Share this Job

Manager - Governance & Privacy

Date: 23-Nov-2022

Location: Dubai, AE

Company: Majid Al Futtaim

Majid Al Futtaim invites you to join us in our quest to create great moments for everyone, everyday! We are the leading shopping mall, residential communities, retail and leisure pioneer across the Middle East, Africa and Asia, serving over 560 million visitors a year. For the past two decades, we have shaped the consumer landscape across the region, transforming the way people shop, live and play, while maintaining a strong sustainability track record and the largest mall in the world to attain LEED Gold EBOM Certification. We have over 40,000 team members in 15 international markets representing over 100 nationalities – all keeping the customer at the heart of everything we do. If you enjoy being BOLD, PASSIONATE and TOGETHER, then Majid Al Futtaim is the destination for you.




Senior Manager Governance and Privacy




Corporate Development


Reporting to


Director Data & Technology

Dubai, United Arab Emirates

Managing/Leading (if applicable):


20-25 resources in multiple locations



Role Purpose:

Based in Dubai, and reporting into the Director of Data & Technology within the FS business, the Senior Manager Governance, Privacy & BIA is responsible for three critical areas for our FS business – Data Governance and other Compliance related activities, establishing and maintaining the Privacy Office and incubate the new practice of Business Information Architecture, and manage the integrated roadmap for all three.

Establish and manage the Data Governance and Privacy Office for FS business, and ensure the implementation and execution of MAF data governance and privacy policies as well as policies related to specific functions such as PCI DSS. In alignment with Holding Legal team, the role will assist in facing-off to customer and regulatory enquires on privacy matters - and will stand up any additional frameworks deemed necessary for the FS business.

Leading the establishment of Business Information Architecture practice for the Group. Lead the function to design and use of information models and practices to link data to business capabilities and business outcomes. Focuses on the organization of information in MAF, that includes physical and digital assets. Provide expert guidance in how to ensure good integration between existing and future data platforms and data tooling in collaboration with the Enterprise Architecture team. Engage relevant business stakeholders and use case / project teams to define data quality standards and ensure that data quality rules are well defined in alignment with Group Data Governance policies. Provide inputs to standards, policies and guidance on data-related technologies, platforms and tooling to be leveraged in the delivery of data use cases and projects.


Role Details – Key Responsibilities and Accountabilities:

  • To ensure compliance with all applicable data protection laws and regulations, including liasing with data protection regulators in the region.
  • To act as a subject matter expert (SME) for data privacy matters, laws and regulations both internally within the functions and business units as well as externally with third parties, vendors and partnerships. To be the point of contact with data privacy regulators, supervisory authorities and other key stakeholders.
  • To identify and evaluate data processing activities and monitor data management procedures and compliance.
  • To partner with all key functions within the company and business, in particular with IT Security, IT team, Human Capital, Compliance, Marketing, Finance and Operations to ensure data privacy issues are considered by default and from the start of new projects, products and initiatives and throughout the entire lifecycle.
  • To conduct and/or support privacy impact assessments (PIA) or data protection impact assesments (DPIA) where applicable.
  • To ensure records of data processing operations are kept, to monitor local and international developments in data protection regulations and advise on the applicable frameworks.
  • Conduct training on data privacy regulations and compliance for employees.
  • Perform regular audits in order to determine if policies and procedures need to be altered in order to comply with regulations.
  • To provide support to the regional legal and compliance team as required on all data privacy matters.
  • Govern FS data from inception to destruction, and ensure data is managed across the data lifecycle in accordance with stipulations as defined by MAF OPCOs, third parties and applicable laws.
  • Adopt and leverage the group data governance and privacy capabilities to ensure FS data needs are identified, documented, discovered and fit for purpose, to high quality. Ensure data issues are fixed at source.
  • In partnership with legal and handle complex negotiations of contracts with third parties, providers, suppliers, customers on data privacy.
  • Develop awareness and culture of Privacy across FS and stay at the forefront of the privacy regulatory landscape across MAF’s operating markets.
  • Design and use of information models and practices to link data to business capabilities and business outcomes. Focuses on the organization of information in MAF, that includes physical and digital assets.
  • Provide expert guidance in how to ensure good integration between existing and future data platforms and data tooling in collaboration with the Enterprise Architecture team
  • Increase of clarity on data ownership, accountability, and controlled access to data.
  • Perform industry specific research, explore new technologies.
  • Active metadata management resulting from continuous metadata management innovation.

Definition of Success


Functional/Technical Competencies

The successful candidate will have an exceptional track record of leading implementation of data governance and privacy programs using frameworks to establish compliance with applicable privacy laws and regulations.

They will have deep working expertise, including familiarity with the latest laws and regulations related to data governance and privacy to ensure protection of PII and sensitive data, reduce risks of data breaches, monitoring and auditing of the program performance, know how to create awareness and conduct training on importance of data governance and privacy.

They will be an a change agent, capable of articulating and presenting a clear and compelling vision, strategy and framework.

They will demonstrate an agile approach to identify and prioritize information initiatives that are required to enable business strategy. Be able to lead development of toolkits, evangelize them to drive awereness and adoption across the organization. Increase clarity on data ownership, accountability and controlled access to data. Should have complete understanding of active metadata management resulting from continuous metadata management innovation and lead implementation.


Summary of required experience and attributes

  • Experienced data protection professional with proven experience in a data protection or similar compliance-based role.
  • Knowledge of data protection law and practices
  • Experience in use and implementation of data governance toolsets (Informatica EDC, Axon; Collibra)
  • Knowledge of industry standards and cosed of conduct for example PCI DSS
  • Experience in active data management and governance
  • Experience on Information Architecture as a discipline including design and concepts
  • Be able to collaborate between Business Architecture, Information Architecture, Application Architecture and Technology Architecture
  • Good verbal, interpersonal, and written communication skills
  • Enthusiastic team player with strong relationship and empathy building skills. Well-developed influencing skills.
  • Analytical approach to reviewing issues and having a problem-solving mind set.
  • Good organizational skills and able to work independently and autonomously with the ability to prioritize and work to tight deadlines
  • Recognize and escalate issues when appropriate

Personal Characteristics and Required Background:

Personal characteristics

  • Will be a proactive problem solver with immediate professional and intellectual credibility and an impactful style. Will be collaborative, low-ego, pragmatic, and excited about Majid Al Futtaim. Will live and breathe Majid Al Futtaim’s values.

Minimum experience

  • 10+ years of experience with data, data protection and privacy

Minimum Qualifications/education

  • Bachelor’s degree in computer science, information management or data related field from a top university
  • Certifications in CIPP/E, CIPM will be preferred