Job
Description
Role Description Legal Legal is responsible for managing the legal risk of Deutsche Bank Group. Our mission is to ensure that legal services are provided to the bank with the goals of protecting its integrity and reputation and managing legal risk to make transactions viable and safe. We partner with Risk, Regulation, Compliance, Group Audit and others to provide a proactive integrated risk management approach. We work closely with managers to coordinate activities across business lines so we avoid violations of laws. We make sure the Bank has up-to-date information on regulatory and legal changes and continues to be seen as a trusted, respected market participant. Group Data Privacy (GDP) Group Data Privacy (GDP) is an independent 2nd Line of Defense risk type control function within Legal which defines the risk management framework for data protection and privacy risks. GDP is located in Frankfurt, New York, London, and Berlin and Bangalore organized in a matrix structure with regional Data Protection Officers (DPOs) and Business Partners providing guidance to Business Divisions and Infrastructure Functions. Moreover, GDP manages a global network of local, internal data protection officers and rolled-out a controls framework in order to safeguard Deutsche Banks integrity and reputation and to ensure the correct processing of personal data entrusted to us. As part of the TPRM process, as a 2LoD control function, GDP is mandated to review third party outsourcing activities adherence with data privacy requirements. Your key responsibilities Support GDP Business Partner and regional Data Protection Officer analysing technology projects regarding data privacy related safeguards. Support analysing policy statements of other Risk Type Control (RTC) Functions regarding compliance with data privacy related technical requirements & standards. Co-ordinate with Governance Process Owner for effective integration of Data Privacy Controls as well as interaction between governance tools (including IT and Data Management) and GDP toolset. Develop and maintain GDPs Reporting based on GDP toolset as well as other RTC and 1LoD sources (for MIS/KPI and other purposes). Advise, train and support GDP toolset user community and collaborate with GDP Business Partners and local DPOs to enhance the toolset. Manage and train 1LoD community and govern annual attestation process for regulatory data privacy documentation. Technical maintenance, administration and further development of GDP Intranet presence. Develop/maintain knowledge of the data privacy regulatory requirements applicable to DB incl. the EU General Data Protection Regulation (GDPR) and remain up to date with relevant regulatory requirements and industry trends. Maintain close collaboration with other functions within GDP Berlin such as Controls Assurance, Law Monitoring, and Training & Awareness. Provide ad hoc support, e.g., for Controls Assurance or Third Party Risk Management activities, when required. Your skills and experience Skills & Qualifications University degree, preferably in Data Privacy or Computer Science Several years of professional experience in advise and implementation of technical privacy safeguards or IT experience in software development/maintenance Experience with Data Privacy safeguards deriving from laws and regulations Good understanding of state-of-the-art IT security concepts, measures and techniques Certifications in Data Privacy, e. g., IAPP CIPT or CIPP/E, or Information Security, e.g., CISSP or Microsoft Certified: Security, Compliance, and Identity Fundamentals are a plus Analytical skills, the ability to work in an agile environment and working to tight deadlines Good knowledge of information security requirements and state-of-the-art solutions Good understanding of the needs in regulated industry sectors such as financial services High level of competence in making formal (written or oral) presentations and recommendations in a corporate setting English proficiency (oral and written) a must. German a plus Competencies Excellent verbal and written communication skills Ability to articulate issues in plain and clear language Strong communication and relationship building skills Ability to handle stress and time sensitive demands Strategic and proactive approach to problem identification, analysis and resolution Ability to work independently, with minimal to no oversight Ability to work in an intercultural environment
