Organizational Setting

The Data Protection Unit (DPU) is an independent function in the Office of the Director-General (ODG). It oversees and supports implementation of the FAO Data Protection Policy closely working with FAO headquarters and Decentralized Offices and assists the Data Protection Oversight Committee.

Reporting Lines

The Data Protection Officer reports to the Senior Data Protection Officer, Head of DPU.
 

Technical Focus

Provide technical advice and support to all units of the Organization on data protection matters.

Key Results

Support the delivery of multi-disciplinary data protection related activities and related policies, services and advice.

Key Functions

• Contribute and support compliance with the FAO Data Protection Policy (e.g., on data protection impact assessments, data sharing agreements with external entities, the drafting or review of procedures and guidelines, as well as other tools and materials, etc.).

• Research, collect and support analysis of information, review and draft reports and other documents for the Governing Bodies and Senior Management, as may be required.

• Support coordination amongst relevant units (such as, but not limited to, the Legal Office, the Digital FAO and Agro-Informatics Division, the Office of the Chief Economist) in addressing a broad variety of data protection matters.

• Assist the Senior Data Protection Officer in the analysis and evaluation of requests and complaints by data providers, and in responding to them in coordination with the FAO units concerned.

• Assist in the provision of secretariat support to the Data Protection Oversight Committee.

• Assist in the development and conduct of sensitization and awareness raising activities.

• Participate in working groups, meetings, seminars and conferences, as assigned by the Senior Data Protection Officer.

• Support the Senior Data Protection Officer in establishing and maintaining appropriate tools and processes for the management of DPU records.

• Perform other duties, as required.

   

CANDIDATES WILL BE ASSESSED AGAINST THE FOLLOWING

Minimum Requirements

• Advanced university degree (Master’s degree or equivalent) in a relevant discipline (such as, but not limited to, law, information science, business, public administration, records and information management, computer science, information systems, information technology).

• Five years of relevant experience in various data protection disciplines (e.g., data protection and privacy programme and policy, data protection laws, information governance, incident response, data ethics, privacy by design, information security, training and awareness, etc.).

• Working knowledge (proficiency - level C) of English and intermediate knowledge (intermediate proficiency - level B) of another FAO official language (Arabic, Chinese, French, Russian or Spanish).

Competencies

• Results Focus

• Teamwork

• Communication

• Building effective relationships

• Knowledge Sharing and Continuous Improvement

Technical/Functional Skills

• Work experience in more than one location or area of work, particularly in field positions.

• Extent and relevance of experience in working on data protection disciplines.

• Two years of experience of dealing with data protection issues and compliance.

• Experience in working in an international public or private sector is highly desirable.

• Data protection certifications, such as Certified Information Privacy Professional (CIPP), Certified Privacy Manager (CIPM), Certified Information Privacy Technologist (CIPT), are desirable.

• Integrity, adherence to the highest ethical standards and the capacity to deliver objective advice and maintain confidentiality.

• Working knowledge (proficiency - level C) of another FAO official language is considered a strong asset.