DATA PROTECTION OFFICER

​ JAMAICA CIVIL AVIATION AUTHORITY

     ________________________________________________

​a Statutory Body and portfolio entity of the

Ministry of Science, Energy, Telecommunications and Transport

invites applications from suitably qualified persons for the following vacant position:

DATA PROTECTION OFFICER

 JOB SUMMARY

Reporting to the Chief Data Protection Officer, the incumbent ensures that all JCAA’s data protection strategies comply with data protection legislation, regulation and applicable policies. This includes overall systems management, support and execution of the Data Protection Roadmap, Data Protection Impact Assessments and related activities, fostering organisational awareness of process and procedures and compliance with data protection audits/assessments related to data protection, privacy and information security.

QUALIFICATIONS & EXPERIENCE

• A Bachelor’s Degree in Law, Compliance, IT Security, IT audit or equivalent qualifications from an accredited tertiary institution.

• At least one Data Protection and/or Privacy Certification (CIPP, CIPT, CIPM or equivalent, would be an asset

• At least five (5) years' experience within a data protection, information security, privacy management, legal compliance, risk management or operations management functions.

KEY TECHNICAL COMPTENCIES

• In depth knowledge of information risk concepts/relating business needs to security controls

• Sound knowledge in data protection laws and practices

• Sound knowledge of industry best practices for information security, data management systems and data protection

• Working knowledge of management principles and practice

• Proficiency with Microsoft Suite and Microsoft Projects

KEY NON-TECHNICAL COMPTENCIES

• Highly proactive and able to work independently

• Demonstrated effectiveness in a customer-facing role

• Demonstrated experience working and interfacing with cross functional teams

• Excellent verbal and written communication skills, demonstrating the ability to document data protection policy, privacy statements, reports and other technical documentation with clarity and accuracy

• Strong systems thinking and analytical approaches to problem solving

• Very good presentation and listening skills

• Excellent interpersonal skills to include patience

• Ability to exercise initiative and sound judgement

• Ability to work effectively under pressure and to manage sensitive and confidential information

DUTIES

• Support the development and implementation of policies and standards for the management, storage, utilization and protection of ‘personal data’ within the JCAA, working closely with all stakeholders throughout the design, implementation and monitoring processes

• Assist the Chief Data Protection Officer to draft new and amend existing internal data protection policies, guidelines, and procedures, in consultation with key stakeholders

• Monitor changes to local privacy laws and make recommendations where necessary

• Support all functional areas within the JCAA by providing advice and guidance in relation to data protection governance and procedures

• Take steps to deepen adoption of data protection controls and oversight across the JCAA

• Review data processing activities with the view to identifying data processors, and associated risks for inclusion in the risk register and to implement mitigation measures as outlined in the privacy governance framework for the management of personal data

• Conduct data protection compliance audits to ensure compliance and to address potential issues. Report immediately to the Chief Data Protection Officer actual and potential cases of data security incidents for investigation, remedial action, and reporting in keeping with established protocols

• Maintain full and complete records of data protection privacy-related matters, incidents, breaches, and actions taken; monitor such records to identify trends and submit reports to the Chief Data Protection Officer

• Assist with data mapping, and third-party contract and consent reviews

• Work with key internal stakeholders in the review of projects and related data to ensure compliance with local data protection and privacy laws, and where necessary, complete and advise on data protection impact assessments.

• Assist with review of vendor contracts/consents needed to implement projects in partnership with the Legal, Procurement and Information Technology functions, and draft documentation for filing with the Information Commission

• Engage with all areas of the organization where personal data may be processed to determine existing processes and assess how privacy is embedded. Identify gaps in control environments and personal data handling to determine privacy risk

• Facilitate Data Protection awareness across the JCAA by providing orientation, on-going communication and implementing compliance training

• Maintain records of all data assets and exports (data processing activities)

• Prepare and submit as appropriate annual, quarterly, monthly and ad hoc reports

• Perform other related duties, which may be assigned from time to time

Applicants who satisfy the job requirements should submit electronic applications

by August 15, 2025 using the online portal which may be accessed using the link

below:

                                 Application letters should be addressed to:

DIRECTOR GENERAL

JAMAICA CIVIL AVIATION AUTHORITY

4 WINCHESTER ROAD

KINGSTON 10

 We thank all applicants for their interest. However, only shortlisted candidates will be contacted.