Senior Governance Risk and Compliance Expert

New

SquareDevConsulting, ICT

Athens, Attica, Greece; based in WarsawFull-TimeSenior

Salary not disclosed

Apply NowOpens the employer's application page

Job Details

At least 5+ years of IT experience and 4+ years in a GRC role.
Master’s degree in Computer Science, Engineering or a related technical field.
Hands-on data protection compliance experience in an ICT, EU institutional, or public-sector environment.
Experience in preparing or reviewing RoPAs, DPIAs, Data Processing Agreements, and Transfer Impact Assessments.
Experience in documenting technical arrangements relevant to data protection (access rights, logs/SIEM, etc.).
Deep knowledge of EU data protection legislation, regulatory frameworks, and privacy standards.
Ability to work with incomplete or inconsistent ICT information.
Strong communication skills for technical and non-technical audiences.
English C1 level certification.
At least 3 certifications from the provided list (CISA, CISM, ISO 27001, etc.).

Ensuring IT operations comply with data privacy laws, regulations and standards.
Conducting privacy impact assessments (DPIAs) and maintaining records of processing activities (RoPAs).
Identifying compliance gaps and proposing practical countermeasures.
Advising on data protection matters, particularly around personal data processing.
Developing, maintaining and communicating data privacy policies and procedures.
Delivering staff awareness training to foster a culture of data protection.
Acting as the contact point for queries and complaints related to data processing.
Cooperating with authorities and professional groups on data protection matters.
Managing legal aspects of information security and third-party relations.

View Full Description & ApplyYou'll be redirected to the employer's site