
Securitas · Machelen
Securitas Group Securitas is a world-leading safety and security solutions partner that helps make your world a safer place. By leveraging technology in partne...
Securitas Group
Securitas is a world-leading safety and security solutions partner that helps make your world a safer place. By leveraging
technology in partnership with our clients, we offer a broad portfolio of value-enhancing services and solutions integrated across
the security value chain – from on-site services to advanced monitoring, comprehensive risk prediction and advisory services.
With around 322 000 employees in 44 markets, our innovative, holistic approach with local and global expertise makes us a trusted
business partner to many of the world’s best-known companies. Benefitting from almost nine decades of deep experience and guided
by our values of integrity, vigilance, and helpfulness, we create sustainable value by helping our clients optimize their
operations and protect what matters most - their people and assets.
About the team
The newly established Data, AI and Privacy Legal Team will deliver Data, AI and privacy legal support across Securitas Group.
Within Region Europe, our work is organized into three hubs:
1. Central – France, Belgium, The Netherlands, Luxembourg
2. North-West – United Kingdom, Ireland, Norway, Sweden, Denmark, Finland
3. Mid & East – Germany, Austria, Switzerland, Croatia, Slovakia, Hungary, Romania, Czech Republic, Poland, Turkey, Serbia
About the role
We are looking for an experienced Data, AI and Privacy Legal Counsel to join our team and lead legal support for the Central Hub
(France, Belgium, The Netherlands and Luxembourg).
You will be the single point of contact for privacy, AI and data-governance matters across the four countries and the local legal
entities and business units within them. You will provide pragmatic legal expertise on Data, AI and Privacy compliance to a wide
range of stakeholders, and develop cohesive approaches across a decentralized organization – ensuring compliance while enabling
innovation and business efficiency.
This role offers a rare opportunity to shape how a newly established global function structures its Data, AI and Privacy
compliance, and to foster collaboration across markets and business functions at scale.
Key responsibilities
Alongside day-to-day Data, AI and Privacy legal work, you will help establish structure and an efficient way of working. You will:
strategic and operational hands-on advice.
the four countries.
transformation projects and new data-driven solutions.
Who we are looking for
You combine practical legal experience with strong stakeholder skills and business acumen. You are comfortable supporting multiple
countries and business units in parallel, and you are energized by helping build something new. Our ideal candidate is:
trust across a complex organisation.
Required qualifications and experience
management, metadata standards, retention models).
privacy training.
practice.
Nice to have
Working conditions
We are currently welcoming applicants from Poland, France, Belgium, The Netherlands or Luxembourg (with preference for candidates
based in Warsaw, Poland).
Hybrid model applies - the specific set up will depend on office regulations in the specific country.
The role involves travelling (around 4-6 times per year).
What we offer
At Securitas we believe in doing the right thing and doing it well. For our customers and our employees. Our employees come from
all walks of life and bring with them many talents and perspectives. We aim for diverse representation throughout the company, and
we are committed to equal pay, safe working conditions, gender balance and an inclusive work environment with a wide range of
skills and development opportunities.
If this sounds like the right next step in your professional career, don't hesitate and apply!
