CrawlJobs Logo
N26 Logo N26 · IT - Administration

Data Protection and Security Manager

Germany, Berlin · Job Posted January 18, 2026
Apply Position
Job Link Share

Job Description

We are looking for an experienced Data Protection & Security Manager to join the Data Protection & Governance team within the CISO Office. In this pivotal role, you will help ensure N26 meets its data protection obligations. You will play a key role in ensuring continuity of privacy risk coverage, supporting regulatory readiness, and strengthening how data protection requirements are embedded in day-to-day operations.

Job Responsibility

  • Design, maintain and continuously improve the data protection risk management framework
  • Maintain the Data Protection Controls Effectiveness Testing and Evaluation Procedure
  • Maintain and further develop the data protection risk register and key metrics
  • Act as a 2LoD point of contact for internal data protection–related topics
  • Ensure the proper and timely involvement of the DPO in all relevant personal data protection matters
  • Manage the DPO mailbox / dedicated data protection mailbox
  • Develop and prepare regular privacy and data protection risk reports and global “health check” overviews
  • Manage or support the Data Protection General Training & Awareness program and required privacy-related trainings
  • Work cross-functionally and build strong relationships to strengthen and enhance data privacy compliance
  • Monitor regulatory developments and emerging privacy and cyber/ Information security risks
  • Support audit and regulatory readiness by managing privacy-related findings and action plans

Requirements

  • Bachelor's degree in Law, Information Security, Information Technology, Risk Management, or a related field would be preferable but not mandatory
  • Professional privacy certifications such as IAPP CIPP/E / CIPM
  • Professional security management certifications such as CISA / CISM / CRISC, or equivalent are preferable
  • Minimum of 3–5 years of experience in data protection / privacy risk management, ideally within the banking or financial services industry
  • Experience working with risk and control frameworks, audits, regulatory readiness, and remediation tracking is highly advantageous
  • An understanding of information security concepts (e.g., access control, logging, encryption, incident management) and how they intersect with privacy requirements
  • Experience with third-party / outsourcing privacy topics (e.g., DPAs, sub-processors, PIAs/TIAs, vendor risk inputs)
  • Should be able to leverage modern tooling (including AI where appropriate) to improve risk reporting
  • Strong stakeholder management skills
  • Strong project and prioritisation skills
  • Strong analytical skills
  • Effective communication and interpersonal skills
  • Strong report-writing and documentation skills
  • Good understanding of information security fundamentals
  • Fluency in English (verbal and written) is mandatory
  • German is a plus

Nice to have

German is a plus

What we offer

  • Accelerate your career growth
  • Employee benefits that range from a competitive personal development budget, work from home budget, discounts to fitness & wellness memberships, language apps and public transportation
  • Access to a Premium subscription on your personal N26 bank account
  • Additional day of annual leave for each year of service
  • A high degree of autonomy and access to cutting edge technologies
  • A relocation package with visa support for those who need it
N26 - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Data Protection and Security Manager

8 matching positions

Security Manager – Data Protection

The GPC Data Protection Manager leads the enterprise strategy to detect, investi...
Location
Location
Poland , Krakow
Salary
Salary:
Not provided
genpt.com Logo
Genuine Parts Company
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Management: Experience in managing at least 10 employees
  • Typically requires 5–10 years in cybersecurity or risk management, with a focused background in insider threat analysis or data protection
  • Extensive experience with data discovery/cataloging and insider risk tools
  • Proficiency in querying large datasets using SQL or Python to identify emerging threat patterns and fraud indicators
  • Strong cross-functional collaboration skills, with the ability to influence without direct authority and translate technical risks into business impact
  • Preferred credentials include CISSP (Security), or CISM (Management)
Job Responsibility
Job Responsibility
  • Program Governance: Define and drive the multi-year technical roadmap for insider risk, aligning it with business needs and global privacy laws (e.g., GDPR, CCPA, DORA)
  • Behavioral Detection: Oversee User and Entity Behavior Analytics (UEBA) to establish behavioral baselines and detect anomalies, such as unusual data movement or unauthorized use of generative AI tools
  • Data Protection Management: Lead the selection, deployment, and optimization of the Data Protection stack (e.g., Microsoft Purview and Cyera) to identify and block risky data exfiltration
  • Incident Investigation: Participate with Global Incident Response team on deep-dive investigations into high-risk alerts, collaborating with Legal and HR to ensure ethical and defensible evidence collection
  • AI Guardrails: Implement specific controls to monitor and prevent sensitive data leaks into external Large Language Models (LLMs) and manage 'prompt injection' risks
  • Metrics & Reporting: Develop real-time dashboards to quantify risk posture and program effectiveness for executive leadership and the board of directors
  • Talent Cultivation: Prioritize hiring adaptable specialists who can navigate hybrid security environments and AI-driven threats
  • Mentorship & Coaching: Move from traditional surveillance-heavy oversight to a coaching-based model, providing 'real-time nudges' that educate employees on secure data handling rather than just penalizing mistakes
What we offer
What we offer
  • We offer comprehensive benefit plans and programs designed to support your health and wellness, provide income protection and build financial security for your retirement
Read More
Arrow Right

