Senior Data Privacy Engineer & Auditor
Role details
Job location
Tech stack
Job description
Then come and join our global team as Senior Data Privacy Engineer & Auditor (f/m/d) and contribute to the further development of our Privacy Management System through technical privacy assessments, risk-based audits, and effective privacy controls.
Choose the best place for your work - Within the scope of this position, it is possible, in consultation with your manager, to work mobile (within Germany) up to an average volume of 60% of the respective working hours.
Even more flexibility? Mobile working from abroad is possible for up to 30 days a year under certain conditions and in selected countries.
Your tasks and responsibilities:
- You will advise business and IT teams on TOMs and Privacy by Design & Default and translate requirements into implementable controls.
- You will assess architectures, applications, integrations and data flows; identify gaps and propose pragmatic mitigations.
- You will contribute to DPIAs with technical assessments and mitigation plans; support RoPA system/data-flow mapping.
- You will plan and execute risk-based privacy & security audits (planning, fieldwork, reporting, follow-up).
- You will assess control design and operating effectiveness within ISMS/PIMS (focus: ISO/IEC 27001 & 27701); review evidence incl. cloud/outsourcing (e.g., BSI C5).
- You will evaluate lifecycle controls (IAM, encryption/key management, logging/monitoring, backup/recovery, retention/deletion, incident response); drive remediation to closure and improve playbooks.
To find out more about the specific business, have a look at https://www.siemens-healthineers.com/products-services, Our culture embraces different perspectives, open debate, and the will to challenge convention. Change is a constant aspect of our work. We aspire to lead the change in our industry rather than just react to it. That's why we invite you to take on new challenges, test your ideas, and celebrate success. Check our Careers Site at https://www.siemens-healthineers.com/de/careers As an equal opportunity employer, we welcome applications from individuals with disabilities. Wish to find out more before applying? Contact us: recruitinggersupport.func@siemens-healthineers.com, if you wish to discuss any initial questions with our recruitment team. The contact person handling this job ad is Name des Recruiters.
Requirements
Do you have experience in Systems engineering?, * You have a university degree in IT Security, Computer Science, Information Systems, Engineering (or comparable) - Business/Law possible with strong technical depth.
- You have several years of professional experience in technical privacy/security controls and/or audit/assurance with hands-on control testing.
- You have very strong knowledge of ISO/IEC 27001 and ISO/IEC 27701 and you are able to assess evidence and control effectiveness.
- You have solid GDPR understanding, including international transfer processes and documentation.
- You have a profound technical foundation across cloud, databases, APIs/integrations, IAM, encryption & key management, logging/monitoring (SIEM) and incident handling.
Your attributes and skills:
- You are fluent in English; German skills are a plus depending on the team setup.
- You enjoy working in interdisciplinary and international environment and actively contribute as a reliable and supportive team player.
- You approach tasks in a structured, analytical and hands-on way and feel comfortable navigating complex technical environments.
- You communicate confidently with different stakeholders and are able to explain technical topics in an understandable way.
Benefits & conditions
(part of Siemens) 3.83.8 out of 5 stars Erlangen Hybrid work Permanent, Full-time