Compliance Analyst or Technical LEAD - GDPR

Job type:
Start date:
3 months +
Montreal Associates
Comunidad de Madrid
Published at:
flag_no Spain
Project ID:

This project has been archived and is not accepting more applications.
Browse open projects on our job board.

GDPR (General Data Protection Regulation), Framework, Compliance, "DATA Protection ACT", PCI, COBIT, ISO, Security

We are currently looking for a Compliance Analyst or Technical Advisor/LEAD with experience within GDPR Framework and compliance for an initial 3 months assignment in Madrid, Spain to start at the end of July with one of our prestigious clients

The Compliance Analyst or Technical Advisor/LEAD MUST have a clear understanding of GDPR (General Data Protection Regulation) which must be demonstrated in your profile, We are looking for someone that is able to act as an advisor and to set clear goals for the business. A solid knowledge or Subject Matter Expert in IT Security and Risk Analyst is key. Experience in the Financial sector would be an added advantage.

Do you have the experience needed if yes could you forward your latest profile/CV to me

  • The Compliance Analyst will report directly to the team and their primary role is to develop a framework, compliance and GDPR execution programme for a major financial services organisation.
  • The GDPR Lead will participate/lead initiatives including controls and compliance monitoring, reviews and when necessary, coordinate compliance activities of external auditors.
  • Must be a Spanish speaker, ideally with English as the secondary language.
  • Location is Madrid, Spain.

Main Tasks & Responsibilities

  • Technical GDPR lead working alongside the programme director to detail a GDPR plan, projects and programmes of work, effort requirements and technical requirements and act as the subject matter expert for the programme roll out.
  • Develop a controls framework and ensure the outcomes will be compliant to applicable laws, regulations, etc. (eg Data Protection Act, PCI, GDPR)and build guidelines on the processes for operational review and effectiveness.
  • Establish a processes for client to ensure continuous compliance to regulatory and internal policy requirements as and when systems are created, modified, disassembled or regulation changes.
  • Ensure that all policies and procedures are implemented and formally documented, performing occasional internal reviews, and identifying compliance issues that call for formal attention.
  • Develop risk management strategies to avoid non-compliance and file compliance reports with regulatory bodies.
  • Maintain the compliance risk register and co-ordinate with the Risk Analyst to ensure that risks in the risk register are described correctly, provide advice on remediation and remediation dates and evaluate risks scores.
  • Assist the Legal and Compliance Liaison in providing guidance and subject matter expertise to Security, IT and business teams on processes, controls and objectives around audit and compliance specific information security activities, best practices and process improvement related to GDPR.
  • Evaluate any related external frameworks or standards (eg, ITIL, COBIT, ISO, etc.) or internal standards (eg, code of conduct and use) to determine the relevant IT compliance requirements and controls.

Minimum Education & Qualifications

  • Security or IT Bachelors degree (an additional 2 years experience may be substituted in lieu of a degree).


  • Associate CISSP, CISM, CISA, or equivalent certification
  • Audit/assessment certifications

"Disclaimer: Montreal Associates (Systems) Ltd, in its capacity of Employment Agency for permanent recruitment and Employment Business for the supply of temporary workers, is firmly committed to the active promotion of equal opportunities and to ensuring an absence of any form of discrimination on any ground".