GDPR Solution Consultant / Manager

Location: Warsaw, Poland

Model of cooperation: contract of employment

Project model: internal hiring

Holiday: 26 days days

Mobility of traveling: 60%

Office hours: 9-17

Benefits: working in a multinational and multiskilled environment; opportunity to work with global top clients on innovative and large international projects; competitive benefits package: private healthcare, additional life insurances, lunch vouchers, sport packages.


  • Experience at scale in regulatory/compliance IT implementation projects
  • Good understanding of Personal Data protection regulations, especially GDPR
  • Analyzing and designing complex enterprise systems and data architectures
  • Provide requirements for changes in the systems
  • Provide recommendations for implementation projects (scope, effort estimation, technology, planning)
  • Designing program roadmaps
  • Minimum Bachelor degree from top Universities
  • Minimum 4+ years of consulting experience, consulting environment or at high tech companies
  • Strong desire to work in technology-driven business transformation
  • Good understanding of contemporary security technologies and solutions used in Information Security, Data Security, Privacy and Incident Response
  • Basic legal and regulatory knowledge regarding personal data protection,
  • Good understanding of risk, regulatory and compliance issues (e.g. ISO 27001, COBIT, Financial Services Regulatory expectations)
  • Excellent Business English communication skills (written & spoken) is required. Good level of the other foreign language e.g. German, Italian, French would be strong asset

Project management framework: SCRUM

Soft skills: Ability to develop and maintain strong internal and client relationships; experience working through organizational change, developing and implementing creative solutions and closely partnering with clients to regularly confirm expectations are met and value delivered.

Team size: about 15 people

Company industry: consulting

Work place: Warsaw, city center

Project description: conduct information discovery covering high level processes and applications to trace the flow of PII data & applications involved and perform risk triage based on level of PII exposure,; perform assessments to identify and define areas of non compliance linked to GDPR impacted processes / systems. Articulate and prioritize change requirements for remedial action, linked back to identified gaps; develop robust security operating model – assess and articulate people, process and technology components to assess and establish client’s security posture. Formulate action plans and roadmaps to plug identified gaps; perform assessments to monitor exposure to regulated data; establish and assess physical and technical controls and standards to help reduce business, regulatory and financial risk to clients. Triage risks and develop roadmap for closure of highlighted risks; consult customer to assess security vision, deep dive into security guiding principles as well as logical security architecture for Applications, Data and Infrastructure EA layers. Develop target state security architecture and realization roadmap.

Project start date: ASAP

Project duration: Long-term

Company website: