Group Tech Data Protection Officer

Join the best bank to work for in Bulgaria*

Who we are:

Do you want to join a well-established bank with a start-up culture? No, we’re not joking!

We, at tbi, have been one the most profitable banks for years and we are growing at a fast pace. We’re a bank with a long history of success that operates as a start-up and we’re always on the lookout for new opportunities to grow our business. How do we do that?

It's all about our people. Our team is made up of brave, passionate and caring people who don’t just want to follow the same path – we want to transform into mobile-first, state-of-the-art lifestyle ecosystem. Our colleagues love working here – 80% of them would recommend tbi as an employer to their friends and family. Our people are engaged in challenging and meaningful work, inspired to grow their potential and career, encouraged to learn and empowered to take decisions. That’s not corporate babble, it’s what our people say.

Do you want to play a key role in our unique success story?

If so, we're looking for a Group Tech DPO to join our team on our journey to success!

What You’ll do:

• Lead and implement the Group-wide GDPR compliance program across tbi bank, with a strong focus on IT systems, digital platforms, and banking processes.

• Ensure full compliance with GDPR and applicable EU and local data protection laws, regulatory expectations, and industry best practices.

• Define and execute the Group privacy strategy, including standards, frameworks, playbooks, and templates, ensuring consistency and scalability across entities.

• Design and oversee the GDPR governance framework, including Group and local policies, procedures, and controls.

• Embed Privacy by Design and by Default into SDLC, agile delivery, and product development.

• Maintain visibility over end-to-end data flows across core banking systems, APIs, microservices, cloud platforms, and data lakes.

• Oversee DPIAs, AI impact assessments, international data transfers (TIAs), and third-party data access.

• Ensure effective operation of Data Subject Rights (DSR) processes and Records of Processing Activities (RoPA).

• Define and monitor data protection KPIs, manage incidents and risks, and drive continuous improvement.

• Act as a trusted advisor to business and technology teams and promote a strong privacy culture through training and awareness initiatives.

What you’ll need to succeed:

• University degree in Law, Information Security, Information Technology, Computer Science, Risk Management, or a related field.

• Proven experience in implementing or consulting data protection principles in information technologies within the banking or financial sector (more than 3 years).

• Strong understanding of cloud architectures, AI/ML platforms, SaaS platforms and able to translate law into technical requirements and product trade-offs.

• Demonstrated hands-on experience in implementing and operating GDPR compliance programs within complex, technology-driven organizations.

• Practical experience in Conducting and overseeing DPIAs, AI impact assessments, and TIAs, Managing international data transfers and vendor data access, Designing and maintaining RoPA, data classification frameworks, and privacy controls.

• In-depth knowledge of legislation governing data protection, incl. GDPR, NIS, PSD2, PSD 3 and related regulatory frameworks.

• Strong stakeholder management skills, with the ability to engage effectively with Board-level stakeholders, engineering, IT, Security, Product, Legal, and Compliance teams.

• Strong analytical, problem-solving skills and project management skills with a proactive and detail-oriented approach.

• Excellent communication skills, high integrity, sound judgment, and strong ethical standards.

• Fluency in English.

What we offer:

• Seize the opportunity to grow your career

• Engage in exciting and meaningful work

• Get recognition for your work and attitude

• Become part of a large, friendly and supportive team with 16+ nationalities

• Get additional private health insurance

• Receive special prices for multisport card and multiple retailers

• Obtain preferential prices for our banking products

• Enjoy a great location in Sofia’s city centre near National Palace of Culture and South Park

• Bring your furry bestie: Let's make work pawsome

Visit our Career Page to learn more about what makes us different.

If this sounds like something you’d be interested in, we'd love to hear from you!

To apply for this position, please send us your CV in English.

We'd love to get back to everyone, but due to the number of applications we receive, we can only contact the shortlisted candidates.

*We are ranked the top bank and top 3 employer to work for in Bulgaria according to Kaderabotim.bg 2025 employer rankings.

All applications are treated with utmost confidentiality.

By submitting your job application to tbi bank, you confirm that you have read the document named “Information related to personal data processing for job applicants” publicly available on tbi Career page.