.About The Job- The IT Data Protection Trainee's mission is to support key transversal data privacy and protection projects and coordinate activities of the Data Protection activity at Group level under the supervision of the GDPO Advisory TL, contributing to ensuring alignment with the Data Protection and Privacy (DPP) BNP Paribas framework across the world.Your Main Activities AreIntegrated in the Group Data Protection Risk Advisory team, we are seeking technical profiles who will be focused on learning from a Worldwide team of specialists in privacy and cybersecurity.
Directly reporting to the team manager, the main responsibilities of the role are:Supporting the team in performing independent verifications of the IT, cyber security, and other technical controls implemented, and issue recommendations regarding privacy, IT processes, data management & security, and compliance with the Group BNP Paribas Data Protection and Privacy framework and regulations (e.G.
GDPR, CCPA, LGPD, PDPA, among others).Supporting the team in the oversight of key personal data breaches and other Data Protection and Privacy incidents, working with key stakeholders (such as Chief Data Officers, Chief Information Security Officers, Data Protection Officers, IT, Legal, etc.)
on risk identification, ensuring consistency of potential incidents qualification, conducting post mortem analysis, and validating the adequacy and implementation of solutions.Support the team in the industrialization and rationalization of team activities, through leveraging existing Group systems, existing data, and designing and implementing new tools where necessary.Supporting the team in advising key internal stakeholders (e.G.
Chief Data Officers, Chief Information Security Officers, Data Protection Officers, Business...) regarding Data Protection and Privacy requirements in transformation projects and impact assessments, notably for initiatives using innovative technologies such as AI, machine learning, or IoT.Supporting the team in providing advice on the maintenance of the Group's Data Protection and Privacy Governance and framework, as well as the definition and creation of Data Protection and Privacy policies, guidelines, and procedures of Group BNP Paribas.Investigating and developing frameworks to improve the security/protection of personal data across the Group, leveraging sectorial best practices for Governance and IT Security (e.G.
ITIL, COBIT, ISO27001, CISSP, among others).Supporting the team in the study and analysis of global technical regulations and authority decisions, providing lessons learned, best practices, and guidelines to the Group's main stakeholders (Chief Data Officers, Data Protection Officers, IT, among others).Attending regular/ongoing data protection, information security, and privacy training for continuous improvement