Privacy and Data Protection Manager

As the Privacy and Data Protection Program Manager you will be responsible for s...
Location
Location
United States; Canada
Salary
Salary:
113000.00 - 153000.00 USD; CAD / Year
https://www.1password.com Logo
1Password
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Business, Legal Studies, or a related field
  • Juris Doctor from an accredited law school preferred
  • Experience working with privacy regulations such as GDPR, PIPEDA, CCPA/CPRA, and other regional or industry-specific privacy laws
  • 2-5 years of experience in a legal, compliance, privacy role, preferably in a company serving customers globally
  • Experience conducting privacy impact assessments, audits, or compliance monitoring
  • Strong attention to detail and ability to handle confidential information with discretion
  • Excellent written and verbal communication skills, with the ability to explain complex legal concepts to non-legal stakeholders
  • Problem-solving mindset and ability to work independently, as well as collaboratively within cross-functional teams
  • Strong organizational skills and ability to manage multiple tasks simultaneously in a fast-paced environment
  • Proficiency in legal research and privacy management tools
Job Responsibility
Job Responsibility
  • Legal Research & Analysis: Support research efforts on privacy-related legal developments, regulatory changes, and enforcement trends
  • Help analyze how changes in privacy laws may affect 1Password’s business operations
  • Collaborate with the commercial legal team in drafting and reviewing privacy-related agreements, including data processing agreements (DPAs) and vendor contracts
  • Monitor updates in data privacy laws and regulations and share insights with internal teams
  • Assist in developing and implementing internal privacy policies and procedures that align with legal requirements and industry standards
  • Incident Management: Help maintain accurate records of incidents and support compliance with the 1Password’s incident response plan
  • Assist in preparing data breach notifications for regulatory authorities and impacted individuals, as required
  • Vendor Management: Review and assess third-party service providers’ privacy practices to ensure alignment with the 1Password’s data protection standards
  • Advise on due diligence processes for onboarding new vendors, partners or customers, ensuring compliance with contractual and legal obligations
  • Support the management and organization of vendor data processing agreements and related documents
What we offer
What we offer
  • Health, dental, 401k and many others
  • Generous paid time off
  • Equity grant
  • Participation in incentive programs
  • Maternity and parental leave top-up programs
  • Competitive health benefits
  • Generous PTO policy
  • RSU program for most employees
  • Retirement matching program
  • Free 1Password account
  • Fulltime
Read More
Arrow Right
New

