Data Security Officer

Reach new technical heights and:

  • Identify and evaluate the company’s data processing activities
  • Develop and execute relevant compliance projects
  • Perform audits and determine whether we need to alter our procedures to comply with regulations and address potential problems
  • Act as the point of contact between the company and any Supervisory Authorities
  • Liaise with other organizations that process data on our behalf
  • Write and update detailed policies and procedures related to data processing and security
  • Manage and be accountable for response to requests from regulators information, inspection audit and any enforcement action
  • Oversee the Data Ownership and Management in the Organization. Monitor and maintain records of all data processing activities conducted by the company
  • Review the company’s agreements and contracts with data processors and controllers
  • Communicate with data subjects to inform them about how their data is being processed and the rights they have to their data
  • Incident management and coordinate data breach response and notification procedures
  • Be able to speak knowledgeably on DP to client facing and internal teams and direct their queries appropriately and be able to speak at external conferences and events
  • Proactively keep up to date with DP and security topics such as regulatory guidance and enforcement action, activities of relevant industry and standards associations etc.

Risk Management E.g:

  • Research and develop a security strategy by being aware of potential threats and possible countermeasures. Use this knowledge to make judgements based on analysis of a range of options and conflict opinions to best ensure that the highly complex security issues are understood, and that the risks are managed
  • Set in place the process for the raising and monitoring risks on a regular basis, with reference to the Technology and Information Management Board
  • Ensure that regular risk assessments are completed in departments and that results are recorded
  • Assist in taking timely action resulting from any risk assessment recommendations. This may involve liaison with other department such as estates or planning etc. Essential is keeping the Chief Information Officer informed if there are any issues of non-compliance

Train the staff involving in data processing. E.g.:

  • Define needs, strategy, and execution for global and local DP training and awareness programs, including building, developing and delivering such programs
  • Ensure that data protection and information security training is up-to-date, and incorporates trust current policies and practice
  • Develop and maintain the departments Intranet site, ensure that it contains the most up-to-date and accurate information

Skill set:

  • Excellent management skills
  • Excellent verbal and written communication in Bulgarian and English
  • Ability to get things done without direct authority over a team. Good negotiating and influencing skills
  • Experience of providing training and guidance around data security issues, from IT engineers to non-IT literate staff
  • Understanding of the importance of Data Security management, including external drivers and standards such as ISO 27001 and GDPR
  • Ability to undertake research and development work to ensure that the organization is up to date with the latest developments in data security management
  • Degree in law or information systems, information security, or business management or equivalent
  • Willingness to gain knowledge of the company’s IT infrastructure and organizational structure

Stand out with:

  • Experience in compliance management
  • Experience in writing procedures and policies
  • Expert knowledge of data protection law and practices/ data protection and legal compliance
  • Advanced level of IT literacy – direct experience of working with data security applications, systems and solutions



ScaleFocus is an European IT solutions delivery center. Enabling our global customer base through technology excellence, R&D and innovation, we are focusing on advanced engineering services and bespoke consultancy in the domains of Digital, Data and Cloud. Through team care and customer success obsession, we are engaging in fulfilling partnership journeys of open communication, respect, trust and drive for tangible business outcomes.


Competitive remuneration package

Training and development

Career enhancement

Flexibility with working hours

Transport card or parking lot

Health care coverage for you and your children

Friendly environment, provided by team of great professionals

Sports subscription

After your 4th year:

Car leasing covered by ScaleFocus

Additional pension fund

Additional funding for life insurance

Kinder garden/educational expenses coverage

If you find the position interesting and would like to apply send us your CV.

Please note that only shortlisted candidates will be contacted for an interview.

Share this position: