DataProtectionExpert

Work within the Local Data Protection Office, acting as part of the second line of defence, supporting oversight and advisory activities to ensure compliance with data protection obligations pursuant EU Regulation 679/2016 (“GDPR”), other legislations on personal data and contributing to the independent assessment of local and global programs impacting personal data, including aspects related to information security controls and data protection by design. **Key Responsibilities:** * Support second line oversight activities on data protection programs, contributing to the assessment of compliance with GDPR requirements and providing advisory to the business and first line functions, while gaining exposure to related information security and data protection controls. * Facilitate effective communication and awareness across the Bank, promoting a sound understanding of data protection requirements and their integration into business processes and controls. * Assist in the review and challenge of Data Protection Impact Assessments (DPIAs) and support the maintenance of the Record of Processing Activities. * Provide support in incident management, including second line review and challenge on data breach assessments, cooperating with IT and Security functions on security-related events, and supporting the evaluation of data subjects’ rights requests. * Review procedures, policies, guidelines relating to data protection domains, providing independent validation and recommendations for improvement, also considering technical and organisational security measures. * Perform second line controls and independent gap analysis, supporting the identification and tracking of remediation actions, including those related to data protection and information security measures. * Support the local training programs on data protection, contributing to awareness initiatives aimed at strengthening both compliance culture and secure handling of information. **Requirements:** **Education** *