Please ensure that the person has relevant data privacy experience [Key words: privacy, data privacy, GDPR, CCPA, CPRA]
Certain certifications, though desirable but not a must, are - CIPP, CIPM, CIPT (all IAPP certifications), CDPSE [Key Words: CIPP, CIPM, CIPT, CDPSE]
Privacy experience, though great, but not necessarily needed for this role are: privacy advisory, privacy policy/procedure, privacy framework, privacy assessment, operating model et al
Relevant privacy operation related experience are (not an exhaustive list):
Privacy Impact Assessment (PIA), Data Privacy Impact Assessment (DPIA), Transfer Impact Assessment (TIA) [Key words: PIA, DPIA, TIA]
Data Subject Rights (DSR), Individual Rights Request (IRR), Data Subject Access Request (DSAR) [Key Words: DSR, IRR, DSAR]
Records of Processing Activity (ROPA), Data Privacy Systems (DPS), Inventory of privacy processes or applications [Key Words: ROPA, DPS, Inventory]
Data Flow Diagram (DFD), Data Flow Mapping, Data Mapping [Key Words: DFD, Mapping, Flow Diagram]
Operations experience is also important. However, if the person has privacy domain experience and operations experience in some other industry, we can still consider
As we need someone who would have number of experienced/senior resources reporting into her/him, we need maturity, composure, and good experience
