This Job Vacancy has Expired!

Compliance/GDPR Project Manager (End Customer) (m/f)


Posted on May 2, 2021 by emagine

Barcelona, Spain
10 May 2021
Annual Salary

Skills required:
- 8 years of experience in Project management
- Has experience in managing projects related to compliance (at EU level preferably, knowledge of GDPR and/or similar regulation)
- Practical/hands on approach to deliver concrete results and to structure the environment in the way that is necessary to drive actions
- Able to support the implementation of the required governance
- Business acumen: Familiar insurance/assistance
- Experience in project management in a global environment
- English - Fluent mandatory
- Communication skills at various levels of hierarchy/seniority levels/countries/cultures: tailor communication to varying audiences, quickly incorporate feedback and adjust accordingly
- Adapts fast to changing requirements, not afraid of unclear and ambiguous situations where you need to invent the path for success
- Experience on Agile methodologies/frameworks (certification is definitely a plus)
- Good knowledge of budgeting and resource allocation procedures

For our client in the Insurance/Banking sector, we are looking for a Project Manager especialized on Compliance and GDPR:

Start: ASAP
Place: BARCELONA or PARIS (depending your location)
Duration: 6 months - 1 an
Contract: Freelance or Permanent (The client is open for both contracts)

Context of the job: July 16, 2020: the Court of Justice of the European Union released a decision Schrems II which: 1/Invalidated the transfers of personal data from EU to US based on the Privacy Schield and 2/Asked companies having data flows out of the EU to implement supplementary measures (technical, security, etc) and tools to ensure the protection of data is reinforced in jurisdictions which do not provide a level of protection as strict as in EU. October : the French Council of State acknowledges the existence of a risk of data transfer where health data is hosted by a company ( in this case Microsoft) having its parent company in US and data may as such be accessed by US authorities even when hosted in EU. Based on these decisions: CNIL (i) requested to the Council of State a transition period to either change MSFT for a EU provider or set up additional safeguards and recommended EU companies using US IT providers to do the same and (ii) asked French companies to take appropriate actions to be compliant with Schrems II decision. Current situation within the Group: Schrems II impacts are closely followed by the Group This decision impacts several functions within the organization to ensure that all impacts from a customer perspective are well evaluated ( IT architecture, criteria of selection of our providers, stronger security measures, contracts review, data flows inventory etc),

To have a better visibility on data flows out of EU (leverage on GDPR works), track the gaps if any in security measures, build/adapt the current IT strategy. Be compliant with CNIL recommendations and anticipate any potential similar position from other EU DP authorities.

Setup the appropriate project governance with IT and business representatives (including escalation process)
Organise and lead SteerCos with the proper monitoring/tracking/decision making material
Manage the project's budget, risks and issues and take corrective measurements or escalate to Project Sponsors
Support in the coordination of all IT & Business teams involved within the Project (different functional domains, companies, entities and departments) to assure seamless deployment; stakeholders management
Prepare the right reporting, tailored to the audience targeted
Coordinate the various streams and their interdependencies (including with other projects)
Right staff sizing
Quality of delivery (# bugs)
Full compliance with data protection requirements
Security by design applied
Savings delivered vs estimated
All Business lines operating in EU and relying on US or foreign providers located in non safe countries (such as China) + several functions impacted:DP/Legal, Security, Data, IT, Architecture, Procurement, relevant BLs.

This job offer seems matching your skills? Please send me your CV and Daily Rate at (see below)! See you! Hasta Luego!

Reference: 1186445573

Set up alerts to get notified of new vacancies.