Data Protection Expert @Ing Hubs Ro

Details

Discover ING Hubs Romania

ING Hubs Romania offers 130 services in software development, data management, non-financial risk & compliance, audit, and retail operations to 24 ING units worldwide.

We started out in 2015 as ING’s software development hub, then steadily expanded our range to include more services and competencies. Now we provide borderless services with bank-wide capabilities and several expert communities.

ING Hubs Romania employs more than 1800 colleagues active in Data Management, Touchpoint Channels & Integration, Core Banking, and Global Products.

We enjoy a flexible way of working and a highly collaborative environment, where fair and constructive feedback is encouraged.

For us, impact is the driver of our work. We are guided by a shared desire to make the world a better place, one innovative solution at a time.

Responsibilities

• Deliver day-to-day data protection executive services to ING Group entities.
• Work closely with Chapter Lead Data Protection Executive Services, DPE teams, DPO teams, and Group Data Protection Executive Office.
• Monitor and support ING Unit’s compliance with ING’s Global Policy for Data Protection (GPDP) and alignment with ING Group’s personal data strategy.
• Drive implementation of GDPR and relevant legislation through governance, data inventory, data policies, processes, and controls.
• Provide 1st line support and operational assistance on data protection matters for business lines and support functions.
• Monitor implementation of GPDP local and global procedures and other relevant legal acts, regulations, policies, and best practices.
• Cooperate during yearly key control testing (KCT) and assist with fulfillment of KCTs.
• Create awareness and deliver trainings on data protection compliance.
• Assist in investigations of data breaches, manage breach notifications, resolution, and remedial actions.
• Manage filling of Records of Processing Activities with involved stakeholders.
• Provide assistance in performing Data Protection Impact Assessments, Legitimate Interest Analysis, Transfer Impact Assessments.
• Manage retention periods of personal data and necessary deletion/destruction actions.
• Prepare and report on GPDP related metrics and activity reports to stakeholders.
• Advise contract owners on initial data protection assessments for 3rd party contracts.
• Participate in local implementation of global GPDP programs.
• Engage with data protection responsible persons to improve personal data protection.

Requirements

• Bachelor’s degree with approximately 3 years of professional experience in control, audit, consultancy services, compliance, or legal field related to data protection, preferably in banking or IT.
• Knowledge of national and European data protection laws and business sector.
• Understanding of processing operations, technologies, and data security.
• Good understanding of banking environment, governance structures, products, services, and operational flows.
• Good stakeholder management skills.
• Knowledge of data governance, data quality, and data ethics is a plus.
• Legal background and relevant data protection qualifications (CIPP/E, CIPM, CIPT) are a plus.
• Ability to develop working processes that provide structure and discipline.
• Experienced user of Microsoft Office (Word, Excel, PowerPoint).
• Very good organizing skills, team player, strong communication, negotiation, analytical skills, problem-solving oriented, logical, open-minded, able to work independently.
• Advanced English (writing, speaking).

Benefits

• Collaborative and flexible work environment.
• Opportunity to work on impactful solutions within a large global bank's ecosystem.

Official privacy notices available on ING website regarding personal data processing during recruitment process.