Global Data Protection Specialist Policy and Advisory

Discover ING Hubs Romania

We started out in 2015 as ING’s software development hub – a distinct entity from ING Bank Romania – then steadily expanded our range to include more services and competencies.

Formerly known as ING Tech, as of 2022 we provide borderless services with bank-wide capabilities under the name of ING Hubs Romania and operate from two locations: Bucharest and Cluj-Napoca.

With the help of over 1600 engineers, risk, and operations professionals, we offer 130 services in tech, non-financial risk & compliance, audit and retail operations to 24 ING units worldwide.

Our tech capabilities remain the core of our business, with more than 1300 colleagues active in Data Management, TouchPoint Channels & Integration, Core Banking, and Global Products.

We enjoy a flexible way of working and a highly collaborative environment, where fair and constructive feedback is encouraged. Work ethics, honesty and knowledge sharing are key to our teams and we’re always looking for like-minded people.

The Mission

You will work within the vertical Data Protection Compliance, a new department within Compliance that is installed per March 2023. Data Protection is an important risk area with growing interest from both internal and external stakeholders.

As a Global Data Protection Specialist, you are focused on managing, advising and challenging risks related to the individual/data subject arising from processing of personal data by ING. Personal Data Protection is a key compliance risk that the bank needs to manage.

As a Global Data Protection Specialist, you are a member of the Global Data Protection Policy & Advisory team that ensures quality on advice & challenge of each processing of personal data with global (i.e., covering more than one country) impact. Although this is a virtual team it is expected that you travel to Amsterdam when needed.

The Global Data Protection Policy & Advisory team forms with the Data Protection Risk Management team the vertical Data Protection Compliance.

Your day to day

Even if you’ll start your day from the comfort of your home or drink your morning coffee in our office’s garden, your day will be quite similar when comes to tasks. Here are your daily responsibilities:

• You coordinate and execute activities on the Data Protection Policy and framework processes. This includes writing any new policy or underlying procedures or guidance’s;;
• You coordinate and execute activities on the Horizon Scanning processes to identify any external regulatory trends or developments, performs impact assessment and drive the actions and projects to implement;
• Support DPO’s in the Data Protection Vertical in their activities;
• You contribute to communicating a consistent approach and interpretation of GPDP (Global Personal Data Protection, our internal policy) and GDPP (Global Data Protection Policy; our binding corporate rules) via the DPC community;
• You will support final decision making on specific files and in monitoring that solutions (agreed upon with the business) are implemented;
• You will support the Global Lead DP Policy & Advisory;
• You prepare training & awareness on data protection and data retention topics, and specific topics like ethics and artificial intelligence;

How to succeed

We hire smart people like you for your potential. Our biggest expectation is that you’ll stay curious. Keep learning. Take on responsibility. In return, we’ll back you to develop into an even more awesome version of yourself.

Key competencies

• You have (global) stakeholder management and influencing skills;
• You can work in a multidisciplinary setting;
• You can work independently, think and act out of the box and take responsibility. However, when needed help and guidance is provided to grow further in the field and develop on a personal level;
• You are a team player, you trust others and can be trusted;
• Furthermore, you adhere to the ING orange code values and it is evident for you that your behavior is fully aligned with these values. You are also prepared to take the Banker’s Oath.

Your technical skills and track record

• You have professional experience with Data Protection activities or related legal experience preferably in a banking environment and you are familiar with security and IT ecosystems;
• You have in depth knowledge on GDPR regulation and, preferably, related internal ING policies;
• You have well developed collaboration skills and ability to work across functional and geographic lines;
• You have a university degree, preferably in Law, or equivalent knowledge/experience;
• You are excellent in English (verbal/written) and have good communication skills.

What’s in it for you

• Annual Performance Bonus
• Extra vacation days depending on the total length of working experience
• Flextime – our own way of working
• Monthly budget on Benefit platform
• Growth opportunities
• Defining a clear career path on short/ mid/ long term and identify the competencies you need to build/ develop to reach the next level: vertically – towards a managerial position or horizontally – towards an expert or architect level, locally or globally
• Internal mobility is encouraged
• Possibility to access International Short-Term Assignments or Long-Term Assignments
• Upskilling/ reskilling programs
• Learning & Development opportunities
• Annual training & certifications budget
• Pluralsight & e-learning platforms