Manager Data Privacy

Embark on a journey where your unique contributions are celebrated, and your professional growth is embraced. At ADCB, we nurture a diverse, inclusive community where every voice is valued.

About the business area - Group Risk Management

ADCB prioritises a disciplined approach to risk, recognising its fundamental importance to the Bank's long-term organisational and financial resilience. Group Risk Management oversees the implementation of ADCB's risk objectives, identifying and addressing gaps in the bank's risk infrastructure/framework. Their responsibilities include nurturing the independence of the risk function, establishing provisioning policies, and introducing changes to energise risk awareness among front office personnel and decision-makers. Continuously tuning the risk organisation in line with market best practices, they manage ADCB's portfolio and associated risks to international standards, while establishing a clear risk culture across all areas of operation.

In this role, your key responsibilities include:

• The Data Privacy Manager is responsible for the operational execution of the Bank's data protection and privacy program, ensuring alignment with UAE Federal PDPL, CBUAE Consumer Protection Regulations (CPR) and Standards (CPS), and applicable international frameworks.
• The role supports the Head - Data Privacy in maintaining an effective privacy governance framework, embedding privacy controls across the Bank, and ensuring that data-related risks are proactively identified, assessed, and managed in line with regulatory expectations.
• Support implementation and continuous enhancement of the Data Protection Framework. Maintain and review core policies and standards aligned with regulatory expectations. Ensure consistent adoption across business units. Provide oversight on policy effectiveness and control maturity.
• Responsible for executing and overseeing ADCB's end‑to‑end privacy framework as a Second Line of Defence (2LoD) function, acting as a trusted business partner to enable the effective identification, assessment, and mitigation of privacy risks across the organisation.
• Oversees the delivery, consistency, and quality of all privacy and data risk assessments (including DPIAs, PIAs, and jurisdictional assessments), guides standardised risk scoring and mitigation planning, governs the privacy risk register, and defines and embeds baseline privacy controls. In parallel, executes and oversees core privacy operations such as Data Subject Rights management, RoPA governance, and privacy reviews of contracts and data sharing arrangements, ensuring regulatory alignment and regulator‑ready assurance.
• Provides structured oversight of privacy risks in change and transformation initiatives, ensuring early engagement, embedding privacy‑by‑design across product and system lifecycles, and supporting the business through clear guidance, collaboration, and oversight.
• Interpret and operationalise UAE PDPL and CBUAE regulatory requirements. Support regulatory inspections, audits, and formal engagements. Ensure all outputs are audit-ready and regulator-defensible. Provide structured updates and impact assessments to senior management.
• Manages the full lifecycle of data privacy incidents and breaches, from identification and intake through investigation, severity assessment, containment, remediation, and closure, working closely with internal stakeholders. Application of risk‑based approach to assess customer, financial, regulatory, and reputational impact, ensures timely escalation, governance approvals, and complete documentation, oversees regulatory and customer notifications where required, and drives remediation and lessons‑learned to strengthen controls and prevent recurrence.
• Executes and manages privacy due diligence for vendors and outsourcing arrangements. Ensure appropriate contractual protections and role clarity (controller/processor). Validate cross-border data transfer controls. Monitor third-party privacy risk exposure across the Bank.
• Oversee the use and optimisation of privacy platforms (e.g., OneTrust). Ensure team adoption of standard workflows and processes. Drive automation and reporting efficiencies.
• Leads the delivery of targeted privacy training and awareness initiatives to build organisational understanding of data protection obligations, with particular focus on high‑risk business areas and roles handling sensitive or customer data.
• Promotes a strong culture of accountability and privacy awareness across the organisation, ensuring employees understand their responsibilities and the importance of compliance with data protection requirements.
• Manage self and team in line with ADCB's people management policies, procedures, processes and practices to ensure adherence and to maximise own and employee contribution to business performance. Organise and supervise the activities and work of the team to ensure that targets and objectives are achieved and the business plan is delivered in line with the required policies, processes, procedures and systems.
• Implement approved departmental policies, processes and procedures, and ensure employee adherence so that work is carried out to the required standard while delivering the required standards of service to customers and stakeholders.
• Manage and motivate the team to ensure they contribute to, and participate in, the identification and implementation of change initiatives, programmes and projects in line with the Bank's standards.
• Demonstrate Our Promise and apply the ADCB Service Standards to deliver the Bank's required levels of service in all internal and external customer interactions.

The ideal candidate should have the following experience

• Bachelor's degree in Compliance, Risk, IT, or related field
• Certificates: CIPP/E, CIPM would be preffered
• Minimum 5 - 7 years experience in data privacy / compliance / risk
• Minimum 3 years managerial experience direct reports required)
• Compliance, Risk, IT, or related field experience
• Strong knowledge of UAE PDPL and CBUAE regulatory expectations
• Proven ability to lead and develop teams in a regulated environment.
• Strong risk assessment and decision-making capability
• Ability to challenge constructively and influence stakeholders
• High attention to detail with strong governance mindset
• Awareness of applicable data-related laws and regulations
• Analytical Skills
• Report Writing Skills
• Excellent communication skills in English
• People management skills
• Good work ethics
• Excellent communication skills in English

What we offer:

• Competitive Salary & Additionally, all employees are eligible to participate in one of our rewarding variable pay plans.
• Comprehensive Benefits Package: This includes market-leading medical insurance, group life and personal accident insurance, paid leave and leave airfare, employee preferential rates on loans and finance facilities, staff discounts and offers, and children education assistance (for certain job levels).
• Flexible and Remote Working Options: We understand the importance of work-life balance and offer flexible working arrangements, subject to eligibility and job requirements.
• Learning and Development Opportunities: We value and facilitate continuous learning and personal development through a variety of exciting learning opportunities, such as structured instructor-led courses, a comprehensive e-learning catalog, on-the-job training, and professional development programs.

At ADCB, we are dedicated to creating a respectful, caring and disciplined work environment that aligns with your career ambitions.