Ethics and Compliance Specialist (GDPR)

  • Full-time
  • Contract Type: Permanent
  • Directorate: Legal

Company Description

IAG GBS (Global Business Services) is part of International Airlines Group, one of the world’s leading airline groups, with 546 aircraft flying to over 270 destinations, carrying more than 100 million passengers each year.

IAG GBS provides a plug and play platform of scalable, best in class procurement, finance and IT business services to IAG’s operating companies which include Aer Lingus, IAG Loyalty, British Airways, IAG, IAG Cargo, Iberia, Iberia Express, LEVEL and Vueling.

The company is headquartered in Krakow, and has operations in London, Madrid, Barcelona and Dublin.

Job Description

Purpose of the role:

Support IAG GBS Compliance Officer with regard to their accountabilities and responsibilities as outlined in the IAG Group Ethics & Compliance Charter and in relation to the following areas: culture of integrity; governance & oversight; third party due diligence (KYC) process; training & communications, policies & procedures; risk assessment/management; monitoring, reporting & control process; Speak Up and investigations.

Support IAG GBS DPO, other members of the IAG GBS Legal & Compliance team and business functions with regard to certain activities or internal processes focused on data privacy/data protection (including GDPR) compliance, such as: reviewing DPIAs, responding to DSARs, dealing with data privacy incidents, preparing TPAAs (third parties access agreements).

Accountabilities and Responsibilities:

  • Analyse counterparties relationships, documentation, risk portfolio and activity patterns to detect potential irregularities and/or serious corporate compliance issues.
  • Identifying counterparties posing higher risk due to the existence of red flags or other high risk corporate compliance triggers, such as adverse media, non-transparent corporate structure and/or unclear beneficial ownership status.
  • Comply with relevant legislative and regulatory standards, internal processes and procedures in relation to KYC due diligence and data privacy.
  • Resolve day-to-day issues arising during the relevant process (such as: KYC due diligence, DPIA, DSAR, data incidents etc.) and escalate more complex cases via the appropriate channel.
  • Complete allocated tasks with focus, attention to details and in a timely manner.
  • Communicate the status of tasks to relevant stakeholders and escalate problems swiftly, as needed.
  • Manage the caseload throughout the end-to-end process in a timely manner.

In reference to the above, you will: 

  • Conduct basic and enhanced KYC due diligence checks (BAU and ad-hoc).
  • Manage records and alerts within the KYC system/toolset.
  • Support third parties onboarding process and ensure deadlines/KPIs/SLAs are met.
  • Support the implementation of the initiatives included in the IAG and IAG GBS 3-Year Ethics and Compliance Plan. 
  • Work collaboratively with other members of the Legal and Compliance team, frontline staff, and managers to identify opportunities for improving compliance across IAG GBS and support their implementation where appropriate.
  • Prepare and review compliance documents.
  • Assist in the development of ethically compliant business practices and support the implementation of compliance projects and training initiatives.
  • Assist with ad-hoc global projects as required. Play a key part in the implementation of the effective IAG GBS Ethics & Compliance Plan.
  • Perform other daily tasks that may fall under the Ethics & Compliance/Data Privacy processes.

Qualifications

  • University degree in law is not required but will be considered an advantage.
  • Professional certification in corporate compliance is a plus.
  • At least 2 years of proven experience in corporate compliance role, in particular with regard to KYC due diligence.  
  • Good knowledge of the relevant legislation and enforcement regimes, in relation to anti-bribery, trade sanctions and export controls.
  • At least 1 year of proven experience in data privacy/data protection (GDPR) will be an asset.
  • Practical skills and knowledge in using dedicated IT tools or software (such as, for example: Dow Jones, GAN, BvD Orbis, Navex, OneTrust etc.) supporting KYC/data privacy activities.
  • Practical skills and knowledge in using MS 365 Office suite (Word, Excel, PowerPoint, Teams, SharePoint)
  • Ability to work autonomously and effectively manage priorities and deadlines.
  • Excellent written, oral and communication skills in English. Spanish language skills are not required but would be considered an advantage.
  • Excellent analytical and problem-solving skills to identify and mitigate potential compliance related risks.
  • Ability to partner effectively with others in handling complex issues.
  • Ability to prepare well-structured and comprehensive written material.
  • Proven ability to work with all levels of management.

Additional Information

 What we offer

  • The chance to enjoy a challenging career in an exciting, fast-moving environment in a dynamic industry
  • The opportunity to work in a multi-cultural environment with great offices in many locations. We aim to provide all our people with a work/life balance, as well as the many benefits offered by a global organisation, including health insurance, pension and performance bonuses
  • We are an equal opportunities employer and all qualified applicants will receive consideration for employment without regard to race, colour, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law
Privacy Policy