Application and Data Security Consultant

Tier4 is looking for a Security Consultant who will be responsible for ensuring ...
Location
Location
United States , Quincy
Salary
Salary:
Not provided
tier4group.com Logo
Tier4 Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of IT experience with at least 5+ years as a Security Manager/officer
  • Bachelor's degree in Information Technology or computer science or related field or equivalent experience
  • In-depth knowledge and experience working with common regulatory framework applications related to data security, including HIPAA, HITRUST, – General Data Protection Regulation (GDPR), National Institute of Standards & Technology (NIST) standards, and similar constructs are highly desired
  • Previous knowledge and experience in designing and architecting information technology and security controls across complex and diverse networks, applications, and infrastructures are strongly preferred
  • Technical aptitude, critical thinking skills, and the ability to think outside the box
  • Demonstrated ability to solve complex information security problems, observe security risks and weaknesses, and provide security recommendations to the respective project and delivery teams
  • Ability to translate technical risk issues to business leaders and upper management
  • Excellent verbal, written, and interpersonal communication skills
  • Detail-oriented and value teamwork
  • Ability to resolve problems as they arise and handle situations expediently
Job Responsibility
Job Responsibility
  • Implement Data Security Management and Operation models
  • Establish various security compliance standards including (but not limited to) NIST(National Institute of Standards and Technology), FIPS(Federal Information Processing Standards), FedRAMP(Federal Risk and Authorization Management Program)
  • Engage with agency Privacy and Security office teams to exchange Compliance reports and obtain approvals as necessary
  • Involve with auditors as necessary to provide compliance reports as requested and implement mitigation steps as required
  • Implement process and tools for application vulnerability testing(SAST/DAST)
  • Establish and manage a vulnerability management including coordination of penetration testing and ongoing vulnerability remediation, tracking, and security compliance reporting
  • Setup requirements for penetration testing and engage with vendors and agencies to perform/report pen tests
  • Setup infrastructure audits and reports with the help of system admins and vendors as necessary
  • Maintaining the system integrity and security by following the industry standard IT Controls
  • Implement automation of systems administration and software migration for QA and Production
Read More
Arrow Right

Counsel, Privacy, Ai, And Data Protection

The Counsel for Privacy, AI, and Data Protection serves as the enterprise subjec...
Location
Location
United States , Lexington
Salary
Salary:
150000.00 - 175000.00 USD / Year
valvolineglobal.com Logo
Valvoline Global
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Juris Doctor (JD) degree from an accredited law school and active license to practice law in at least one U.S. jurisdiction
  • Minimum of 8-12 years of legal experience, with significant focus on privacy, data protection, cybersecurity, and/or technology law
  • Demonstrated expertise in U.S. and global privacy laws and frameworks (e.g., GDPR, CCPA/CPRA) and strong familiarity with emerging AI regulatory requirements
  • Experience advising on AI/ML technologies, data-driven business models, or digital products, including governance and risk management considerations
  • Proven experience building or supporting global privacy programs and operationalizing compliance frameworks (e.g., DPIAs, DSARs, data mapping)
  • Strong experience partnering with Product, Engineering, IT, and Security teams to translate legal requirements into practical solutions
  • Demonstrated ability to operate independently, manage complex cross-functional initiatives, and provide strategic, risk-based legal advice
  • Excellent communication, negotiation, and stakeholder engagement skills, with the ability to influence senior leaders
  • Ability to travel (approximately 10-20%) to support global business initiatives and team engagement
  • Collaborate effectively across global time zones, providing support to regional stakeholders and participating in meetings outside standard business hours as needed to support a globally distributed organization
Job Responsibility
Job Responsibility
  • Accountable for the design, implementation, and ongoing effectiveness of Valvoline's global privacy program, including governance structure, policies, and operational processes
  • Owns enterprise interpretation and application of global privacy laws (e.g., GDPR, CCPA/CPRA), establishing company-wide standards and guidance
  • Accountable for core privacy program operations, including DPIAs/PIAs, DSAR processes, data mapping, and records of processing activities, ensuring they are scalable, auditable, and consistently executed
  • Establishes and monitors program KPIs and metrics to measure compliance, maturity, and operational effectiveness
  • drives remediation where gaps exist
  • Leads integration of privacy-by-design principles into business processes, systems, and product development, ensuring consistent adoption across functions
  • Accountable for the enterprise AI governance framework, including policy development, risk classification models, and required controls
  • Owns the legal review and risk determination framework for AI/ML use cases, including defining approval thresholds and escalation criteria
  • Ensures AI initiatives meet regulatory, ethical, and internal governance standards, providing final legal guidance on high-risk or ambiguous use cases
  • Translates global AI regulatory developments into enforceable internal requirements, ensuring timely adoption across the enterprise
What we offer
What we offer
  • Health insurance plans (medical, dental, vision)
  • Health Savings Account (with an employer-base deposit and match)
  • Flexible spending accounts
  • Competitive 401(k) with generous employer base deposit and match
  • Incentive opportunity
  • Life insurance
  • Short- and long-term disability insurance
  • Paid vacation and holidays
  • Employee Assistance Program
  • Employee discounts
  • Fulltime
Read More
Arrow Right

