Data Protection Officer

  • Company:
    ICF Consulting Group, Inc.
  • Location:
  • Salary:
    negotiable / month
  • Job type:
  • Posted:
    7 hours ago
  • Category:

ICF International, Inc. (ICF or the Company) is a global consultancy that supports private and public sector clients across a broad range of government and commercial business lines. Many of the Company’s business units are engaged in activities that include, for example, communications, marketing, research initiatives, behavioral analytics and insights, real-time and predictive analytics. Our Company is founded on a culture of building close working relationships with our clients and among our teams. While we continue to grow in size and scope, we have gone to great lengths to maintain a culture of collaboration, inclusivity and mutual respect. This is something of which we are proud.

The services that we provide to our public sector and commercial customers sometimes involve the collection and processing of personal data, and we take our responsibility to protect such data very seriously.

Position summary

The principal role of the Data Protection Officer (DPO) is to take the lead on providing EU/UK data protection and e-privacy advice to ICF’s business units subject to, and monitoring compliance with, the EU General Data Protection Regulation for the EU and UK operations of the Company. In this role, the DPO will advise on issues arising under the EU/UK General Data Protection Regulation (GDPR) and ePrivacy Directive.

The DPO will also participate and contribute actively to ICF’s data protection and privacy compliance worldwide. In this regard, the DPO will act as a Company-wide advisor on GDPR and global privacy and data protection issues raising similar issues as the GDPR in relation to ICF activities that entail the processing of personal data in the context of providing services to clients.

The DPO will act as a thought leader in this domain and a reputational steward of the ICF brand.

The DPO will be supported by a team and other members of staff who are designated for this purpose and have the necessary experience. The DPO, and any staff members designated to support the DPO, will be easily accessible to Belgium/UK-based employees of the Company as well as by EU data subjects.

In his/her role of Company DPO under the GDPR, the DPO’s business contact details (a postal address, telephone number, and e-mail address) will be notified to relevant supervisory authorities (SAs). These details will also be notified to data subjects (employees, users and third parties). The DPO’s business contact details will be published on the Company’s privacy notice published in the Company’s website.

key responsibilities

The DPO shall manage a team within his/her department that provides advice to the UK/EU ICF business on data protection and privacy issues and will advise globally on GDPR compliance. The Privacy Lead/DPO shall, when carrying out his or her responsibilities, have due regard to the risks associated with the Company’s processing operations taking into account the nature, scope, context and purposes of the processing. The DPO shall provide thought leadership on the digital use of personal data, including the reliance on new technologies (like machine learning). The DPO shall, together with ICF’s US Privacy Lead, be responsible for formulating ICF’s global data protection and privacy policy and introduction any changes to such policies, and provide advice on subsequent business implications. The DPO shall advise the business on ‘privacy by design’. He/she shall be closely in touch with the business about projects under way in order to proactively spot issues and mitigate risks. The DPO must arrange for the continuous data protection and privacy training of ICF staff involved in processing of personal data and continuously increase the level of expertise in data protection and related privacy and cybersecurity matters within ICF. The DPO must carry out all the obligations set forth under Article 39 of the GDPR. These tasks will be carried out independently. This includes: (a) acting as the point of contact and cooperate with Belgian/UK SAs on issues relating to the processing of personal data, including in the context of enquiries, investigations, complaint handling, prior consultation related to the results of DPIAs, and where there is a need to demonstrate Company’s compliance with the GDPR and relevant data protection rule; and (b) acting as a point of contact for data subjects on all issues related to the processing of their personal data by the Company and the exercise of their rights under the GDPR. The DPO shall monitor compliance with the GDPR, other relevant national and EU/UK data protection provisions and policies adopted by the ICF in relation to the protection of personal data and cooperate in monitoring compliance globally. The DPO may be asked to coordinate with the ICF’s Government Affairs team in terms of external legislative initiatives and participation in lobbying groups on behalf of the Company.


The DPO must be available to respond to questions and issues that arise relating to the Company’s obligations under the GDPR and related legislation from across the Belgian/UK offices of the Company. He/she shall also cooperate in the response of global data protection and privacy questions. The DPO must have a flexible schedule and be available for travel within Europe as necessary for training, compliance coordination, data breach planning and response, and the performance of other duties.


+ Domain expertise: A well-respected EU privacy professional with deep expertise on data protection (GDPR) and EU e-privacy, data management and information governance. Extensive knowledge of global privacy regulations and trends. A minimum of 5 years of experience in a similar role and an understanding of the data protection risks faced by large, multi-jurisdictional organizations.

+ Leadership: History of leadership by way of collaboration. Credible ambassador and thought leader who can promote privacy, data management, information governance within and outside the Company. He/she shall have breath and credibility working in a complex, international environment.

+ Effective business partnership: Service minded approach with the view to future fit the Company. Excellent senior stakeholder management, including the ability to communicate effectively. Ability to work with a variety of stakeholders, internally and externally, including, government. Ability to provide clear advice and direction even when faced with competing demands and short deadlines.

+ Management: The competence to manage a multi-country team and projects involving people at all levels and with different aims.

+ Work Ethics: The ability to conduct the role independently and with integrity and to exercise professional judgement.

Working at ICF

Working at ICF means applying a passion for meaningful work with intellectual rigor to help solve the leading issues of our day. Smart, compassionate, innovative, committed, ICF employees tackle unprecedented challenges to benefit people, businesses, and governments around the globe. We believe in collaboration, mutual respect, open communication, and opportunity for growth. If you’re seeking to make a difference in the world, visit to find your next career. ICF—together for tomorrow.

Brussels, Belgium (BE75)Need help? We’re

About ICF

ICF (NASDAQ:ICFI) is a global consulting services company with over 7,000 full and part-time employees, but we are not your typical consultants. At ICF, business analysts and policy specialists work together with digital strategists, data scientists and creatives. We combine unmatched industry expertise with cutting-edge engagement capabilities to help organizations solve their most complex challenges. Since 1969, public and private sector clients have worked with ICF to navigate change and shape the future. Learn more at

© 2008-2020 by Expertini Limited. Belgium Jobs - Expertini. Empowering Employment Globally. All rights reserved.
Our essential accepted cookies, privacy policy and terms.
This site is also protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.