Junior Compliance & Data Privacy Apprenticeship

AXA

  • Paris
  • Stage
  • Temps-plein
  • Il y a 1 mois
VOTRE FUTUR TERRAIN D’EXPRESSIONLa mission d’AXA est de « donner à chacun les moyens de vivre une vie meilleure ». Nous souhaitons alors passer du rôle de payeur à celui de partenaire. La mission de notre division, Group Operations (GO), est de soutenir et responsabiliser l’ensemble des équipes d’AXA afin de concrétiser cette ambition commune.L’innovation et l’exécution sont nos principaux leviers pour atteindre cet objectif. Ils guident l’ensemble des équipes de GO au quotidien :- Innovation : créer et fournir les bases et opportunités aux équipes d’AXA qui développeront des solutions innovantes afin de répondre aux besoins de nos clients actuels et futurs ;- Exécution : créer l’environnement qui permettra à nos équipes à travers le monde, de donner vie à leurs idées et de tenir les promesses faites à nos clients.Nos objectifs concrets sont de :- Renforcer la création de valeur pour l’ensemble du groupe AXA ;- Soutenir et encourager l'innovation au sein d'AXA, en collaboration avec la division Group Business Innovation ;- Automatiser et intégrer la simplicité dans notre travail quotidien, en nous assurant de contribuer efficacement à la mission et stratégie d’AXA.Les équipes de Group Operations sont alors composées de :- Group Security : protège les salariés, nos parties prenantes et la marque AXA en sécurisant les informations et gérant les cyber sécurité, la sécurité physique ainsi que la résilience des opérations ;- IT : définit la stratégie IT globale d’AXA ; favorise la convergence de l’IT au sein des entités et leur fournit des services partagés ;- GETD définit les ambitions concernant la maturité des données du Groupe ; construit et gère la communauté ; conduit la recherche et l’expertise ; assiste les entités les moins matures en termes de données ; REV identifie les technologies de pointe et en développe des disruptives pour les entités ; crée des cas d’usage sur des technologies spécifiques avec les entités ;- Group Procurement : définit la stratégie d’achats d’AXA, ses lignes directrices et les normes du Groupe ; gère les relations avec nos fournisseurs stratégiques et accélère les achats métiers ;- Group Strategic Program Management : s’assure de la cohérence des projets globaux avec la stratégie du Groupe ; veille à la mise en œuvre et performance des projets stratégiques ;- AXA GOBO : offre des services partagés alignés aux priorités commerciales d’AXA ;- Group Operations Transformation : accélère la transformation agile au sein de Group Operations ; établit et met en œuvre une communication et stratégie RH commune à notre division.POSITION MISSION & MAIN ACTIVITIES1. Compliance· Regulatory watch of the legislations under the perimeter· Guarantee the compliancy with local applicable regulations under surveillance· Implement and maintain the different processes assigned to compliance: Ethics, Anti-bribery, Sanctions, Conflicts of interest, Criminal laws.· Review and follow up the compliance risks (evaluate the impact on the operational risks model of the entity)· Raise awareness to all employees regarding the risk associated of non-compliance· Report and escalate any relevant change in regulations subject to generate additional risks or needs inside AXA Services perimeter2. Data Privacy policies and governance· Develop and adapt AXA Services policies on data privacy in accordance with security local laws.· Develop and create appropriate privacy confidentiality consent forms, authorization forms, and information notices and materials reflecting current organization and legal practices and requirements.· Adopting and implementing detailed requirements or guidelines to assure a compliant handling of specific matters as deemed necessary such as:o IT Project Management when personal data is involvedo Third party management: risk assessment and contract managemento Sensitive Personal Data: Greater emphasis on whether and how to process this type of data· Design complaints procedure. Detailed guidance as to how employees and non-employees3. Data Privacy management and governance· Training and providing juridical consultative advice to all the areas and departments of the entity in question with regards to Data Privacy matters· Supporting and controlling a general data protection register (both as Data Controller and Processor) containing all data processing in use and current information about purpose).· Support to the different projects providing Data Privacy assessment and sign-off when satisfied on compliancy with local applicable laws· Collaborates with the teams in charge to respond to requests for access to and correction of personal information and general issues concerning personal information (i.e. rights of access, rectification, cancellation and similar requests).· Support on drafting internal or external data privacy agreements· Reviewing and monitoring business activities and vendor contracting and negotiations· Attendance at Data Privacy, Security or similar Committees· Coordination and management of responses to incidents involving Personal Data (e.g. Unauthorized access or disclosure)· Permanent Control: Ensuring on a regular basis that data processing applications and processes are still compliant.4. Control of Data Privacy Regulations· Monitors both local and other relevant Data Privacy related regulations impacting the ATS (GDPR + local regulations).· Creates an environment that promotes compliance with Data Privacy related regulations.5. Interface with corporate governance bodies· Communication and reporting to the local data protection authority (if existing) and other relevant regulators, attendance at data protection authority inspections, handling audit submissions and other information submission requirements· Build on a strong working relationship with the management of the compliance & governance function, guaranteeing the global needs of the organization.· Build on the relation with the AXA Services local governance bodies, Axa OpCos· Coordination with the local Risk, Security, Legal, HR, Physical Security, IT Operations, Finance and Internal Audit function on Data Privacy matters· Communication and reporting to the local data protection authority (if existing) and other relevant regulators, attendance at data protection authority inspections, handling audit submissions and other information submission requirements.· Keeping Senior and Business Management informed about their responsibilities regarding Data PrivacyDIMENSION¢ Local ¢ Regional ¢ InternationalQualificationsPROFILE, SKILLS & COMPETENCIES1. Profile· A previous Data Privacy / Compliance experience (at least Master graduate or equivalent – Legal or IT Security)· 0 to 4 years of professional experience (preferable including contract negotiation)· Ability to draft complex legal documentation in English· Language skills:o Required: English – high level (written, spoken, negotiation)o Nice to have (not required but appreciated): German, French, Spanish, Italian2. Skills & CompetenciesA. Results Orientation· Ability of tasks prioritization with a clear action plan defined· Develop an internal sense of urgency to complete tasks
  • Holds self and others accountable for delivering high-quality results on time and within budget
  • Challenge of ineffective work processes and promote constructive alternatives
  • Use of the appropriate criteria to regularly evaluate work processes, services and deliverables
  • Solicits and/or provides information that could affect the planning, programs and decision-making for the organization
B. Change Leadership / Collaboration and Influencing· Ability to build strong working relationships across a broad and varied mix of people and skills in IT and across business organizations· Ability to win the trust of internal customers and other parts of the organization while challenging and fostering changeC. Team Spirit· Positive mindset· Excellent communication skills at all levels· A collaborative work style and team-building mindset· Intercultural sensitivity· Flexibility

AXA