Data Protection Associate

As a global B2B FinTech software company, Serrala helps organizations automate their complex finance processes to stay ahead of the curve. With locations in Europe, North America and Asia, our 700+ employees are dedicated to servicing our customers in all industry sectors, from medium-sized companies to global players. More than 100 of S&P500 and over 50% of DAX40 companies are our customers.

We are growing - our goals are ambitious, and to achieve them, we need you. #Remote

**Data Protection Associate (all genders)**

**Your tasks**:

- Work together with the Data Protection team and the colleagues in Legal and Security to ensure that legal and regulatory requirements / best practices relating to data protection laws and regulations are effectively identified and implemented
- Support Serrala's Development and Product teams to ensure alignment with requirements and best practices, namely relating to data protection by design and by default
- Support Serralians questions regarding data protection, namely in the assessment and compliant start of new processing activities
- Support audit and improvement of compliance related policies, procedures, processes and controls (including Technical and Organizational Measures) to facilitate compliance with applicable laws, regulations and contractual obligations
- Support and contribute to internal and external risk assessments to provide holistic support to the business
- Support the investigation, management and resolution of compliance matters, including internal and external reporting requirements
- Support the preparation and negotiation of data processing agreements, for customers, sub-processors and suppliers
- Support the preparation and review of transfer impact / risk assessments
- Support the preparation and performance of audits, for customers, sub-processors, suppliers and internal departments.
- Support the Data Protection team in monitoring /auditing compliance with GDPR and other data protection laws, and with our data protection policies, including managing internal data protection activities and conducting compliance reviews
- Support the maintenance of an up-to-date Record of Processing Activities, including its regular audit and associated data retention & deletion processes.
- Support the identification, mitigation and management of data privacy breaches (including borderline situations), as well as the implementation of measures to prevent recurrence
- Support Serrala's transformation process and the development of sensible practices to ensure compliance with data protection, cybersecurity and FinTech laws and regulation
- Contribute to the review and preparation of trainings for data protection
- Promote and support the development a culture of data protection compliance across all units of the organization

**Your profile**:

- Bachelor's degree in law, IT or a related field and/or recognized data protection qualification (e.g. CIPP/E, CIPT, CIPM, TÜV Certified DPO)
- Prior work experience of at least two years
- Sound knowledge of data protection legislation, jurisprudence and practice, in DACH
- Experience in carrying data protection audits, data privacy impact assessments and assessment of data breaches
- Knowledge of best practices for implementing and managing Privacy by Design and Default
- Good communication and interpersonal skills are essential, as you will need to build and maintain relationships both internally and externally
- Ability to work proactively as well as collaboratively with a range of stakeholders to articulate their needs in line with the defined policies
- Organized and able to coordinate activities effectively to meet business objectives and timelines
- Excellent spoken and written German skills and good spoken and written English skills
- Experience with or knowledge of ISO27000's family of standards
- Experience with BSI Standards
- Experience with implementing or knowledge of Privacy Maturity Models
- Knowledge of impact of FinTech-related regulations/guidelines in data protection compliance practices

**It’s time to become a Serralian**

Do you look forward to taking on exciting challenges in an expanding and innovative environment? We continuously improve the way we work, including modern and flexible working conditions, professional development as part of our LearnLab, joint team events such as monthly lunches, after work events, and the Serralian Base Camp. And yes, we also promote sports activities and provide organic fruit and refreshing beverages.

**Pro-Tip**: Skip the cover letter and pitch us in 3 sentences why exactly you are the perfect match for our team

**Your HR Contact for this position is**: Sophie Gottschalk

**This role is based in**: Remote

**[EEO Statement]**

We are proud to be an equal opportunity workplace. We celebrate and support diversity by providing equal employment opportunities regardless of race, creed, color, religion, age, sex, national origin, disability or handicap, genet