This is your opportunity to join AXIS Capital – a trusted global provider of specialty lines insurance and reinsurance. We stand apart for our outstanding client service, intelligent risk taking and superior risk adjusted returns for our shareholders. We also proudly maintain an entrepreneurial, disciplined and ethical corporate culture. As a member of AXIS, you join a team that is among the best in the industry.

At AXIS, we believe that we are only as strong as our people. We strive to create an inclusive and welcoming culture where employees of all backgrounds and from all walks of life feel comfortable and empowered to be themselves. This means that we bring our whole selves to work. 

All qualified applicants will receive consideration for employment without regard to race, color, religion or creed, sex, pregnancy, sexual orientation, gender identity or expression, national origin or ancestry, citizenship, physical or mental disability, age, marital status, civil union status, family or parental status, or any other characteristic protected by law. Accommodation is available upon request for candidates taking part in the selection process.

Job Summary:

The Data Privacy & Protection Senior Associate will support the Data Protection Officer (DPO) in ensuring that AXIS Capital complies with the global data privacy and protection regulations for the personal and nonpublic information AXIS processes in its insurance and reinsurance businesses. This position will be responsible for the management of all daily operational privacy compliance tasksas well as various regulatory initiatives including provision of privacy advice, oversight and maintenance of the record of processing activities, implementation of policies and provision of training, all in support of AXIS’ Data Privacy and Protection Framework. The DPPO is the‘second line of defense’ at AXIS andas such, the Sr Associate will collaborate with the various teams and business units to ensure compliance for current, planned and proposed data processing activities.

This critical role will report to the Data Privacy and Protection Accountability Lead and will also support the change management efforts needed to continue to embed global data privacy and protection principles at AXIS.

Key Responsibilities:

Management, oversight and resident expert for the DPPO’s privacy management software (OneTrust) including building and management of all forms, questionnaires and privacy platforms; resident ‘SME’

Completion and review of Privacy Reviews/Assessments for all new products, tools, systems, applications, vendors etc… including interaction and facilitation with the system/product/application/data owners

Management of Data Subject Requests (all types) and giving effect to the applicable data subject rights of individuals in all jurisdictions in which AXIS operates (e.g. EU, UK, Canada, US, Bermuda, Singapore, Switzerland)

Management of Personal Data Incidents and Events

Assisting with the management of Personal Data Breaches 

Reporting of KPIs and metrics for all privacy management platforms

Management, oversight and maintenance of the Record of Processing Activities 

Daily interaction and collaboration with Information Security, Vendor Management, Legal and IT teams including leading meetings and discussions with technical teams

Provision of data privacy advice, guidance and support to Senior Management, Business Units, support functions, the DPO and the business at large

Horizon scanning, identification and mitigation of privacy risks and compliance strategies as applicable regulations and laws change or are introduced

Assisting with development and delivery of training and awareness materials to AXIS staff to ensure compliance with privacy and data protection requirements in all jurisdictions in which AXIS conducts business

Management and response to ad hoc inquiries/DPO Inbox, catalogue listing, eDiscovery (verification/advising), ServiceNow queries/requests (mirror Wil’s access/role within applicable platforms)

Required Qualifications, Skills & Experience: 

Paralegal designation or Bachelors degree 

CIPP-E, CIPP-US or CIPP-C (or equivalent) designation or commitment to achieving within the first 6 months of employment

Technically savvy with a demonstrated ability to understand data flows within the various systems and apps utilized at AXIS and to ensure privacy compliance measures are adequate

2+ years experience within a legal, data privacy & protection and/or compliance role with demonstrated increasingresponsibility and complexity of tasks over time

Working knowledge of data privacy and protection laws and regulations in major jurisdictions (EU/UK GDPR) with a commitment to continuing education and knowledge building 

Understanding of the insurance and reinsurance industries and associated data flows and ability to apply that knowledge to the AXIS environment

Collaboration and building of relationships with relevant teams and individuals across the business

Strong analytical skills, including ability to focus quickly on key elements of legal and regulatory risk, coupled with good technical drafting skills

A positive, collaborative spirit coupled with excellent planning and organizational skills

Strong interpersonal, written and oral communication skills and ability to perform as an effective team player both within the DPPO and across AXIS business units

Ability to adapt quickly to an existing, complex environment, to prioritise and manage a varied workload and to assist with development of solutions to business problems