Compliance Manager

Lancesoft Europe


Job Location:

Munich - Germany

Monthly Salary: Not Disclosed
Posted on: 14 hours ago
Vacancies: 1 Vacancy

Job Summary

Compliance Manager

Munich Germany

Permanent

Preferred to work from Munich Tech M office

Role Overview

The Compliance Manager is responsible for ensuring that all workplace technology services comply with applicable legal regulatory data protection cybersecurity and labor law requirements. The role serves as the central coordination point between internal stakeholders workers councils labor relations data protection officers cybersecurity teams project managers service managers and technology providers.

Key Responsibilities

Act as the single point of contact (SPOC) for all compliance-related activities within Workplace Management Services.

Coordinate compliance activities across Data Protection Labor Relations Workers Council Cybersecurity Legal Service Management and Project Management teams.

Ensure compliance with GDPR local privacy regulations workers council agreements labor laws and internal corporate policies.

Lead the creation review maintenance and approval of Data Protection Impact Assessments (DPIA).

Lead the creation review maintenance and approval of Records of Processing Activities (ROPA).

Create and maintain Privacy Risk Assessments (PRA) and Security Protection Requirement Analyses (SBA).

Develop and maintain data deletion and retention concepts for workplace services.

Prepare and maintain information related to data subject rights and privacy notices.

Coordinate and manage data subject access requests related to workplace technologies.

Assess compliance impacts for new workplace services and modifications to existing services.

Review and evaluate technology changes introduced by vendors including Microsoft and third-party providers.

Track Microsoft roadmap updates release notes and service enhancements for compliance implications.

Identify compliance risks resulting from service updates and ensure timely remediation.

Ensure all compliance documentation is updated prior to implementation of service changes.

Lead workers council involvement processes for new services and service modifications.

Prepare workers council documentation presentations reports and supporting materials.

Participate in workers council meetings workshops and negotiations in an advisory capacity.

Coordinate with labor relations teams regarding workers council requirements and escalations.

Ensure all required workers council approvals are obtained before service go-live.

Track and manage workers council action items and commitments.

Escalate compliance issues delays or approval blockers to appropriate stakeholders.

Create and maintain security concepts in cooperation with cybersecurity teams.

Coordinate security assessments and security compliance reviews for workplace services.

Open manage track and close Technology Risks (TRISK) and other compliance-related risks.

Conduct compliance risk assessments for new technologies and business initiatives.

Define corrective and preventive actions to address compliance gaps and findings.

Monitor implementation and closure of compliance remediation activities.

Develop governance frameworks standards policies and operating procedures.

Maintain compliance processes for workplace technologies and digital workplace services.

Develop and update Fair Use Policies and acceptable use guidelines.

Create and maintain governance documentation from technical and organizational perspectives.

Produce regular compliance reports for management labor relations workers councils and regulatory stakeholders.

Prepare monthly quarterly and annual compliance status reports.

Ensure audit readiness for internal audits external audits and regulatory reviews.

Maintain evidence repositories and compliance documentation required for audits.

Support auditors during audits and coordinate closure of audit findings.

Develop and deliver compliance awareness sessions user trainings and governance workshops.

Create user guidance documents operational procedures and compliance communications.

Maintain a centralized backlog of open ongoing and completed compliance activities.

Track compliance-related KPIs and service performance metrics.

Monitor service approval timelines and ensure compliance activities are completed within agreed SLAs.

Ensure all workplace services are reviewed regularly for regulatory and compliance impacts.

Drive continuous improvement initiatives to enhance compliance processes and governance effectiveness.

Provide expert guidance on Microsoft 365 Microsoft Teams SharePoint OneDrive Power Platform Microsoft Copilot Intune Azure services and Zscaler from a compliance perspective.

Collaborate with enterprise architects and technical teams to ensure privacy-by-design and security-by-design principles are implemented.

Support strategic workplace transformation initiatives while ensuring regulatory compliance.

Maintain strong working relationships with internal and external stakeholders.

Provide subject matter expertise during compliance investigations and incident reviews.

Support executive management with compliance insights risk assessments and decision-making recommendations.

Required Skills & Experience

Minimum 8 10 years of experience in Compliance Governance Risk Privacy Data Protection or Regulatory Management.

Strong experience with GDPR privacy regulations and compliance frameworks.

Experience working with Workers Councils and Labor Relations organizations.

Strong understanding of Microsoft 365 ecosystem and workplace technologies.

Experience with DPIA ROPA PRA SBA and risk assessment methodologies.

Strong stakeholder management and negotiation skills.

Experience supporting audits and regulatory assessments.

Strong documentation reporting and presentation skills.

Excellent communication and coordination capabilities.

Ability to manage multiple stakeholders and complex compliance initiatives simultaneously.

Preferred Certifications

CIPP/E

CIPM

CDPO

CISSP

CISM

CRISC

ISO 27001 Lead Auditor

ISO 27001 Lead Implementer

Microsoft Security Compliance or Enterprise Administrator Certifications

Language Requirements

German Language: C1 or above (mandatory)

English Language: C1 or above (mandatory)

Strong legal compliance and workers council terminology proficiency in German.

Compliance Manager Munich Germany Permanent Preferred to work from Munich Tech M office Role Overview The Compliance Manager is responsible for ensuring that all workplace technology services comply with applicable legal regulatory data protection cybersecurity and labor law requirements. Th...