Governance Risk and Compliance Expert

Job not on LinkedIn

🔥 0 minutes ago

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

ARHS Group

WebsiteLinkedInAll Job Openings

1001 - 5000 employees

Founded 2003

🏢 Enterprise

☁️ SaaS

🤖 Artificial Intelligence

Enterprise • SaaS • Artificial Intelligence

ARHS Group is a company specializing in providing advanced and reliable information systems. They offer a comprehensive range of IT solutions and services, including software development, data science, infrastructure scaling, digital trust, mobile development, machine learning, and cloud integration. Their solutions are tailored to meet specific project requirements, ensuring delivery on time, within budget, and within scope. With offices in multiple European cities, ARHS Group positions itself as a key player in IT project execution and digital transformation services.

📋 Description

• Ensure compliance of IT operations with data privacy and data protection standards, laws and regulations • Assist in designing, implementing, auditing and compliance testing activities in order to ensure data and privacy compliance • Identify, document and propose countermeasures to compliance gaps (if any) • Advise on data protection matters, in particular in the context of personal data processing • Conduct privacy impact assessments • Write and/or review records of processing activity on personal data for data controllers and privacy statements • Develop, maintain, communicate and train upon the data privacy policies and procedures • Provide legal advice and guidance on data privacy and data protection standards, laws and regulations • Enforce and advocate organisation’s data privacy and data protection program • Ensure that data owners, holders, controllers, processors, subjects, internal or external partners and entities are informed about their data protection rights, obligations and responsibilities • Act as a contact point to handle queries and complaints regarding data processing • Monitor audits and data protection related training activities • Cooperate and share information with authorities and professional groups • Contribute to the development of the organization’s strategy, policy and procedures • Develop and propose staff awareness training to achieve compliance and foster a culture of data protection within the organization • Manage legal aspects of information security responsibilities and third-party relations

🎯 Requirements

• Master's degree plus 5 years of IT relevant professional experience • Minimum 4 years of experience at similar position • Minimum English language skills (CEFR): C1 • At least 3 certification among (mandatory): CISA, CISM, GSNA, GCCC, ISO 27001 Lead Implementer, ISO 27001 Lead Auditor, ISO 27005 Risk Manager, CAP, CRISC, CISSP-ISSMP, GIAC Certified ISO-27000 Specialist or equivalent certification recognized internationally (subject to acceptance as a valid credential by the Contracting EU-I) • At least 5 years of personal data protection compliance experience in an ICT, EU institutional, public-sector or similarly technology-heavy environment • At least 3 years of hands-on experience preparing, updating or reviewing RoPAs, DPIAs, DPA, TIA or related personal data protection documentation for real systems or processing activities • At least 2 years of experience analysing and documenting technical arrangements relevant to personal data protection, including access rights, privileged access, logs or SIEM/log exports, retention, hosting, data flows, support access, transfers, processors or subprocessors

🏖️ Benefits

• Employees can work remotely