top of page

CAREERS

People%20at%20a%20meeting_edited.jpg

The Office of the Privacy Commissioner (PrivCom) is an independent public office with a mandate to regulate the use of personal information by organisations in a manner which recognizes both the need to protect the rights of individuals in relation to their personal information and the need for organisations to use personal information for legitimate purposes, among other duties, in accordance with the Personal Information Protection Act 2016. More details about our office are available via our About Us page.

We offer individuals the opportunity for broad exposure to private, public, and third-sector data management and governance practices, international regulatory issues, and a variety of work experiences.

PrivCom is an employer that seeks to employ individuals from a variety of diverse backgrounds and perspectives. We encourage applicants who may feel they do not meet 100% of the requirements. We fully support the use of reasonable accommodations in our working environment. We will consider filling positions as part-time or flexible hours.

In addition to other advertisements, current job postings will be displayed in the section below.

 

Please note that PrivCom uses personal information because it is needed for a potential employment relationship, as allowed by PIPA's section 6(1)(h). We may request information on your Bermudian status to comply with Public Service Commission Regulations 2001. This use of sensitive personal information is considered lawful in the context of recruitment or employment, according to PIPA's section 7(3)(d).

To meet our Purpose Limitation (section 10) and Integrity (section 12) requirements, personal information will only be retained until the specific position is filled.

 

Additional details are available in our Privacy Notice, and you will find a contact mechanism on that page for further questions regarding how PrivCom may use personal information.

Current Opportunities

Twitter Header Photo QDF.png

Information Systems Auditor

 

The Office of the Privacy Commissioner (PrivCom) is seeking the services of a skilled and capable individual to work as an Information Systems Auditor. Working under the direction of the Assistant Commissioner (Investigations), the Information Systems Auditor will be responsible for carrying out functions that support the overall objectives of the investigation’s unit.

The Information Systems Auditor will have specific responsibilities related to planning and conducting information security and privacy program audits and the provision of guidance on the development of recommendations and remediation plans for control deviancies and information security and privacy risks. Amongst other duties, the post-holder will perform fact-finding meetings, including liaising with external organisations in order to investigate data breaches, review information systems and any other databases or security systems identified during the investigation process.

This position is placed on the BPSU salary scale as PS-35 through PS-37, meaning the annual salary range begins at $114,408.77.

For this position, the post-holder must have/be:

 

  • Strong knowledge of audit, security, and privacy frameworks and risk management, internal controls frameworks and/or external auditing, compliance, technology and computer systems

  • Strong ability to analyze, prepare and present detailed and complex audit reports with respect to data obtained from audit, risk management, investigations and monitoring functions.

  • Strong knowledge of information systems, terminology, concepts and practices

  • A high level of integrity and ability to maintain confidentiality in all matters that come to his/her knowledge and the ability to effectively handle confidential and sensitive information

  • Good interpersonal skills with a professional service orientated approach

  • Sound time management and problem-solving skills

  • Excellent communication skills (written and oral)

  • Strong Understanding of the data lifecycle

  • Advanced ability to multi-task and be adaptable whilst working in a fast-pace, dynamic environment

  • Must be able to work independently and as part of a team

  • Demonstrated organizational skills and the ability to prioritize and plan work effectively

  • Demonstrated ability to use sound judgment, tact, and initiative

  • Have a flexible approach to the job and willingness to collaborate and assist in other areas

  • Domestic and international research skills

  • Proficient in the use of Microsoft Office Suite of Products and other common computer programmes

 

Preference will be given to those with an Internal Audit or Information Systems Auditor certification (CIA, CISA, CFSA, or CRISC) or Professional Accounting qualification (CA, CPA, ACCA).

 

A full list of job duties is available in the Job Description at this link.

 

We invite you to submit your application online by sending your resume and a cover letter to Careers@privacy.bm with the subject line “Information Systems Auditor”.

 

Applications for this position must be received no later than the 14th of February 2023. Note that this role will commence after 1st March 2023.

 

To facilitate the hiring of qualified Bermudians in accordance with the Public Service Commission Regulations 2001, please indicate your status as “Bermudian”, “Non-Bermudian spouse of a Bermudian”, or “Non-Bermudian” in your cover letter.

