Senior Risk Advisor

Gefunden in: beBee S DE - vor 3 Wochen

Lichtenfels, Deutschland General Electric Vollzeit

Job Description Summary

The Senior Risk Advisor role will be responsible for determining and executing GE Aerospace’s cyber regulatory and compliance strategy with a focus on data privacy. This role will drive meaningful and coordinated engagement with the Works Councils, Security, Compliance and Governance, Technology, Legal and HR partners and labor employee representatives.

This role requires a skilled stakeholder relationship manager who proactively engages with key project teams to help them to navigate the Works Council requirements and engages with Works Council members to build more personal, one-to-one relationships that create the foundation for more effective collaboration.

This role will also be working alongside key Privacy and Cross-functional business leaders to deliver a robust privacy risk assessment and ensure compliance with the development, implementation, and maintenance of the organization’s regulatory requirements around data privacy.

Job Description

Roles and Responsibilities

In this role, you will:

  • Support the implementation of new technology and systems in line/partnership with the privacy-by-design approach, using your expertise to drive information & consultation with Works Councils at European and country level to successful conclusion

  • Proactively build and foster individual relationships with Legal, Data Privacy Officers and Works Council members

  • Be involved in system modification and change related processes to support the teams to identify what changes would potentially trigger the need for Works Council notification, consultation and/or co-determination processes

  • Prepare the information to run successful Works Council (DT) negotiations/consultations – including but not limited to description of hardware, software, system architecture and interfaces, and details on functionality. Translating DT functionality/terminology to non-DT professionals is critical

  • Facilitate the Privacy by Design (PbD) process reviewing and ensuring privacy is embedded in the technology that enables the processing of personal data. Advise on the technology design and security measures to mitigate risks to ensure protection of personal data

  • Collaborate with software developers, system and network engineers, and application and database administrators to review their designs and implementations and verify that they support the privacy requirements of the business, processes and procedures and implement necessary and appropriate data protection (information security) safeguards

  • Participate and help lead an information audit (data inventory and dataflow analysis) to identify the personal data held by the company, and the design and implementation of processes and procedures to keep the inventory and dataflow records current.

  • Develop KRI and KPI tracking methodologies to ensure continual growth and improvement of the company’s data privacy maturity and capabilities

  • Provide regular program updates and risk briefings to various leadership, project teams and cross-functional stakeholders.

  • Serve as a cybersecurity, privacy and technology risk subject matter expert for the business and region

  • Drive consistency and process design across all business units in region

  • Demonstrate strong relationship management skills.

  • Collaborate with others to create standard work and share best practices

  • Aid in the vetting, implementation, and enforcement of GE Aerospace policies & standards

  • Creatively problem solve

  • Handle highly confidential and sensitive information with complete discretion.

Qualifications/Requirements:

  • Bachelor's Degree in Computer Science or “STEM” Majors (Science, Technology, Engineering and Math) with significant experience

  • Excellent English and German written and verbal communication skills

  • Willingness to travel up to 30% of the time (mostly in EU region and also able to visit Lichtenfels and Garching locations) as needed.

Desired Characteristics:

  • Ability to quickly build credibility, influence and make recommendations to all levels

  • Strong functional team player with experience working seamlessly across a heavily matrixed structure

  • Understanding of international privacy and legal regulations

  • Proven proactive problem-solving abilities.

  • Experience working with software development teams

  • Ability to learn complex systems and business processes and define requirements for solutions.

  • Excellent interpersonal, presentation and facilitation skills

  • Familiar with enterprise infrastructure designs and concepts including Authentication, Logging, Interconnectivity, Internet and application proxy, cloud computing, hosting, application code security, Virtual computing, Database administration, Data storage, Data backup, Encryption, Middleware, Firewall policy, Network segmentation, Mainframe etc.

  • CISSP/CISM/CISA certification

  • Prior experience doing Lean Process improvement work.

Additional Information

Relocation Assistance Provided: No

#LI-Remote - This is a remote position