Data Governance and Protection Officer

As a leading financial services and healthcare technology company based on revenue, SS&C is headquartered in Windsor, Connecticut, and has 27,000+ employees in 35 countries. Some 20,000 financial services and healthcare organizations, from the world's largest companies to small and mid-market firms, rely on SS&C for expertise, scale, and technology.Job DescriptionData Governance and Protection OfficerLocations: Melbourne | Sydney, Australia| HybridGet To Know Us:SS&C GIDS provides information processing and computer software services and products. The Company’s operating segments include financial markets, customer management, professional services, and output solutions. SS&C GIDS serves the alternative investments, asset and wealth management, banking and lending, insurance, and real estate industries.Why You Will Love It Here!Flexibility: Hybrid Work ModelYour Future: Income Protection Insurance & Salary ContinuanceWork/Life Balance: Generous Bereavement & Compassionate leaveYour Wellbeing: Private Health Insurance discount, Primary & Secondary Paid Parental leave, Death & TPD InsuranceDiversity & Inclusion: Committed to Welcoming, Celebrating and Thriving on DiversityTraining: Hands-On, Team-Customized, including SS&C UniversityExtra Perks: Discounts on fitness clubs, travel and more!What You Will Get To Do:Business Unit: SS&C Global Investor & Distribution Solutions (GIDS)Location: Sydney or MelbourneEmployment Type: Full TimeReporting Line: Direct: Head of Risk & Compliance, Asia PacificDotted: UK Director, Data ProtectionRole PurposeSS&C is seeking an experienced Data Governance and Protection Officer (APAC Privacy Officer) to lead and embed data protection and privacy practices across the Global Investor & Distribution Solutions (GIDS) business in Asia Pacific.This role will be responsible for establishing, enhancing, and maintaining a robust Data Protection and Privacy Framework, ensuring alignment with regulatory obligations (particularly in Australia) and the global SS&C GIDS Data Protection Framework.The role operates within the Second Line of Defence (Line 2) and will work closely with business, technology, and product teams to ensure privacy, protection and data governance considerations are embedded in business operations, product development, and emerging technologies, including AI.Key Responsibilities Data Protection & Privacy FrameworkDevelop, implement, and maintain the APAC Data Protection Framework, aligned to global GIDS standardsEnsure compliance with applicable privacy laws, including the Australian Privacy Act, the Australian Privacy Principles and other relevant APAC regulationsEmbed consistent data governance, privacy, and protection standards across the business Privacy Risk & AssessmentsLead and oversee Privacy Impact Assessments (PIAs) and data risk assessmentsProvide guidance on the identification, assessment, and mitigation of privacy and data risksMaintain oversight of key privacy risks, incidents, and control effectiveness Business & Product AdvisoryPartner with Product, Technology, and Business teams to:o ensure privacy-by-design and data protection principles are embedded in solution designo support new product development and change initiativesProvide subject matter expertise on data handling, cross-border transfers, and regulatory obligations AI, Data Governance, Protection & Emerging TechnologySupport the business in assessing and governing the use of AI and emerging technologiesEnsure appropriate data governance and protection frameworks are in place to support responsible AI adoptionProvide oversight to ensure compliance with privacy and ethical data use standards Incident Management & Regulatory EngagementProvide oversight and guidance on privacy incidents and breachesSupport regulatory reporting obligations where requiredAct as a key point of contact for privacy-related regulatory matters in APAC Training & AwarenessDevelop and deliver privacy and data protection training programsPromote a strong privacy and data protection culture across the organisation Governance & Reporting Establish and support privacy governance forums and reporting frameworks Provide regular reporting to:APAC Risk & Compliance leadershipGlobal Data Protection Office Support audits, reviews, and assurance activities Global Alignment & CollaborationWork closely with the UK Director, Data Protection to ensure alignment with the global GIDS Data Protection FrameworkCollaborate with the broader Global Data Protection Office and enterprise Line 2 teamsContribute to global initiatives and continuous improvement of data protection practicesKey RelationshipsHead of Risk & Compliance, APACUK Director, Data ProtectionGlobal Data Protection OfficeProduct, Technology and Transformation teamsLegal, Risk, and Compliance stakeholdersExternal regulators and auditors (as required)What You Will Bring:Proven experience in data protection, privacy, or data governance roles (ideally within financial services). Minimum 5 years experience preferred.Strong knowledge of:Australian Privacy Act, Australian Privacy Principles and APAC privacy regimesData governance and protection frameworks and practicesRegulatory expectations in outsourcing / financial services environmentsExperience supporting product development and technology changeFamiliarity with AI governance, data ethics, and emerging technology risksRelevant qualifications or certifications (e.g. CIPP, CIPM, Law, Risk/Compliance) preferredKey Skills & AttributesStrong stakeholder engagement and influencing skillsAbility to operate both strategically and hands-onHigh level of commercial and risk-based judgementAbility to work across global and regional teamsStrong communication skills with ability to translate regulatory requirements into practical outcomesRole ScopePrimary focus: AustraliaBroader remit: Asia Pacific, with scope expanding as the business growsSupported locally by the APAC Risk & Compliance team (Line 2)Supported globally by the SS&C Data Protection OfficeSummaryThis is a critical role responsible for establishing and maturing SS&C’s data protection capability in APAC, ensuring the business is well positioned to manage increasing regulatory expectations, support innovation (including AI), and maintain strong client and regulatory trust.Unless explicitly requested or approached by SS&C Technologies, Inc. or any of its affiliated companies, the company will not accept unsolicited resumes from headhunters, recruitment agencies, or fee-based recruitment services.Applications will be accepted on an ongoing basis until the position is filled.SS&C Technologies is an Equal Employment Opportunity employer and does not discriminate against any applicant for employment or employee on the basis of race, color, religious creed, gender, age, marital status, sexual orientation, national origin, disability, veteran status or any other classification protected by applicable discrimination laws.