SHOUG ALSUWAILEM
Riyadh
Summary
Experienced Senior Analyst in Data Governance & Privacy with expertise in implementing data governance frameworks, privacy programs, and compliance initiatives aligned with PDPL and NDMO controls. Skilled in conducting assessments, managing privacy impact assessments, developing policies, and supporting regulatory compliance across business functions. Strong background in enhancing governance practices, mitigating risks, and ensuring audit readiness.
Overview
4
4
years of professional experience
1
1
Certification
Work history
Senior Analyst – Data Governance & Privacy
Zain Telecom Company
Riyadh
2025.11 - Current
- Lead governance and privacy initiatives to ensure organizational compliance with PDPL, NDMO, and applicable regulatory requirements.
- Conduct compliance assessments and monitor implementation of NDMO controls and data governance frameworks across business functions.
- Develop, implement, and maintain data governance and privacy policies, standards, and procedures.
- Manage and maintain Records of Processing Activities (RoPA), DPIAs, and privacy assessments to support regulatory compliance.
- Perform data classification and establish best practices for secure data handling and lifecycle management.
- Identify governance, privacy, and compliance gaps through assessments and recommend remediation actions.
- Coordinate with stakeholders across IT, Legal, Compliance, and Business teams to support governance and privacy initiatives.
- Maintain compliance documentation, audit evidence, and reporting to support internal and external regulatory assessments.
- Deliver awareness and training programs related to data governance, privacy, and regulatory obligations.
- Support incident response and breach management activities in alignment with organizational and regulatory requirements.
Data Privacy Officer
Confidential
2024.02 - 2026.11
Conduct governance and compliance assessments to ensure alignment with regulatory and organizational requirements.
Develop and deliver awareness and training programs on data governance, privacy, and cybersecurity practices.
Maintain compliance evidence, records, and documentation to support governance transparency and audit readiness.
Identify and mitigate data-related risks through structured risk management practices.
Develop, implement, and enforce data governance policies, standards, and procedures.
Establish and maintain data classification and handling standards across the organization.
Perform gap analysis to identify and address weaknesses in data management and governance processes.
Collaborate with cross-functional stakeholders including IT, Legal, Compliance, and Business teams to support governance initiatives.
Support organizational training and awareness on data management and governance best practices.
Assist in incident management and regulatory compliance activities related to data governance and protection.
Data Analyst
Ryad Bank
2023.10 - 2024.02
- Improved data integrity with rigorous auditing and cleansing.
- Generated reports from extracted data for analyses.
- Analyzed large datasets, drawing meaningful conclusions and providing actionable recommendations.
- Identified trends in data to help inform decision-making processes.
Co-op Digital Transformation
Ministry of Justice
2023.01 - 2023.08
- Business Analyst and UX/UI Designer
- Successfully excelled as a Business Analyst and UX/UI Designer
- Presented a successful proposal for Najez application development
- Utilized expertise in business analysis and user experience to identify and address functionality gaps
- Train with product management and digital integration governance.
Cyber Security Trainee
Twaiq Academy
2023.03 - 2023.03
- Acquired in-depth understanding of complex security requirements.
- Demonstrated application of acquired skills and knowledge through active participation in multiple mini projects.
- Successfully led project group.
Education
Bachelor of Science - Computer Information Systems
Imam Mohammed Ibn Saud University
Skills
- Data Governance Frameworks
- PDPL Compliance
- NDMO Controls
- DPIA / RoPA / DPA
- Data Classification
- Risk and Self Assessments
- Gap Analysis
- Policy Development
- Audit Readiness
- Stakeholder Management
- Contracts and Agreements
Certification
- Certified Data Management Professional (CDMP)
- Certified Information Privacy Manager (CIPM)
Training
• Completed SDAIA training program in Data Management and Governance Principles.
• Completed SDAIA training program in Privacy Management and Personal Data Protection Practices.
• Completed advanced training in Information Privacy Management with Koenig Solutions.
• Completed advanced training in Data Management and Governance with Koenig Solutions.
• Completed advanced training in International Privacy and Compliance Frameworks with Koenig Solutions.
Timeline
Senior Analyst – Data Governance & Privacy
Zain Telecom Company
2025.11 - Current
Data Privacy Officer
Confidential
2024.02 - 2026.11
Data Analyst
Ryad Bank
2023.10 - 2024.02
Cyber Security Trainee
Twaiq Academy
2023.03 - 2023.03
Co-op Digital Transformation
Ministry of Justice
2023.01 - 2023.08
Bachelor of Science - Computer Information Systems
Imam Mohammed Ibn Saud University