Senior Risk Advisor - Lichtenfels, Deutschland - General Electric

Beschreibung

Job Description SummaryThe Senior Risk Advisor role will be responsible for determining and executing GE Aerospace's cyber regulatory and compliance strategy with a focus on data privacy.

This role will drive meaningful and coordinated engagement with the Works Councils, Security, Compliance and Governance, Technology, Legal and HR partners and labor employee representatives.

This role requires a skilled stakeholder relationship manager who proactively engages with key project teams to help them to navigate the Works Council requirements and engages with Works Council members to build more personal, one-to-one relationships that create the foundation for more effective collaboration.

This role will also be working alongside key Privacy and Cross-functional business leaders to deliver a robust privacy risk assessment and ensure compliance with the development, implementation, and maintenance of the organization's regulatory requirements around data privacy.

Job DescriptionRoles and ResponsibilitiesIn this role, you will:

Support the implementation of new technology and systems in line/partnership with the privacy-by-design approach, using your expertise to drive information & consultation with Works Councils at European and country level to successful conclusionProactively build and foster individual relationships with Legal, Data Privacy Officers and Works Council membersBe involved in system modification and change related processes to support the teams to identify what changes would potentially trigger the need for Works Council notification, consultation and/or co-determination processesPrepare the information to run successful Works Council (DT) negotiations/consultations – including but not limited to description of hardware, software, system architecture and interfaces, and details on functionality.

Translating DT functionality/terminology to non

• DT professionals is criticalFacilitate the Privacy by Design (PbD) process reviewing and ensuring privacy is embedded in the technology that enables the processing of personal data.

Advise on the technology design and security measures to mitigate risks to ensure protection of personal dataCollaborate with software developers, system and network engineers, and application and database administrators to review their designs and implementations and verify that they support the privacy requirements of the business, processes and procedures and implement necessary and appropriate data protection (information security) safeguardsParticipate and help lead an information audit (data inventory and dataflow analysis) to identify the personal data held by the company, and the design and implementation of processes and procedures to keep the inventory and dataflow records current.

Develop KRI and KPI tracking methodologies to ensure continual growth and improvement of the company's data privacy maturity and capabilitiesProvide regular program updates and risk briefings to various leadership, project teams and cross-functional stakeholders.

Serve as a cybersecurity, privacy and technology risk subject matter expert for the business and regionDrive consistency and process design across all business units in regionDemonstrate strong relationship management skills.

Collaborate with others to create standard work and share best practicesAid in the vetting, implementation, and enforcement of GE Aerospace policies & standardsCreatively problem solveHandle highly confidential and sensitive information with complete discretion.

Qualifications/Requirements:
Bachelor's Degree in Computer Science or "STEM" Majors (Science, Technology, Engineering and Math) with significant experienceExcellent English and German written and verbal communication skillsWillingness to travel up to 30% of the time (mostly in EU region and also able to visit Lichtenfels and Garching locations) as needed

Desired Characteristics:

Ability to quickly build credibility, influence and make recommendations to all levelsStrong functional team player with experience working seamlessly across a heavily matrixed structureUnderstanding of international privacy and legal regulationsProven proactive problem-solving abilities.

Experience working with software development teamsAbility to learn complex systems and business processes and define requirements for solutions.

Excellent interpersonal, presentation and facilitation skillsFamiliar with enterprise infrastructure designs and concepts including Authentication, Logging, Interconnectivity, Internet and application proxy, cloud computing, hosting, application code security, Virtual computing, Database administration, Data storage, Data backup, Encryption, Middleware, Firewall policy, Network segmentation, Mainframe etc.

CISSP/CISM/CISA certificationPrior experience doing Lean Process improvement work.


Additional InformationRelocation Assistance Provided:
No#LI-Remote - This is a remote positionJob SummaryJob number: R3720750Date posted : Profession: Digital Technology / ITEmployment type: Senior Level