PrivCom is an employer that seeks to employ individuals from a variety of diverse backgrounds and perspectives. We encourage applicants who may feel they do not meet 100% of the requirements. We fully support the use of reasonable accommodations in our working environment.

Compliance & Risk Officer

The Office of the Privacy Commissioner (PrivCom) is seeking the services of a skilled and capable individual to work as a Compliance & Risk Officer for our Operations Unit. Reporting to the Assistant Commissioner (Operations) the Compliance Officer is responsible for assisting in the development and maintenance of the office’s compliance and risk management functions to allow PrivCom to fulfil its duties under the Personal Information Protection Act 2016 (PIPA).

The post holder will have specific responsibilities related to programme development, monitoring and investigation, remediation, research and reporting, training, advisory and awareness functions that support the work of PrivCom’s teams.

The post-holder will be responsible for providing support in the various aspects of compliance, risk management and ethics including the creation and delivery of the compliance and risk frameworks, carrying out monitoring activities in line with the annual compliance and risk plans, conducting risk and privacy impact assessments, drafting policy documents, investigating breaches, compiling compliance metrics and reports, identifying, and delivering compliance and risk training, and raising awareness.

This position is placed on the BPSU salary scale as PS 30 through PS 32 meaning the annual salary begins at $96,286.66.

For this position, the post-holder must have/be:

  • Demonstrated compliance and risk management experience

  • Experienced in all areas of compliance and risk management, including developing and maintaining compliance and risk frameworks, conducting compliance monitoring, risk assessments, investigating breaches, preparing reports, conducting training and working with senior staff on raising compliance and risk awareness.

  • A high level of integrity and ability to maintain confidentiality in all matters that come to his/her knowledge and the ability to effectively handle confidential and sensitive information

  • Excellent interpersonal skills with a professional, tactful and diplomatic approach in interacting with staff, both internally, as a team, and externally

  • Sound time management and problem-solving skills  

  • Excellent communication skills (written and oral)

  • Advanced ability to multi-task and be adaptable whilst working in a fast-pace, dynamic environment

  • Exceptional attention to detail

  • Able to learn quickly, retain and understand relevant information

  • Demonstrated organizational skills and the ability to prioritize and plan work effectively

  • Have a flexible approach to the job and willingness to assist in other areas within the department

  • Domestic and international research skills

  • Proficient in the use of Microsoft Office Suite of Products and other common computer programmes

  • Thorough knowledge of the Personal Information Protection Act 2016 and the Public Access to Information (PATI)

  • A Bachelor’s Degree in Law, Business Administration, Risk Management or a relevant field of study

  • A minimum of five (5) years’ relevant experience in a similar capacity

 

While not required, certifications in compliance, risk management, audit, law, or data privacy will be considered an asset.

A full list of job duties is available in the Job Description can be viewed here.

We invite you to submit your application online by sending your resume and a cover letter to Careers@privacy.bm with the subject line “Compliance & Risk Officer”.

Applications for this position must be received no later than the 14th of February 2023. Note that this role will commence after 1st March 2023.

The Office of the Privacy Commissioner is an independent public office with a mandate to regulate the use of personal information by organisations in a manner which recognizes both the need to protect the rights of individuals in relation to their personal information and the need for organisations to use personal information for legitimate purposes, among other duties, in accordance with the Personal Information Protection Act 2016. More details about our office are available via our “About Us” page at www.privacy.bm/about-us. 


We offer the opportunity for broad exposure to private-, public-, and third-sector data management and governance practices, international regulatory issues, and a variety of work experiences. 


To facilitate the hiring of qualified Bermudians in accordance with the Public Service Commission Regulations 2001, please indicate your status as “Bermudian”, “Non-Bermudian spouse of a Bermudian”, or “Non-Bermudian” in your cover letter.


PrivCom is an employer that seeks to employ individuals from a variety of diverse backgrounds and perspectives. We encourage applicants who may feel they do not meet 100% of the requirements. We fully support the use of reasonable accommodations in our working environment. We would consider filling this position as part-time or flexible hours; please indicate such a preference in your cover letter.

bottom of page