Securitas Group Securitas is a world-leading safety and security solutions partner that helps make your world a safer place. By leveraging technology in partnership with our clients, we offer a broad portfolio of value-enhancing services and solutions integrated across the security value chain – from on-site services to advanced monitoring, comprehensive risk prediction and advisory services. With around 322 000 employees in 44 markets, our innovative, holistic approach with local and global expertise makes us a trusted business partner to many of the world’s best-known companies. Benefitting from almost nine decades of deep experience and guided by our values of integrity, vigilance, and helpfulness, we create sustainable value by helping our clients optimize their operations and protect what matters most - their people and assets. ---------------------------------------------------------------------------------------------------------------------------------- About the team The newly established Data, AI and Privacy Legal Team will deliver Data, AI and Privacy support across Securitas Group. The team combines lawyers across Countries, Regions and Group units with non-legal specialists who run the operations, tooling and processes that make the team scalable. ---------------------------------------------------------------------------------------------------------------------------------- About the role We are looking for an operationally minded Data, AI and Privacy Coordinator to join our team in a non-legal support role. You will be the engine room of the team – owning OneTrust day-to-day, improving the workflows and processes that the team relies on, and running the operational privacy and AI tasks. Your role would be to take responsibility for operational tasks, processes and workflows, bringing consistency across countries, and make the team’s way of working measurably more efficient over time. This role offers a rare opportunity to shape how a newly established global function structures its Data, AI and Privacy operations, and to build the tooling and processes that the whole team will use for years to come. ---------------------------------------------------------------------------------------------------------------------------------- Key responsibilities OneTrust ownership * Act as the in-house power user of OneTrust – configure modules, build and maintain workflows, manage users, dashboards, templates and reporting. * Identify gaps and improvements, channel them to the OneTrust stakeholder group, and represent the DAP team’s needs in the tooling roadmap. * Coach business users on how to use OneTrust effectively, and act as the first point of contact for tool-related questions. Workflow and process design * Design, document and continuously improve the operational processes the DAP team relies on – intake, assessments, risk mitigation, ROPAs, privacy notices, monitoring and reporting. * Standardise templates, playbooks and checklists so that quality and turnaround are consistent across hubs. Operational privacy and AI tasks * Maintain and update the Records of Processing Activities (RoPA) and the AI use-case inventory. * Support with incoming Data Subject Rights requests. * Handle the operational steps of incident and breach response – logging, evidence collection, status tracking and coordinating notifications. * Keep transparency notices, privacy statements and AI disclosures up to date across the in-scope entities. * Run the operational side of vendor reviews and DPIA intake – gathering information for a privacy assessment, coordinating with stakeholders and preparing for legal review. * Prepare materials for privacy and AI training and awareness campaigns; track completion and follow-up. Reporting and continuous improvement * Build and run regular reporting so leadership can see bottlenecks and trends. * Contribute to monitoring, audit and reporting processes to support accountable governance. * Drive a continuous improvement loop – collect feedback from the lawyers and from business users, propose changes and implement them. * Partner with stakeholders from IT, Security, Compliance, HR, Marketing and Procurement to embed privacy-by-design and AI governance into operational practice. ---------------------------------------------------------------------------------------------------------------------------------- Who we are looking for You combine practical operational experience with a strong sense of structure and stakeholder engagement. You are comfortable working in a legal and compliance environment without being a lawyer yourself, and you are energized by building something new. Our preferred candidate is: * Operationally-minded – you like building processes, running tooling and making things demonstrably more efficient. * Hands-on with OneTrust – confident building and maintaining workflows, not just using them as an end-user. * A natural process-thinker – you can take a messy reality and turn it into a documented way of working. * Skilled at stakeholder management – you build strong relationships and earn commitment across a complex organisation. * Curious about technology and AI; willing to grow your regulatory understanding as you go. * Tech-savvy and energised by tooling – spreadsheets, dashboards, automation and reporting come naturally. * Continuous-improvement minded – you spot bottlenecks and fix them, rather than work around them. * Comfortable working with different countries, supporting multiple legal counsels and business units in parallel. Required qualifications and experience * 5+ years of experience in a privacy, data protection, compliance operations, GRC tooling or similar operational role. * Bachelor’s degree (privacy, IT, business, compliance or related field); further qualifications welcome. * Hands-on experience administering GRC tooling (OneTrust experience preferred) – including building and maintaining workflows. * Working understanding of the GDPR, the e-Privacy Directive and the EU AI Act – enough to operate within them. * Demonstrated experience designing and documenting operational processes. * Hands-on exposure across the practical privacy workflow – RoPA upkeep, Data Subject Rights requests, breach handling, training preparation. * Excellent project management and communication skills; adept at working with both legal and non-legal colleagues. * Good working understanding of AI and IT applications – able to have informed conversations about AI capabilities without being a deep technologist. * Fluency in English. Nice to have * OneTrust certification (e.g. OneTrust Certified Privacy Professional, Certified Automation Professional). * Relevant privacy certifications, such as IAPP Certified Information Privacy Manager (CIPP/M) or IAPP Certified Information Privacy Technologist (CIPP/T). * Relevant AI governance certifications, such as IAPP Artificial Intelligence Governance Professional (AIGP). * Working knowledge of the wider EU Digital Decade regulatory package (e.g. Data Act, NIS2 Directive, DORA). * Experience with automation or low-code tooling (Power Platform, ServiceNow, or similar). * Proficiency in a second EU language. ---------------------------------------------------------------------------------------------------------------------------------- Working conditions We currently welcome applications from EU Securitas hub locations, with a preference for candidates based in Warsaw, Poland. Hybrid model applies - the specific set up will depend on office regulations in the specific country. The role involves travelling (around 2-4 times per year). ---------------------------------------------------------------------------------------------------------------------------------- What we offer At Securitas we believe in doing the right thing and doing it well. For our customers and our employees. Our employees come from all walks of life and bring with them many talents and perspectives. We aim for diverse representation throughout the company, and we are committed to equal pay, safe working conditions, gender balance and an inclusive work environment with a wide range of skills and development opportunities. If this sounds like the right next step in your professional career, don't hesitate and apply!
