Sr Data Protection Expert

Can you enable ING The Netherlands in being compliant by desire and design? We are looking for a experienced data protection risk management expert.   

The opportunity

Compliance is transforming at a rapid pace from a qualitative to a more data driven field of expertise. The Compliance department not only closely monitors compliance with the (unwritten) rules, but also compliance with the moral compass. The integrity we conduct, the considerations we make and how transparent we are in this, greatly contribute to the confidence that customers, employees and society have in ING.

Personal Data Protection is one of the key Compliance factors for ING, with a fine-exposure of up to 4% of ING group annual revenue in case of serious systemic events. You will be a key member of the newly created Data Protection (DP) team within Compliance. This new team is responsible for leading and developing the approach for managing and monitoring of the compliance risks arising from processing personal data by ING The Netherlands.

The DP team is to be the internal local authority in the area of compliance data protection risk management and is responsible for ensuring that the structural solutions that are being put in place for our personal data protection-, data privacy- and data retention activities, live up to all the internal and external compliance requirements.

In the DP team, you contribute to setting the standards for the DP area and contribute to developing, innovating and safeguarding (knowledge in) the area of data protection and -retention risk management. And also contribute to defining the DP risk appetite and related risk management processes. As a team we are also responsible for proactive monitoring and challenging the DP-processes and -practices in 1st line activities.

DP team challenge

The strategic challenge for the DP team will be to improve the data protection risk management processes throughout the full compliance risk cycle, with the need for a multi-disciplinary approach. You will bring solid experience of the legal aspects related to data protection to the team ánd you are eager to strengthen your knowledge on other aspects related to data protection.

As member of the team, the internal contacts will be multiple; first line colleagues of all tribes, legal and in the 2nd line with the other ING DPO teams and with other risk functions. Also, external contacts and networking will be key, in the various Data Protection Networks in the financial business sector.

Roles and responsibilities

Key result areas for this expert role:

• Offering integrated DP advice on (strategic) business initiatives.
• Provide advice on data protection related assessments and ensure adequate follow up on identified risks.
• Monitoring and reporting on the proper operating effectiveness and adherence to applicable laws, regulations, policies, as well as the effectiveness of the controls.
• Horizon scanning to identify new (legal) developments which potentially can impact INGs data protection position.
• Design effective awareness & training activities in close collaboration with the DPE office NL. Offer training sessions for ING expert groups.
• Contribute to the design of effective approaches / guidance with the CDMO-/DPE Offices, with NFR/IT Risk and with ING Group Risk on DP matters.     
• Ensuring effective follow up by ING on impactful data breaches including root cause analyses and lessons learned. 
• Extending and maturing DP risk management, by fully embedding data protection in the compliance risk management cycle (preventive and detective) and with proper data protection governance and -reporting.

How to succeed

We hire smart people, like you for your potential. Our biggest expectation is that you will stay curious. Keep learning. Take on responsibility. In return, we will back you to develop into an even better version of yourself.

In terms of competencies and experience, you are a team player and have:

• Specialized (legal and/or technical) data protection knowledge;
• Strong organizational sensibility and stakeholder management skills;
• Strong communication and analytical skills;
• The capacity to quickly learn new content and acquire new networks;
• A pragmatic, thorough and result driven approach;
• Analytical skills and you focus on data and facts;
• Actively ask for help and feedback, but also dare to give feedback/Speak Up;
• Work well together and help others to be successful;
• Are result oriented in getting things done.

Specific knowledge and experience

• Law degree in a relevant area;
• 3+ years of work experience in the financial sector;
• 5+ years of experience in advising on GDPR assessments related to business initiatives;
• Fluent Dutch and English language skills;
• Good knowledge of and practical experience in Compliance/NFR controls, monitoring and reporting.

The team

You will be part of a new team of app. 7 FTE and work closely with the Data Protection Officer (DPO). You will manage projects independently. You will help to build the team from the start.  

Rewards and benefits
We want to make sure that it’s possible for you to strike the right balance between your career and your private life. Find out more about our employment conditions. The benefits of working with us at ING include:

• A salary tailored to your qualities and experience

• 24-27 vacation days depending on contract

• Pension scheme

• 13th month salary

• 8% Holiday payment

• Mobility card

• Hybrid working

• Personal growth and challenging work with endless possibilities

• An informal working environment with innovative colleagues

About us
Curious about how ING empowers people and businesses to move forward? Discover what we do and what we can offer you.

Questions?
Contact the recruiter attached to the advertisement. Want to apply directly? Please upload your CV and motivation letter by clicking the ‘Apply’ button.