Personal Data Protection Control Specialist - Brussels, België - ING
Beschrijving
Personal Data Protection control specialist
Your role & work environment
The Personal Data Protection Executive (DPE) is accountable for the implementation of personal data protection in ING BE and the compliancy with related policy. The DPE ensures the day-to-day execution of personal data protection - privacy (GDPR) topics and is supported by the ING Belgium Privacy Office.
We are looking for a personal data protection control specialist that will be the product owner of the Privacy Office. You will report to the DPE.
You are a business partner in 1st line of Defence, who fosters "Safe business" awareness to ensure that privacy risks of the business are under control. This also entails that you manage Data Protection services (amongst other DPIAs, transfer impact assessments, data subjects' rights and personal data breaches management), monitoring and controls.
ING Belgium Privacy Office is part of the CoE Safe Business & Regulatory Affairs aiming to keep ING Belgium ́s business safe. You contribute to business risk and control functions to ensure that ING's activities are in line with regulatory requirements and run smoothly in such a way that it can be demonstrated to the regulators and the outside world. You contribute to the integrity of ING's products, services, employees and compliance with respect to the outside world.
Your key responsibilities
As experienced Personal Data Protection Control Specialist, you will need to:
o Support the Data Protection Executive (DPE) with the ownership on data protection risk management and follow the appropriate procedures to assess and mitigate data protection risk while operating simple standardized business processes, in order to protect the organization from undue risks.
o Support the Data Protection Executive with the creation and maintenance in collaboration with Data Protection Officer (DPO) and Chief Data Office (CDO) of a framework for the development, implementation and updating of local personal data protection Policy. Advise others on how to design new processes and systems that meet professional standards.
o Act as a business partner to important internal customers and manage relationships with them, while taking guidance from senior colleagues. Ensure that the Business Unit will process Personal Data in accordance with this local framework. Anticipates and balances the needs of multiple stakeholders.
o Act as the GDPR Product Owner by defining and leading the yearly GDPR remediation roadmap. Use comprehensive knowledge and skills to act independently while guiding and training the Privacy Office team on developing, monitoring, interpreting, and understanding policies and procedures, while making sure they match organizational strategies and objectives.
o Lead the GDPR Core Team and participate to the Privacy Alignment Meeting and other relevant governance bodies for personal data protection. You support the DPE in preparing the Data Council , the Non-Financial Risk Committee and Bank DPO/DPE meetings.
o Provide specialist advice on the interpretation and application of Personal Data Protection policies and procedures, resolving complex or contentious queries and issues and enabling others to take appropriate actions. Identify and evaluate complex, expertise-led solutions against a range of criteria to find the ones that best meet business needs. Applies knowledge of business and the marketplace to advance the organization's goals. Uses compelling arguments to gain the support and commitment of others.
o Investigate all kinds of incidents & reports and provide expert advice to more senior colleagues. Minimize risk exposures and ensure adherence with regulatory standards by working with all internal functions to make sure compliance programs are properly implemented.
o Help management to implement quality assurance change initiatives and/or make continuous operational improvements. Provide reporting to management with regards to the implementation of GDPR action plan and related KPIs. Know the most effective and efficient processes to get things done, with a focus on continuous improvement.
o Perform key control testing and control evaluation for GDPR related frameworks. Hold self and others accountable to meet commitments. Explore issues or needs, establishing potential causes and barriers as well as related issues. Take ownership and follow-up on risk items at different stages.
o Execute a communications plan within established internal communication systems and procedures. Create and maintain risk awareness by assessing the need for specific 1st line training to employees. Customize training to 1st line needs and set-up yearly NFR Training and Awareness Plan for GDPR topic. Develops and delivers multi-mode communications that convey a clear understanding of the unique needs of different audiences.
We are looking for
An experienced colleague with a talent for taking it on and making it happen, enthusiasm for helping others to be successful and a knack for always being a step ahead. In other words, you strive to bring fresh ideas to life and embrace challenges in a fast changing and complex environment. You are a naturally collaborative person who listens and invests in others to achieve common goals. You love to challenge the status quo and are eager to propose creative solutions to problems.
As experienced Personal Data Protection Control Specialist you will also need :
· master level – Master in law is an asset,
· extensive expertise and experience in GDPR implementation and compliancy is a must
· thorough knowledge of risk management and excellent analytical skills
· strong coordination & organization skills (as product owner),
· strong stakeholder management skills,
· able to cope with stress and fast-moving environment,
· good knowledge of the bank is a +
· good knowledge of English and French/Netherlands (oral and written),
We offer you
Within the Centre of Expertise Safe Business & Regulatory Affairs – Data Privacy Office, you can count on a range of opportunities with:
a clear purpose, a unique offer where:
· personal growth & challenging work with endless opportunities to realise your ambitions.
· an informal, dynamic environment with innovative colleagues support your endeavours and where the right balance between personal and professional life is respected
· a progressive and agile way of working, where new ideas are valued ahead of convention.
· we give you the possibility to develop your skills thanks to the expertise of our international teams, and our knowledge sharing culture.
· we give you the possibility to participate in courses and trainings.
· we challenge the working environment & a steep learning curve