Data Privacy Manager & Information Security Officer

About the position

We are seeking an experienced and dedicated Data Privacy Manager and Information Security Officer to join our organization. This dual-role position ensures the confidentiality, integrity, and availability of data, while ensuring compliance with relevant privacy laws, regulations, and best practices. The ideal candidate will lead efforts to safeguard sensitive data and implement robust information security measures.

Responsibilities

• Assessing local data protection requirements and activities.
• Implementing and maintaining the Group-wide data protection management system in his area of responsibility (if applicable, by means of local implementation guidelines).
• Taking on country-wide data protection issues/tasks, supported by the responsible Data Privacy Officer.
• Coordination of data privacy projects.
• Interface to the responsible Data Privacy Officer.
• Data breach management.
• Processing of and/or support with data protection related inquiries.
• If necessary, support during inspections by the relevant authorities.
• Coordination of the Data Privacy Manager in his region.
• Identifies the need of further contact partners as potential Data Privacy Manager in the region.
• Attends to general inquiries from supervisory data protection authorities as first responder.
• Act as second responder when inquiries come directly to management.
• Primary Contact within the legal entity for Rheinmetall's data privacy organization.
• Primary data protection counterpart for the management and employees within the legal entity.
• Regular exchange with the relevant Data Privacy Officer.
• Responsible for data protection related advice and support of business departments.
• Data protection related support of business departments with the introduction of new or change of existing processes and/or assets (especially IT-solutions).
• Develop and enforce the organization's information security policies, standards, and procedures.
• Conduct risk assessments to identify and mitigate information security vulnerabilities.
• Oversee the implementation of security technologies, including firewalls, intrusion detection systems, and encryption tools.
• Lead the response to information security incidents, including investigations and post-incident reviews.

Requirements

• Bachelor's degree in Computer Science, Information Systems, Cybersecurity, Law, or a related field.
• At least 5 years of experience in data privacy, information security, or a related field.
• In-depth knowledge of global data protection regulations and frameworks (e.g., GDPR, CCPA).
• Strong understanding of information security principles, practices, and technologies.
• Certifications such as CIPP/E, CIPM, CISSP, CISM, or equivalent are highly desirable.
• Excellent analytical and problem-solving skills.
• Strong communication and interpersonal skills to interact with all levels of the organization.
• Ability to manage multiple projects and priorities simultaneously.
• High level of integrity and a strong commitment to maintaining confidentiality.