Data Protection Officer - KD0718

Reporting to the CEO, the Data protection Officer will mainly be responsible for overseeing data protection strategy and implementation toensure compliance of our Institute with GDPR requirements, while our RDI staffcontinues to aim at excellence in Research, Development and Innovationactivities
1A-B, rue Thomas Edison, Strassen 1445, Luxembourg
30/01/2019 13:19:50
Key Accountabilities
  • Inform and advise the institute and its staff about the obligations pursuant to applicable data protection legislation;
  • Act as the contact point for any internal questions raised on data protection issues;
  • Monitor compliance with applicable data protection legislation and with the institute policies related to the protection of personal data, including the assignment of responsibilities, awareness-raising and training of staff involved, and related audits;
  • Maintain a registry of data processing activities;
  • Maintain a registry for research related database of the institute;
  • Provide advice where requested as regards data protection impact assessment and monitor its performance;
  • Identify the risk associated with processing operations, taking into account the nature, scope, context and purposes of processing;
  • Serve as the point of contact between the company and GDPR Supervisory Authorities,, lawyers and legal and regulatory makers;
  • Act as the contact point for the CNPD on issues relating to processing, including the prior consultation, and consult, where appropriate, with regard to any other matter as well as for data subjects relating to processing carried out by the institutes
  • Design security action plans, dashboards and indicators enabling LIH/IBBL to monitor, maintain and improve the data protection policy;
  • Contribute to align organizational and technical measures with the institutes data protection compliance target;
  • Lead and advise the institute GDPR taskforce
  • University degree (Master or higher) in Law, Economics, Business Management, Life or Medical sciences and/or IT. Any certification in the field of data protection such as the IAPP CIPP/E and/or CIPM Certifications is an asset;
  • Min. 3-5 years of professional experience in the data protection field (ideally in a Research Environment);
  • Very good knowledge of the legal, technical, IT and organizational framework regarding data protection and GDPR regulation;
  • Very good analysis and synthesis capacity; assertivity and leadership
  • Team player able to work effectively at all levels, internally and externally, with the ability to influence others to move toward consensus and convince them of the major challenges in the Research field.
  • Fluent in French and English, proficiency in German and/or Luxembourgish is a plus.
CDI - Full time - Available immediately