned with regulatory expectations. Ensure consistent adoption across business units
  • Provide oversight on policy effectiveness and control maturity
  • Ensure consistent adoption across business units by embedding governance requirements into operational practices, monitoring policy effectiveness and control maturity, and driving remediation actions where gaps are identified
  • Provide structured governance oversight and reporting to support regulatory compliance, management assurance and sustainable privacy practices across the organisation
  • Responsible for executing and managing ADCB’s endtoend privacy framework as a Second Line of Defence (2LoD) function, acting as a trusted business partner to enable the effective identification, assessment, and mitigation of privacy risks across the organisation
  • Manage the delivery, consistency, and quality of all privacy and data risk assessments (including DPIAs, PIAs, and jurisdictional assessments), guides standardised risk scoring and mitigation planning, governs the privacy risk register, and defines and embeds baseline privacy controls
  • Manage core privacy operations such as Data Subject Rights management, RoPA governance, and privacy reviews of contracts and data sharing arrangements, ensuring regulatory alignment and regulatorready assurance
  • Manage structured oversight of privacy risks in change and transformation initiatives, ensuring early engagement, embedding privacybydesign across product and system lifecycles, and supporting the business through clear guidance, collaboration, and oversight
  • Interpret and operationalise UAE PDPL, CBUAE Consumer Protection Regulations and supervisory standards by translating regulatory requirements into practical controls and operational processes
  • Manage regulatory inspections, supervisory reviews and audits by preparing accurate, timely and regulatordefensible documentation and evidence
  • Ensure privacy outputs remain auditready and provide structured regulatory updates, impact assessments and thematic insights to senior management to support effective governance and regulatory confidence
  • Manage the full lifecycle of data privacy incidents and breaches by overseeing identification, investigation, severity assessment, containment, remediation and closure activities in collaboration with key stakeholders.
  • Apply a consistent riskbased methodology to assess customer, financial, regulatory and reputational impact, ensure timely escalation and governance approvals, and oversee regulatory and customer notifications where required.
  • Drive rootcause analysis and lessonslearned initiatives to strengthen controls and reduce the likelihood of recurrence.
  • Execute and manage privacy due diligence for vendors, outsourcing arrangements and strategic partnerships by accessing data processing activities, validating controller and processor roles, and ensuring appropriate contractual protections are in place
  • Assess cross-border data transfer controls and oversee third-party compliance, delivering clear reports and recommendations to mitigate privacy risks and enable compliant sourcing decisions

The ideal candidate should have the following experience

  • At least 6 years of experience in data privacy, compliance, risk management, IT risk or a related governance function, including a minimum of 3 years in a managerial or team leadership role, preferably within financial services or a regulated environment
  • Bachelor’s degree in Compliance, Risk, IT, or related field
  • Strong Knowledge of UAE PDPL and CBUAE Regulatory Expectations
  • Privacy Risk Assessment and Control Design
  • Regulatory Interpretation and Advisory Skills
  • Governance and Control Mindset
  • Analytical and Critical Thinking Skills
  • Regulatory and Management Report Writing
  • Privacy Incident and Breach Management
  • ThirdParty Risk Oversight
  • Excellent communication skills
  • People management skills
  • Good work ethics
  • Ability to challenge constructively and influence stakeholders

Job Details
Job Location: 

Abu Dhabi, AE, 939

Employment Status:  Fixed Term (3 years)

Apply Now »