Data Protection Officer (GMG/SEG 3)

Organisation
Ministry of Culture, Youth and Sport
Reference
VAC-63332
Contract Type
Full-Time
Industries
Information & Communication Technology
Location
Kingston
Salary & Benefits
$5,198,035 per annum
Date Posted
12/07/2026
Expiry Date
29/07/2026
The incumbent designs and implements a governance framework to ensure organizational compliance with the Data Protection Act, managing data security, staff training, and stakeholder engagement to protect personal information.

 

Job Purpose

Under the direction of the Permanent Secretary, the Data Protection Officer (DPO) is responsible for monitoring the Ministry’s data practices, ensuring that all functions carried out by the Ministry are in accordance with the provisions of the Data Protection Act (2020). The incumbent will be accountable for monitoring internal compliance and providing guidance to the Ministry on data protection obligations. Additionally, the DPO will serve as a primary point of contact for supervisory authorities, such as Office of the Information Commissioner, and individuals whose data is processed by the Ministry. 

 

Key Responsibilities

Management/Administrative: 

  • Contributes to the development of Operational Plans and Budget; 
  • Prepares and submits reports, as required; 
  • Represents the Permanent Secretary at local and regional meetings, conferences and other fora, as directed; 
  • Keeps abreast of best practices within Information Technology to remain informed of current information; 
  • Provides guidance/sound technical advice on matters relating to the work of the Ministry and its portfolio Agencies and Departments. 

Technical/Professional: 

  • Designs and implements a comprehensive Data Privacy Governance Framework and strategy to effectively manage the use of personal data, in accordance with the provisions of the Data Protection Act; 
  • Establishes and maintains appropriate systems and internal control mechanisms that align with the prescribed standards of the Data Protection Act; 
  • Ensures that the Ministry and its operational processes pertaining to data processing, adhere to the established Data Protection Standards and Regulations; 
  • Implements strategies to enhance operational processes and ensure processes are in compliance with regulatory requirements; 
  • Designs and implements Data Protection policies and procedures within the Ministry; 
  • Ensures that breaches of the Data Protection Standards or violations of the provisions outlined in the Data Protection Act, are addressed promptly; 
  • Reviews and updates the Data Protection Plan regularly, to ensure it aligns with any changes in laws, regulations and policies; 
  • Ensures the timely collection of data, analysis and reporting of data on key performance measures; 
  • Maintains a robust system to address and respond to queries and complaints; 
  • Ensures proper management and maintenance of personal data records, in compliance with Data Protection Standards; 
  • Sensitizes and trains staff on the components of relevant Acts, Regulations and Policies related to data; 
  • Apprises Data Controllers and Data Subjects about their rights, obligations and responsibilities regarding data protection; 
  • Provides advice and recommendations to staff and the Permanent Secretary regarding the interpretation and application of Data Protection rules; 
  • Collaborates with the Information and Communication Technology Branch to ensure compliance with the Data Protection Act in the Ministry’s ICT System; 
  • Collaborates with the Information and Communication Technology Branch to manage data security incidents and ensure timely resolution of issues, such as security breaches, complaints or subject access requests; 
  • Provides legislative advice and guidance to the Permanent Secretary regarding any gaps identified from the outcome of the Data Protection and Privacy Impact Assessment;
  • Liaises with the Office of the Information Commissioner to address data protection matters and clarify or resolve any doubts regarding the application of the Act’s provisions;
  • Collaborates with the Internal Audit Division, Legal Services Division and other key stakeholders to monitor, implement and analyze compliance programmes;
  • Performs any other reasonable duties that may be assigned from time to time. 

 

Required Knowledge, Skills and Competencies

Technical: 

  • Sound knowledge and understanding of GOJ policies and programmes and the machinery of Government 
  • Sound knowledge of applicable laws, policies, regulation and procedures
  • Expert knowledge of the Data Protection Law and practices 
  • Knowledge of Change Management principles and practices 
  • Expert knowledge of auditing techniques and practices 
  • Good knowledge of risk management techniques and strategies 
  • Excellent customer and quality focus skills 
  • Proficiency in the use of Microsoft Office Suite and other relevant computer applications and systems 

Core: 

  • Excellent oral and written communication skills 
  • Analytical thinking skills 
  • Excellent problem solving and decision-making skills 
  • Flexibility and adaptability 
  • Teamwork and cooperation 
  • Ability to act on own initiative 
  • Sound integrity 
  • Excellent interpersonal skills 

 

Minimum Required Qualification and Experience

  • Bachelor’s Degree in Law, Computer Science, Audit or equivalent qualification from a recognized Tertiary Institution; 
  • Experience or knowledge in Data Privacy Legislation (in particular GDPR);
  • Experience or specialized training in Records and Information Management Systems;
  • Certification in Information Security, Data Protection and/or Privacy Certification, such as CIPP,CIPT, ISEB, etc. (preferred); 
  • Exposure to Legal training; 
  • Three (3) years related work experience. 

 

 

 

Please note that only shortlisted applicants will be contacted.

  • Register and Apply
    Log In and Apply

    Please fill in the form, upload your CV to complete your application. You will also register during this process to enable you to log in track your application and setup Job Alerts.

    By submitting this form you agree to our terms of use
    Register & Apply

    You may also be interested in...

    Disaster Risk Management Specialist (DRMS) - Andros Island
    Posted Today Posted by Amentum
    The Disaster Risk Management Specialist (DRMS) assesses risks, develops training programs, manages consultant rosters, and coordinates with stakeholders to support disaster preparedness, response, and capacity-building objectives.
    Salary & Benefits: Town/City: Andros Island
    Male Hospital Attendant (HSC/HS 1) - Lionel Town Hospital - Clarendon
    Under the general supervision of the Hospital Administrator, the incumbent will provide ancillary services and is responsible for the general cleaning of the hospital.
    Salary & Benefits: $990, 843 – $1,177,801 per annum Town/City: Clarendon
    Manager, Transport and Security Management (GMG/SEG 1) - Kingston
    The incumbent contributes to strategic planning, manages the unit's budget and operational work plans, oversees security and vehicle maintenance, and monitors performance to improve service quality and productivity through regular reporting.
    Salary & Benefits: $3,501,526 per annum Town/City: Kingston
    Data Protection Officer (GMG/SEG 3) - Kingston
    The incumbent designs and implements a governance framework to ensure organizational compliance with the Data Protection Act, managing data security, staff training, and stakeholder engagement to protect personal information.
    Salary & Benefits: $5,198,035 per annum Town/City: Kingston
    Activities Attendant/Health Club Attendant | MVW - Aruba
    The Activities Attendant performs equipment installation, preventive maintenance, and safety inspections while managing inventory, supporting team leadership, and ensuring high-quality service to meet guest needs and operational standards.
    Salary & Benefits: Town/City: Aruba