Senior Risk Advisor (Cyber Regulatory & Compliance) Permanent Position (m/f/d)
GE Aerospace •
Position Type: Permanent
Job Description:
Job Description SummaryThe Senior Risk Advisor role will be responsible for determining and executing GE Aerospace’s cyber regulatory and compliance strategy with a focus on data privacy. This role will drive meaningful and coordinated engagement with the Works Councils, Security, Compliance and Governance, Technology, Legal and HR partners and labor employee representatives.
This role requires a skilled stakeholder relationship manager who proactively engages with key project teams to help them to navigate the Works Council requirements and engages with Works Council members to build more personal, one-to-one relationships that create the foundation for more effective collaboration.
This role will also be working alongside key Privacy and Cross-functional business leaders to deliver a robust privacy risk assessment and ensure compliance with the development, implementation, and maintenance of the organization’s regulatory requirements around data privacy.Job Description
Roles and Responsibilities
In this role, you will:
Support the implementation of new technology and systems in line/partnership with the privacy-by-design approach, using your expertise to drive information & consultation with Works Councils at European and country level to successful conclusion
Proactively build and foster individual relationships with Legal, Data Privacy Officers and Works Council members
Be involved in system modification and change related processes to support the teams to identify what changes would potentially trigger the need for Works Council notification, consultation and/or co-determination processes
Prepare the information to run successful Works Council (DT) negotiations/consultations – including but not limited to description of hardware, software, system architecture and interfaces, and details on functionality. Translating DT functionality/terminology to non-DT professionals is critical
Facilitate the Privacy by Design (PbD) process reviewing and ensuring privacy is embedded in the technology that enables the processing of personal data. Advise on the technology design and security measures to mitigate risks to ensure protection of personal data
Collaborate with software developers, system and network engineers, and application and database administrators to review their designs and implementations and verify that they support the privacy requirements of the business, processes and procedures and implement necessary and appropriate data protection (information security) safeguards
Participate and help lead an information audit (data inventory and dataflow analysis) to identify the personal data held by the company, and the design and implementation of processes and procedures to keep the inventory and dataflow records current.
Develop KRI and KPI tracking methodologies to ensure continual growth and improvement of the company’s data privacy maturity and capabilities
Provide regular program updates and risk briefings to various leadership, project teams and cross-functional stakeholders.
Serve as a cybersecurity, privacy and technology risk subject matter expert for the business and region
Drive consistency and process design across all business units in region
Demonstrate strong relationship management skills.
Collaborate with others to create standard work and share best practices
Aid in the vetting, implementation, and enforcement of GE Aerospace policies & standards
Creatively problem solve
Handle highly confidential and sensitive information with complete discretion.
Qualifications/Requirements:
Bachelors Degree in Computer Science or “STEM” Majors (Science, Technology, Engineering and Math) with significant experience
Excellent English and German written and verbal communication skills
Willingness to travel up to 30 of the time (mostly in EU region and also able to visit Lichtenfels and Garching locations) as needed.
Desired Characteristics:
Ability to quickly build credibility, influence and make recommendations to all levels
Strong functional team player with experience working seamlessly across a heavily matrixed structure
Understanding of international privacy and legal regulations
Proven proactive problem-solving abilities.
Experience working with software development teams
Ability to learn complex systems and business processes and define requirements for solutions.
Excellent interpersonal, presentation and facilitation skills
Familiar with enterprise infrastructure designs and concepts including Authentication, Logging, Interconnectivity, Internet and application proxy, cloud computing, hosting, application code security, Virtual computing, Database administration, Data storage, Data backup, Encryption, Middleware, Firewall policy, Network segmentation, Mainframe etc.
CISSP/CISM/CISA certification
Prior experience doing Lean Process improvement work.
Additional Information
Relocation Assistance Provided: No
LI-Remote - This is a remote position
Job Ident #:
R3720750
(Job and company information not to be copied, shared, scraped, or otherwise disseminated/distributed without explicit consent of JSfirm, LLC)