As a leading financial services and healthcare technology company based on revenue, SS&C is headquartered in Windsor, Connecticut, and has 27,000+ employees in 35 countries. Some 20,000 financial services and healthcare organizations, from the world's largest companies to small and mid-market firms, rely on SS&C for expertise, scale, and technology.
Job Description
Data Protection Officer
Locations: Melbourne, Australia| Hybrid
Get To Know Us:
SS&C is leading the way. We continue to look for todays and tomorrow’s brightest talent, those that embody a spirit to improve not only their lives, but those around them. From college students to seasoned and experienced professionals, we encourage you to apply. SS&C prides itself on hiring diverse, honest, dynamic individuals, who value collaboration, accountability, and innovation to name a few.
Why You Will Love It Here!
Flexibility: Hybrid Work Model
Your Future: Income Protection Insurance & Salary Continuance
Work/Life Balance: Generous Bereavement & Compassionate leave
Your Wellbeing: Private Health Insurance discount, Primary & Secondary Paid Parental leave, Death & TPD Insurance
Diversity & Inclusion: Committed to Welcoming, Celebrating and Thriving on Diversity
Training: Hands-On, Team-Customized, including SS&C University
Extra Perks: Discounts on fitness clubs, travel and more!
What You Will Get To Do :
Business Unit: SS&C Global Investor & Distribution Solutions (GIDS) Location: Sydney or Melbourne Employment Type: Full Time Reporting Line:
Direct: Head of Risk & Compliance, Asia Pacific
Dotted: UK Director, Data Protection
Role Purpose
SS&C is seeking an experienced Data Protection Officer (APAC Privacy Officer) to lead and embed data protection and privacy practices across the Global Investor & Distribution Solutions (GIDS) business in Asia Pacific.
This role will be responsible for establishing, enhancing, and maintaining a robust Data Protection and Privacy Framework, ensuring alignment with regulatory obligations (particularly in Australia) and the global SS&C GIDS Data Protection Framework.
The role operates within the Second Line of Defence (Line 2) and will work closely with business, technology, and product teams to ensure privacy, protection and data governance considerations are embedded in business operations, product development, and emerging technologies, including AI.
Key Responsibilities
1. Data Protection & Privacy Framework
Develop, implement, and maintain the APAC Data Protection Framework, aligned to global GIDS standards
Ensure compliance with applicable privacy laws, including the Australian Privacy Act, the Australian Privacy Principles and other relevant APAC regulations
Embed consistent data governance, privacy, and protection standards across the business
2. Privacy Risk & Assessments
Lead and oversee Privacy Impact Assessments (PIAs) and data risk assessments
Provide guidance on the identification, assessment, and mitigation of privacy and data risks
Maintain oversight of key privacy risks, incidents, and control effectiveness
3. Business & Product Advisory
Partner with Product, Technology, and Business teams to:
o ensure privacy-by-design and data protection principles are embedded in solution design
o support new product development and change initiatives
Provide subject matter expertise on data handling, cross-border transfers, and regulatory obligations
4. AI, Data Governance, Protection & Emerging Technology
Support the business in assessing and governing the use of AI and emerging technologies
Ensure appropriate data governance and protection frameworks are in place to support responsible AI adoption
Provide oversight to ensure compliance with privacy and ethical data use standards
5. Incident Management & Regulatory Engagement
Provide oversight and guidance on privacy incidents and breaches
Support regulatory reporting obligations where required
Act as a key point of contact for privacy-related regulatory matters in APAC
6. Training & Awareness
7. Governance & Reporting
- Establish and support privacy governance forums and reporting frameworks
- Provide regular reporting to:
o APAC Risk & Compliance leadership
o Global Data Protection Office
- Support audits, reviews, and assurance activities
8. Global Alignment & Collaboration
Work closely with the UK Director, Data Protection to ensure alignment with the global GIDS Data Protection Framework
Collaborate with the broader Global Data Protection Office and enterprise Line 2 teams
Contribute to global initiatives and continuous improvement of data protection practices
Key Relationships
Head of Risk & Compliance, APAC
UK Director, Data Protection
Global Data Protection Office
Product, Technology and Transformation teams
Legal, Risk, and Compliance stakeholders
External regulators and auditors (as required)
What You Will Bring:
o Australian Privacy Act, Australian Privacy Principles and APAC privacy regimes
o Data governance and protection frameworks and practices
o Regulatory expectations in outsourcing / financial services environments
Experience supporting product development and technology change
Familiarity with AI governance, data ethics, and emerging technology risks
Relevant qualifications or certifications (e.g. CIPP, CIPM, Law, Risk/Compliance) preferred
Key Skills & Attributes
Strong stakeholder engagement and influencing skills
Ability to operate both strategically and hands-on
High level of commercial and risk-based judgement
Ability to work across global and regional teams
Strong communication skills with ability to translate regulatory requirements into practical outcomes
Role Scope
Primary focus: Australia
Broader remit: Asia Pacific, with scope expanding as the business grows
Supported locally by the APAC Risk & Compliance team (Line 2)
Supported globally by the SS&C Data Protection Office
Summary
This is a critical role responsible for establishing and maturing SS&C’s data protection capability in APAC, ensuring the business is well positioned to manage increasing regulatory expectations, support innovation (including AI), and maintain strong client and regulatory trust.
Unless explicitly requested or approached by SS&C Technologies, Inc. or any of its affiliated companies, the company will not accept unsolicited resumes from headhunters, recruitment agencies, or fee-based recruitment services.
Applications will be accepted on an ongoing basis until the position is filled.
SS&C Technologies is an Equal Employment Opportunity employer and does not discriminate against any applicant for employment or employee on the basis of race, color, religious creed, gender, age, marital status, sexual orientation, national origin, disability, veteran status or any other classification protected by applicable discrimination laws.
