Logo of Huzzle

Data Security, Protection & Privacy Manager

image

Atradius

18d ago

  • Job
    Full-time
    Senior Level
  • Data
    IT & Cybersecurity
  • Madrid
  • 15d left

AI generated summary

  • You need a degree in InfoSec, Law, or business, 7+ years in data security, relevant certifications, strong regulatory knowledge, policy design experience, and fluency in English and Spanish.
  • You will govern data protection, manage risks, ensure compliance, design policies, streamline security efforts, support incident management, and collaborate with teams on data security strategies.

Requirements

  • Bachelor’s or Master’s degree: Information Security, Law or any business-related field.
  • Minimum of 7 years of experience in data security, privacy, and protection, with at least 3 years in implementation and/or operations.
  • Relevant certifications (e.g., CISSP, CISM, CIPP) are highly valued.
  • Strong knowledge of data protection regulations and standards (e.g., GDPR, ISO 27001) and ability to operationalise them.
  • Experience in designing and implementing policies, standards, and guidelines for data topics.
  • Autonomous, proactive and a finisher.
  • Effective communication skills and ability to collaborate and influence stakeholders at various levels of the organisation.
  • Familiarity with data security and protection technologies (e.g., encryption, masking, etc).
  • Fluent in English and Spanish, both spoken and written.
  • Ability to travel occasionally (<10%).

Responsibilities

  • Ensure adequate governance and mechanisms are in place to safeguard personal data and commercially sensitive data assets.
  • Ensure data risks are appropriately identified and managed.
  • Ensure compliance with relevant data legislation and regulation for Atradius and its global offices.
  • Support the Head of Enterprise Data Function with implementation of Data Strategy.
  • Design and development of governance documentation (Access Management, Data Sharing, Data Storage, Data Loss Prevention, Data Encryption, Anonymisation, etc) to help support safeguarding of data assets.
  • Consolidation and streamlining of security, privacy, and protection efforts to ensure better data security and protection outcomes.
  • Support maintenance of data protection and security metadata in the appropriate register, i.e. Records of Processing Activities.
  • Work with the enterprise to provide risk-based data security and protection advice and support to enable data protection by design.
  • Operate the Data Incident Management process, including end-to-end management of the process, maintenance of a register, as well as overseeing the implementation of mitigation and preventative measures.
  • Work closely with the Information Security team to ensure adequate technical controls are in place to protect the data.
  • Work in collaboration with the Enterprise Data Partner to ensure data security and protection requirements are adequately met by the Portfolio.
  • Cooperate with the second line of defence and the Data protection Officer in relation to the management of data risks and compliance with relevant regulation.
  • Inform the Data Governance team of the latest trends and developments in data security, privacy, and protection.

FAQs

What is the primary role of the Data Security, Protection & Privacy Manager?

The primary role is to operationalise data security, privacy, and protection measures within the organisation and ensure compliance with relevant data legislation and regulations.

What qualifications are required for this position?

Candidates should have a Bachelor’s or Master’s degree in Information Security, Law, or any business-related field, along with a minimum of 7 years of experience in data security, privacy, and protection.

Are there particular certifications valued for this role?

Yes, relevant certifications such as CISSP, CISM, or CIPP are highly valued.

What kind of experience is required in the job application?

At least 3 years of experience in implementation and/or operations related to data security, privacy, and protection is required.

What languages should candidates be fluent in?

Candidates should be fluent in both English and Spanish, both spoken and written.

Is travel a requirement for this position?

Yes, the position may require occasional travel, which is less than 10%.

What kind of work environment does Atradius offer?

Atradius offers a dynamic, international, and challenging work environment.

What kinds of benefits and support does Atradius provide for professional development?

Atradius provides training and support to reach full potential, including opportunities for continuous professional development.

How does Atradius approach diversity and inclusion?

Atradius promotes an inclusive culture that values diversity, ensuring all colleagues can develop their qualities and feel involved and valued.

Where can I find more information about Atradius?

Further information can be found on the Atradius career site or through the introductory video available at their YouTube channel.

Managing Risk, Enabling Trade

Finance
Industry
1001-5000
Employees
1925
Founded Year

Mission & Purpose

Atradius provides trade credit insurance, surety and collections services worldwide through a strategic presence in more than 50 countries. Atradius has access to credit information on over 240 million companies worldwide. Its credit insurance, bonding and collections products help protect companies throughout the world from payment risks associated with selling products and services on trade credit. Atradius forms part of Grupo Catalana Occidente (GCO.MC), one of the leading insurers in Spain and worldwide in credit insurance.

Culture & Values

  • People first

    Our colleagues, partners, brokers and customers are important. Our people first approach is built on the shoulders of ambitious teamwork and revolves around collaboration and mutual support. When a new person joins us, we’re proud that we often hear: ‘I already feel part of the Atradius family’.

  • Reliable accountability

    Our customers trust us to help them manage risk. We are transparent, consistent and accountable for all we do. This means, for example, that if we turn down a request for credit insurance, we like to explain why.

  • Constantly improving

    We provide the best levels of service to our customers and the best working environment for our colleagues by continuously looking for ways to improve. It is this ethos that keeps us at the forefront of our markets and is the drive that will see us evolve and enhance our offer as we grow.

  • Unrivalled service

    At the heart of our business is our commitment to managing risk and enabling trade. It is our mission to support our customers’ growth by helping them to strengthen their credit management processes through exceptional levels of service.