Senior Technical Project Manager - Data Protection

A prominent leader in the Canadian insurance and financial services sector is se...
Location
Location
Canada , Montréal
Salary
Salary:
Not provided
https://www.randstad.com Logo
Randstad
Expiration Date
July 19, 2026
Flip Icon
Requirements
Requirements
  • Proven background in cybersecurity infrastructure, specifically focusing on data protection, security operations centers (SOC), vulnerability management, and data analysis
  • A minimum of 8 to 10 years managing large-scale, complex IT or security projects within an enterprise corporate environment
  • Ability and willingness to commute regularly to the Montreal office (hybrid model with mandatory on-site presence)
  • Outstanding capability to translate deeply technical security risks into clear, actionable business strategies for non-technical stakeholders
  • PMP, CISA, CISM, or related technical security certifications
Job Responsibility
Job Responsibility
  • Oversee and deliver end-to-end data protection and data security initiatives for major organizational projects
  • Partner closely with advanced technology engineering teams and information security units to embed robust security protocols from inception
  • Facilitate data analysis assessments, track systems vulnerabilities, and coordinate remediation strategies across technical teams
  • Act as the primary bridge between technical specialists (SOC, security architects) and corporate financial business lines
  • Establish, monitor, and present key performance indicators (KPIs) and milestone reports to executive leadership
What we offer
What we offer
  • Attractive compensation package with comprehensive benefits or competitive market rates
  • Collaborative, modern corporate culture
  • Professional Growth
  • Fulltime
Read More
Arrow Right

Counsel, Privacy, AI, and Data Protection

Why Valvoline Global Operations? At Valvoline Global Operations, we're proud to ...
Location
Location
United States , Lexington
Salary
Salary:
150000.00 - 175000.00 USD / Year
valvoline.com Logo
Valvoline
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Juris Doctor (JD) degree from an accredited law school and active license to practice law in at least one U.S. jurisdiction
  • Minimum of 8–12 years of legal experience, with significant focus on privacy, data protection, cybersecurity, and/or technology law
  • Demonstrated expertise in U.S. and global privacy laws and frameworks (e.g., GDPR, CCPA/CPRA) and strong familiarity with emerging AI regulatory requirements
  • Experience advising on AI/ML technologies, data-driven business models, or digital products, including governance and risk management considerations
  • Proven experience building or supporting global privacy programs and operationalizing compliance frameworks (e.g., DPIAs, DSARs, data mapping)
  • Strong experience partnering with Product, Engineering, IT, and Security teams to translate legal requirements into practical solutions
  • Demonstrated ability to operate independently, manage complex cross-functional initiatives, and provide strategic, risk-based legal advice
  • Excellent communication, negotiation, and stakeholder engagement skills, with the ability to influence senior leaders
  • Ability to travel (approximately 10–20%) to support global business initiatives and team engagement
  • Collaborate effectively across global time zones, providing support to regional stakeholders and participating in meetings outside standard business hours as needed to support a globally distributed organization
Job Responsibility
Job Responsibility
  • Accountable for the design, implementation, and ongoing effectiveness of Valvoline's global privacy program, including governance structure, policies, and operational processes
  • Owns enterprise interpretation and application of global privacy laws (e.g., GDPR, CCPA/CPRA), establishing company-wide standards and guidance
  • Accountable for core privacy program operations, including DPIAs/PIAs, DSAR processes, data mapping, and records of processing activities, ensuring they are scalable, auditable, and consistently executed
  • Establishes and monitors program KPIs and metrics to measure compliance, maturity, and operational effectiveness
  • drives remediation where gaps exist
  • Leads integration of privacy-by-design principles into business processes, systems, and product development, ensuring consistent adoption across functions
  • Accountable for the enterprise AI governance framework, including policy development, risk classification models, and required controls
  • Owns the legal review and risk determination framework for AI/ML use cases, including defining approval thresholds and escalation criteria
  • Ensures AI initiatives meet regulatory, ethical, and internal governance standards, providing final legal guidance on high-risk or ambiguous use cases
  • Translates global AI regulatory developments into enforceable internal requirements, ensuring timely adoption across the enterprise
What we offer
What we offer
  • Health insurance plans (medical, dental, vision)
  • Health Savings Account (with an employer-base deposit and match)
  • Flexible spending accounts
  • Competitive 401(k) with generous employer base deposit and match
  • Incentive opportunity
  • Life insurance
  • Short- and long-term disability insurance
  • Paid vacation and holidays
  • Employee Assistance Program
  • Employee discounts
  • Fulltime
Read More
Arrow Right

