Share this Job

ISBL - Deputy Data Protection Officer

Date: Nov 28, 2021

Location: Luxembourg, LU

Company: Intesa Sanpaolo Group

Intesa Sanpaolo is the banking group leader in Italy. Assisting more than 14,6 milion of retail customers through a network of 5360 branches, it significantly supports the development of Companies and gives an important sustain to the country's growth. The Group has a selected retail banking presence in Central and Eastern Europe, the Middle East and North Africa, with approximately 1,000 branches and 7.2 million customers in 12 countries. Intesa Sanpaolo is also present in 25 countries in support of its corporate customers’ cross-border business. It is looking for new qualify profiles who want to face demanding and challenging career path with the following requirements:

Scope and Purpose

  • Promote, develop and maintain a proportionate Data protection framework, including policies and processes, in compliance with relevant legislation.
  • Identify and evaluate the bank's data processing activities and provide advice and instructions on how to conduct Data Protection Impact Assessments (DPIAs).
  • Advise on bank's compliance with GDPR and local data protection laws, monitor adherence to GDPR standards.
  • Validate in all bank's projects the "privacy by design," keeping updated sensitive and privacy data mapping and relevant protection measures.
  • Manage data protection incidents, subject requests in a timely manner, ensuring appropriate reporting and escalation to the Bank's management and relevant committees.
  • Promote Data protection awareness to the Bank staff, ensuring adequate periodical GDPR training.
  • Respond to, and act as the point of contact for the supervisory authority and maintaining relationships with European regulators, especially the CNPD in Luxembourg.
  • Liaise with other organizations that process data on behalf of the bank. 

Required Experience

  • Bachelor degree in Finance or Legal field required with a minimum of 3-5 years of experience in Data Security with minimum of 3 years of relevant RGPD experience.
  • Other experience in information technologies, data security, internet and technology industries preferred.
  • Data Security experience with an IT Security mind-set.

Competencies Required

  • Experience in building and implementing privacy processes with privacy and security in mind (Privacy by Design & Default).                            
  • Expertise in EU data protection laws and practices including an in depth understanding of the GDPR.                                    
  • Experience with contract and vendor negotiations and management including managed services.                                    
  • Familiar with local and European regulations (especially on CNPD).
  • Experience with Cloud computing and virtualized environments
  • Excellent written and verbal communication skills.
  • High level of personal integrity.                            
  • Risk evaluation oriented.                                
  • Sense of discretion and confidentiality.                    
  • Rigor, precision with attention to details.


Everyone is an asset for our Group and that person could be you! Check out our job opportunities, apply and join our team!