EB18B - L Card

Back to search result

Data Protection Officer - (IT Risk Management) @ING Hubs Romania

Employee | Compliance / Legal / Tax | Professional | Bucharest | 2024-05-07 | REQ-10073171


Discover ING Hubs Romania

ING Hubs Romania offers 130 services in software development, data management, non-financial risk & compliance, audit, and retail operations to 24 ING units worldwide, with the help of over 1700 high-performing engineers, risk, and operations professionals.

We started out in 2015 as ING’s software development hub – a distinct entity from ING Bank Romania – then steadily expanded our range to include more services and competencies.

Now we provide borderless services with bank-wide capabilities and operate from two locations: Bucharest and Cluj-Napoca.

Our tech capabilities remain the core of our business, with more than 1500 colleagues active in Data Management, Touchpoint Channels & Integration, Core Banking, and Global Products.

We enjoy a flexible way of working and a highly collaborative environment, where fair and constructive feedback is encouraged.

For us, impact isn't a perk. It's the driver of our work.

We are guided and rewarded by a shared desire to make the world a better place, one innovative solution at a time. Our colleagues make it their job to do impactful things and they love doing it in good company. Do you?

The Mission

You will work in an international environment within the risk area of Data Protection, a new department within ING group Compliance (2nd line of Defence). Data Protection is a key compliance risk that ING bank needs to manage with growing interest from both internal and external stakeholders. We are looking for a new and enthusiastic colleague.

As a Global Delegate Data Protection Officer – Risk management specialist you are a member of the Global Data Protection Risk Management team, which is responsible for global oversight, monitoring and reporting within ING on the Global Personal Data Protection Policy (GDPR) and the Global Record Retention Policy risks. With your knowledge of IT security you will give insight of IT related issues with an impact on data protection, and advise on priorities and solutions.

You will work with colleagues all over the world and have the freedom to organize your work according to your own insights within the team setting. There is room for personal development and further growth in this position.

The risk management team is in Amsterdam and Bucharest, occasional travelling to Amsterdam is therefore part of the function.

The Global Data Protection Risk Management team forms together with the Data Protection Policy & Advisory team the vertical Data Protection Compliance (DPC).

Your day to day

  • As a Data protection risk management specialist with a focus on IT (risk) areas you have knowledge on the relevant components for IT management and risk and you provide guidance and support to DPC with understanding of the impact of IT related issues;
  • You execute activities for one of more specific processes, business areas and/or projects of the compliance risk management cycle for data protection risk, especially focusing on the impact of IT related issues;
  • Depending on your ambition and expertise, you will be focusing on the data protection risk management framework, monitoring, and reporting of bank-wide risks, global processing risks and emerging risks;
  • You are involved the consolidated compliance data protection risk reporting;
  • You contribute to the design of monitoring methods for data protection risks and specific risk analysis on data protection risks. Other topics can be related to challenge and advise activities on bank wide risks, such as storage limitation, third party data processors and cookie compliance and/or formulating 2nd line responses on new and emerging risks;
  • You will be part of task groups, expert groups and /or project team and contribute to the execution of deliverables;
  • You track progress and results on ING Global remediation actions;
  • You contribute to quality of and knowledge on risk management, monitoring and reporting;
    • You monitor Data Quality of Data Protection Compliance related risks, issues and events in the ING risk management tool (iRisk/IBM OpenPages);
  • You participate in (multi) disciplinary (project) compliance risk teams and contribute to ensure alignment with other risk area’s such as Non-Financial Risk, IT risk and data risk.

What you’ll bring to the team

  • You have in depth knowledge on GDPR and data protection risk and issues;
  • You have 5+ years professional experience in information risk management or IT security, preferably within a banking environment or 5+ years professional experience with IT  audit;
  • You have excellent collaboration skills and ability to work across functional and geographic lines;
  • You have a university degree or equivalent;
  • You have an excellent level of English (verbal/written).

Reports to Global Lead Data Protection Risk Management

Location: Bucharest, Romania


Back to top

Please be aware that the recruitment procedures, (labour) regulations and labour agreements of Romania apply.

Yes No