PRIVACY AND DATA PROTECTION MANAGER (M-F)
THE ROLE:
As Privacy and Data Protection Manager, you will play a critical role in advising clients in the Financial Sector on data protection regulations and privacy best practices. You will assess current privacy maturity levels, identify compliance gaps, and implement robust frameworks to mitigate data protection risks. Your hybrid expertise in both legal and IT/cybersecurity domains will be key to delivering end-to-end client support in a highly regulated environment.
Key Responsibilities:
-Lead privacy assessments, audits, and the design and implementation of data protection programs aligned with GDPR and other regulatory requirements (e.g., DORA, Data Governance Act, Data Act).
-Provide strategic guidance on data governance, manage privacy-related third-party engagements, and ensure continuous regulatory compliance.
-Serve as the primary point of contact for internal teams, clients, regulatory bodies, and supervisory authorities on all privacy and data protection matters.
-Develop and deliver privacy training, maintain comprehensive records of data processing activities, and monitor emerging threats in privacy and cybersecurity to shape proactive mitigation strategies.
-Collaborate across departments and lead a team of senior and junior consultants, ensuring quality service delivery from client onboarding to project execution.
-Support IT and cybersecurity compliance activities in alignment with legal and regulatory frameworks.
THE CANDIDATE PROFILE:
-Bachelor’s or Master’s degree in Law, Compliance, Computer Science, Information Security, or a related discipline.
-Minimum 5 years’ experience in data protection compliance, preferably in a consulting or financial services environment.
-In-depth knowledge of data protection laws and practices, particularly GDPR, and familiarity with regulatory frameworks such as DORA and the Data Governance Act.
-Strong leadership and project management skills, with the ability to manage end-to-end client engagements.
-Solid technical literacy; comfortable working in IT and cybersecurity-related contexts.
-Excellent interpersonal and communication skills, with the ability to explain complex legal/technical matters clearly to diverse stakeholders.
-Discretion and professionalism in handling sensitive, confidential information.
-Fluent in English (spoken and written); knowledge of French is a strong asset.
THE CLIENT:
Our client is an international service provider.
Your application will be treated with the utmost discretion. We are dedicated to safeguarding your privacy and handling your data with the highest level of confidentiality. Before applying for any of our positions, please take a moment to review our Privacy Policy. As an equal opportunity employer, we value diversity and encourage applications from individuals of all backgrounds. However, candidates must have a valid Luxembourg work permit. As a service provider representing our clients, we are required to present only candidates with valid work permits; if you do not meet this criterion, we cannot consider your application. If you are fortunate enough to secure this position, you will need to provide supporting documents, including copies of your diplomas, proof of prior employment, and a standard criminal record check at the final stages of the recruitment process.
