Overview
Junior Data Protection Auditor (Entry-Level) Jobs in Lusaka, Lusaka Province, Zambia at Confidential
Title: Junior Data Protection Auditor (Entry-Level)
Company: Confidential
Location: Lusaka, Lusaka Province, Zambia
Want to break into data protection auditing – one of Zambia's fastest-growing compliance fields?
A specialist Zambian data protection & privacy compliance firm is hiring a Junior Data Protection Auditor to work alongside senior auditors on real client audits under the Data Protection Act No. 3 of 2021 and the ODPC licensed-auditor framework. You'll build hands-on expertise across audit fieldwork, evidence collection, policy review and report drafting – with the mentorship to grow into a specialist. If you're early in your career, serious about privacy and audit, and ready to work hard, this is where you start.
Responsibilities
- Assist in the planning and execution of annual and ad hoc data protection audits under the direction of a senior auditor.
- Collect and organise audit evidence from client organisations, including policies, procedures, system configurations, and processing records.
- Support the assessment of compliance with the Data Protection Act No. 3 of 2021, reviewing data processing activities, consent practices, and data subject rights mechanisms.
- Document audit findings, observations, and supporting evidence in working papers; draft sections of audit reports under supervision.
- Review data protection policies, privacy notices, data processing agreements, and internal procedures for completeness and adequacy.
- Support the promotion of data protection awareness during client engagements.
- Stay current with developments in data protection law, ODPC guidance, and international best practices.
- Assist in preparing submissions and documentation for ODPC reporting requirements.
Mandatory Requirements
- Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or a related field
- 1 to 3 years of professional or internship experience in data protection, IT auditing, cybersecurity, compliance, or a closely related field.
- Current or pending membership with the ICT Association of Zambia (ICTAZ).
- Basic knowledge and understanding of data protection principles – including lawfulness, purpose limitation, data minimisation, and data subject rights – and familiarity with the Data Protection Act No. 3 of 2021 and local ICT regulations.
Advantage / Preferred
- Progress toward or completion of CISA, CIPM, CIPP/E, CIPT, CDPSE, ISO 27001 Lead Implementer or ISO 27001 Lead Auditor.
- Student or affiliate membership with ISACA, IIA, or IAPP.
- Exposure to international data protection standards such as GDPR.
Technical Competencies
- Ability to review policy documents and identify gaps or areas of concern.
- Foundational knowledge of information security concepts including access controls, encryption, and incident management.
- Proficiency in Microsoft Office tools including Word and Excel for documentation and reporting.
- Ability to learn and apply structured audit methodologies under guidance.
Behavioural Competencies
- Eagerness to learn and develop specialist expertise in data protection auditing.
- Strong attention to detail and commitment to accuracy in documentation.
- Professional conduct and discretion when handling sensitive client information.
Location: Lusaka, Zambia (on-site)
Eligibility: Open to Zambian nationals only, in line with our regulatory and local-content commitments.
How to apply: via LinkedIn (Easy Apply)
Language: English
