Skip to main contentA logo with &quat;the muse&quat; in dark blue text.

Data Protection Officer State Street Bank International m/f/d, Vice President

AT State Street
State Street

Data Protection Officer State Street Bank International m/f/d, Vice President

Milan, Italy

Who we are looking for

With immediate effect we are looking for a State Street Bank International Data Protection Officer, Vice President. This role will report to Global Chief Privacy Officer and SSBI Chief Administrative Officer. This role can be performed in a hybrid model, where you can balance work from home and office. Preferred locations are Munich or Frankfurt, Germany, but we will also consider applicants from Milan Italy, Luxembourg or Krakow / Gdansk in Poland.

Why this role is important to us

The team you will be joining plays an important role in the overall success of the organization. Across the globe, institutional investors rely on us to help them manage risk, respond to challenges, and drive performance and profitability. To make that happen we need teams like yours to help navigate employees and the organization as a whole. In your role you will strive for cutting-edge solutions, that are straightforward and scalable. You will help us build resilience and execute day to day deliverables at our best.

Want more jobs like this?

Get jobs delivered to your inbox every week.

Select a location
By signing up, you agree to our Terms of Service & Privacy Policy.

Join us if making your mark in the financial services industry from day one is a challenge you are up for.

What you will be responsible for

As the State Street Bank International Data Protection Officer you will

  • Provide compliance technical advice and consulting as a subject matter expert on data protection standards and strategically developing, leading, and enforcing the global privacy compliance program;
  • Fulfil the role of the data protection officer of State Street Bank International GmbH (SSBI), a German credit institution with branches across Europe, in line with the requirements of EU GDPR and local data protection laws in the countries where SSBI is operating as well as group wide requirements;
  • Continue to improve and build upon a strong global privacy compliance program that keeps pace with applicable global regulations as well as local regulations applicable to SSBI, including oversight for testing and reporting of applicable law, regulatory guidance, and internal policy requirements;
  • Ensure effective execution of privacy and data protection requirements, maintenance and adherence to related policies and procedures, commensurate with the level of privacy risk;
  • Work collaboratively with the Chief Data Office, Chief Information Security Officer, Human Resources, Global Delivery, Legal, and other internal stakeholders across governance forums, strategic projects and engagements to drive the execution of the global privacy compliance program in SSBI;
  • Assist the business and corporate functions with the design and execution of internal controls to address privacy and data protection business requirements and oversee and mitigate privacy risks;
  • Execute an effective global regulatory change management program by keeping pace with changes in regulation and working with business partners to identify and assess the impact of privacy regulatory changes to the firm, business, technology operations, processes or operating procedures;
  • Direct incident response and notifications for privacy breaches in coordination with internal partners who oversee mitigation strategies and regulatory communications;
  • Assist with preparing for or leading privacy related regulatory examinations, internal audits and internal testing requirements;
  • Work with business and corporate partners to ensure that privacy incidents are reported timely and accurately and assist in determining necessary client notifications, as appropriate;
  • Ensure that controllers and data subjects are informed about their data protection rights, obligations and responsibilities and raise awareness about them;
  • Give advice and recommendations to the organization about the interpretation or application of the data protection rules in conjunction with banking regulation;
  • Create a register of processing operations within the organization and notify the appropriate data protection authority about those that present specific risks via prior consultation;
  • Ensure data protection compliance within the organization and help the organization to be accountable in this respect;
  • Handle queries or complaints on request by the organization, the controller, other person(s), or on her own initiative;
  • Cooperate with and act as the contact point for the data protection authorities (responding to requests about investigations, complaint handling, and inspections, etc.);
  • Draw the organization's attention to any failure to comply with the applicable data protection rules;
  • Lead a team of privacy professionals in conducting privacy impact assessments in collaboration with business, product, engineering and legal teams to design and implement process improvements to ensure risk mitigation activities are effective;
  • Proactively manage privacy risk through managing governance forums, performing risk assessments, directing monitoring and testing efforts, and implementing related training programs;
  • Ensure privacy practices align with regulatory and compliance standards, including European banking regulation, by identifying potential areas of vulnerability and developing and executing risk mitigation action plans;
  • Champion privacy awareness across SSBI by implementing Privacy Awareness campaigns, training and educational programs to help ensure privacy considerations are embedded in business processes.

What we value

These skills will help you succeed in this role

  • Ability to manage multiple simultaneous tasks in a high pressure, deadline-driven environment;
  • Strong abilities in analytical thinking, problem solving, research, time management, and verbal and written communication; ability to communicate technically with internal stakeholders and external regulators like European Data Protection Authorities
  • Ability to collaborate with individuals across business lines and corporate functions;
  • Ability to take ownership and initiative, to negotiate, influence and build consensus and successfully navigate within a demanding and international environment of a leading global financial institution;
  • Embrace the appropriate stature, authority, and accountability to execute an operating model that adheres to an enterprise wide program;
  • Ability to work well with a geographically dispersed group of privacy and risk management professionals;
  • Strong problem solving skill and comfortable making logical decisions when faced with ambiguous requirements
  • Self-motivated and the ability to work with a high degree of independence.
  • Written and verbal communication skills in both English and German

Education & Preferred Qualifications

  • Certified Information Privacy Professional or Certified Information Privacy Manager Accreditation
  • Undergraduate college degree required, JD or MBA degrees preferred
  • Minimum of 10 years of experience working in an internal control, compliance, investigation or data function in the financial industry
  • Comprehensive knowledge of European data protection regulations and their application, including technical and organizational measures and procedures as required by banking regulation
  • Expert understanding of processes and information flows of business and corporate functions that manage customer and employee data as well as other confidential information
  • Proven experience in preparing and presenting high-quality presentations to senior stakeholders, including the Board of Directors
  • Capable of leading global project teams and producing high quality and/or final work product and solutions under strict regulatory or management deadlines

About State Street

What we do. State Street is one of the largest custodian banks, asset managers and asset intelligence companies in the world. From technology to product innovation, we're making our mark on the financial services industry. For more than two centuries, we've been helping our clients safeguard and steward the investments of millions of people. We provide investment servicing, data & analytics, investment research & trading and investment management to institutional clients.

Work, Live and Grow. We make all efforts to create a great work environment. Our benefits packages are competitive and comprehensive. Details vary by location, but you may expect generous medical care, insurance and savings plans, among other perks. You'll have access to flexible Work Programs to help you match your needs. And our wealth of development programs and educational support will help you reach your full potential.

Inclusion, Diversity and Social Responsibility. We truly believe our employees' diverse backgrounds, experiences and perspectives are a powerful contributor to creating an inclusive environment where everyone can thrive and reach their maximum potential while adding value to both our organization and our clients. We warmly welcome candidates of diverse origin, background, ability, age, sexual orientation, gender identity and personality. Another fundamental value at State Street is active engagement with our communities around the world, both as a partner and a leader. You will have tools to help balance your professional and personal life, paid volunteer days, matching gift programs and access to employee networks that help you stay connected to what matters to you.

State Street is an equal opportunity and affirmative action employer.

Discover more at StateStreet.com/careers

State Street's Speak Up Line

Client-provided location(s): Milan, Metropolitan City of Milan, Italy; Munich, Germany; Frankfurt, Germany; Kraków, Poland; Gdańsk, Poland; Luxembourg
Job ID: StateStreet-R-763190
Employment Type: Full Time