Asset Protection and Security Coordinator

The Asset Protection Coordinator’s responsibility is to assist the Asset Protect...
Location
Location
United States , Santa Clarita
Salary
Salary:
22.00 - 25.00 USD / Hour
vallartasupermarkets.com Logo
Vallarta Supermarkets
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • High School Diploma and/or equivalent
  • Minimum of three (3) years of coordinator, administrative and/or office environment or similar
  • Strong clerical and administrative skills
  • Strong interpersonal and motivational abilities
  • High attention to detail and problem-solving capabilities
  • Proficient in Microsoft Word, Excel, PowerPoint, Outlook, and general office equipment
  • Ability to work independently, adapt to changing priorities, and multitask effectively
  • A positive and professional demeanor that contributes to a productive team atmosphere
  • Excellent communication and interpersonal skills
  • Promoting a positive and desirable atmosphere within the department
Job Responsibility
Job Responsibility
  • Assist the Asset Protection department in a multitude of administrative duties which support the team in achieving company goals
  • Support the Asset Protection and Security Department by assisting with the administration of department programs, coordinating communication and reporting, maintaining inventory and operational logs, and providing day-to-day administrative and compliance support
  • Review key department operation reports prior to submitting for approval to Manager of Asset Protection & Security, and/or other departments
  • Supports department by maintaining filing systems (digital and paper) for clerical functions responsible in the department
  • Responsible for administration of expense company credit cards for the AP&S department including reconciling, auditing, and submitting approved statements
  • Reviews billing, reporting, compliance, and escalations
  • Oversees inventory controls, vendor coordination, and system updates
  • Coordinates distribution and control levels of AP field equipment and AP & Security office supplies
  • Assists AP& Security Management with projects as needed
  • Supervise the maintenance of the Burglar Alarm Control program, making sure that service and invoices are followed up within business needs
  • Fulltime
Read More
Arrow Right

Privacy and Data Protection Lawyer

At Vodafone, we’re not just shaping the future of connectivity for our customers...
Location
Location
Portugal , Lisboa
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Law degree
  • 0–2 years of experience in Data Protection, Compliance, Regulatory Affairs, or related legal practice
  • Knowledge of GDPR principles and the national legal framework on data protection
  • Strong analytical skills, accuracy, and legal rigour
  • Ability to translate legal requirements into clear business-oriented guidance
  • Basic knowledge of Data Protection, Information Security, or Compliance frameworks
  • Familiarity with legal support tools or document management systems
  • Experience in technology, telecom, consultancy, or regulatory environments
  • Ability to work with multidisciplinary teams
  • Fluency in English
Job Responsibility
Job Responsibility
  • Draft and review contractual clauses, data processing agreements, and legal documentation related to data protection
  • Analyse legal and regulatory requirements and produce internal legal opinions and guidance
  • Support the interpretation and application of the GDPR, national data protection law, and Group requirements
  • Conduct legal risk assessments on data protection and compliance topics
  • Support responses to regulatory authorities and prepare draft replies when required by the DPO or senior team members
  • Contribute to governance, compliance, security, and risk management initiatives with legal relevance for data protection
  • Cooperate with internal teams (Technology, Security, Commercial, HR, etc.) by clarifying legal requirements
  • Monitor legislative and regulatory developments relevant to data protection
What we offer
What we offer
  • Hybrid Work Model - Flexible hybrid work model with 8-10 in-office days per month, managed by team leaders
  • Vodafone Products and Services - Employees get a mobile phone, free communication plan, data card, and various discounts on services and products
  • Recognition - Recognition programs for innovative, creative, high-potential employees and exemplary behaviors
  • Health and Well-being - Well-being Program offers nutrition and psychological consultations, webinars, workshops, and discounts on various services and products
  • Learning - Access to Communities of Practice and a customizable digital training platform with high-quality content (namely Harvard Business Publishing, Skillsoft and Speexx)
  • Local and International Mobility - Internal recruitment with local and international rotation opportunities across departments and roles
Read More
Arrow Right