Global Data Privacy Specialist

The Global Data Privacy Specialist manages Ormat’s global data privacy program, ensuring compliance with applicable data protections laws and regulations across all jurisdictions in which Ormat operates. This role is responsible for supporting and implementing all aspects of the global data protection compliance strategy and advising on matters surrounding data protection/privacy with appropriate input from the Legal and Compliance teams. The role serves as the primary point of contact for data protection/privacy matters and provides strategic guidance to management and business groups on privacy-related obligations and risks. The Global Data Privacy Specialist will also serve as the designated Data Privacy Officer (DPO) for the Company.

• Develop, implement, and oversee the company’s global data privacy program, including policies, procedures, and standards to ensure compliance with applicable data protections laws such as GDPR, CCPA/CPRA, and other international privacy regulations.

• Serve as the primary point of contact for data privacy inquiries from regulators, employees, customers, and third parties.

• Work closely with the VP, US Legal and global Legal, Compliance, Human Resources, and IT teams on privacy-related legal, regulatory, and operational issues.

• Conduct and oversee data protection impact assessments (DPIAs) and privacy risk assessments for new and existing business initiatives, products, and systems.

• Create and maintain comprehensive data maps and records of processing activities (ROPAs) across all business units and jurisdictions, including data flows, storage locations, retention periods, and legal bases for processing.

• Develop and deliver privacy training programs to employees across all departments and international operations.

• Monitor and advise on developments in data protection laws and regulations and assess their impact on company operations.

• Oversee due diligence reviews of third-party vendors and partners with respect to data privacy and security requirements.

• Develop performance metrics to measure the effectiveness of the privacy program and prepare comprehensive reports for presentation to the Chief Compliance Officer and senior leadership.

• Collaborate with IT, Cybersecurity, Human Resources, and other business groups to ensure integration of privacy principles into systems and processes.

• Manage outside counsel and consultants on data protection matters as needed.

• International travel required as necessary.

• Support special projects and perform other duties as assigned.

• Bachelor’s Degree required; advanced degree, including Juris Doctorate degree, preferred but not mandatory.

• Working knowledge of global data protections laws and regulations, including GDPR, CCPA/CPRA, and other international privacy frameworks, strongly preferred.

• Certified Information Privacy Professional (CIPP/US, CIPP/E, or CIPM) certification strongly preferred.

• Experience conducting privacy impact assessments, managing data breach response, and handling regulatory inquiries preferred.

• Experience or background in auditing or conducting internal reviews and investigations preferred.

• High level of integrity, discretion, and independent judgment.

• Strong interpersonal skills, including the ability to communicate effectively orally and in writing with global colleagues and third parties.

• Demonstrated ability to work in both a team environment and independently.

• Comfort working in a multicultural and multi-lingual environment.

• Must be able to read, write and speak English at a level which will permit the employee to accurately understand and communicate information to effectively perform the job duties. Additional languages preferred.

• Proficiency with computer software.

• Ability to work in an office environment.

• Ability to work at a computer and computer monitor and use repetitive motion for long periods of time.

• Ability to travel domestically and internationally as required.