ABOUT US Legora is redefining how legal work gets done. Not built for lawyers, built with them. We work alongside the world’s best legal teams, who expect excellence, precision, and speed, and we hold ourselves to the same bar. Our AI-native workspace lets legal professionals move faster, think more clearly, and operate with sharper precision. By analysing thousands of documents in minutes and powering end-to-end workflows, we cut through complexity, teams can focus on what matters: judgment, strategy, and outcomes. 1,000+ customers across 50+ countries trust us, including Cleary Gottlieb, Goodwin, Linklaters, White & Case, Dentons, and Barclays. We’ve scaled to $100M+ in ARR, with teams across Europe, North America and APAC, and continue to expand through acquisitions including Qura, Walter AI and Graceview. We partner with world-class performers: including Aaron Judge and the New York Yankees, Ludvig Åberg (and his caddie), and campaigns featuring Jude Law. Joining Legora means three things. * We lean in: ownership over titles, outcomes over intentions. * We fight for excellence: high standards, direct, ego-free feedback. * We grow together: as a team and with our customers. Mission before ego. Everyone contributes. No one coasts. If you’re driven by impact, pace, and raising the bar. This is the place. The Role Customer Trust is how Legora earns and keeps the confidence of the world's most demanding legal teams in how we handle their data — and how our AI handles it. We are the front line for customer security, privacy, and compliance scrutiny: the team that answers the hard questions buyers, CISOs, and procurement teams ask. We own the security questionnaires (including their AI sections), the trust portal, the audit and evidence requests, and the customer-facing side of our SOC 2, ISO 27001, and AI-governance posture. We partner closely with Information Security, Privacy and Legal counsel, and Go-to-Market to turn scrutiny into signed, renewed, and expanded relationships. Our work makes Legora easy to trust and easy to buy. What You'll Be Doing * Own customer trust requests end-to-end: security questionnaires (SIG, CAIQ, and bespoke), DDQs, and the security and AI sections of RFPs — delivering high-quality responses against agreed SLAs in time-sensitive sales and renewal cycles. * Answer the AI-trust questions buyers now ask: questions on training-data handling and retention, model-provider subprocessors, data residency, and our EU AI Act, ISO/IEC 42001, and NIST AI RMF posture — coordinating with Privacy and Legal counsel on anything touching privilege or client confidentiality. * Communicate with expertise: translate Legora's security, privacy, and AI-governance posture into clear, confident answers for customer CISOs, GCs, and procurement teams. * Master the product and controls: develop deep expertise in Legora's platform, its security and compliance controls, and its AI supply chain, so you can resolve complex trust questions with sound judgment. * Run the trust portal and evidence repository: keep the portal, SOC 2 / ISO reports, penetration-test summaries, DPAs, subprocessor and model-provider lists, and AI-governance documentation current, accurate, and self-serve. * Review security and contractual terms: support DPAs, security addenda, and non-standard customer security and AI terms, partnering with Legal to land them without slowing the deal. * Build the response library and automate: maintain reusable, approved responses and drive questionnaire automation, including AI-assisted drafting, to raise quality and cut turnaround. * Drive improvements and monitor proactively: spot recurring questions, objections, and emerging requirements, and partner with Information Security, Product, and Legal to close gaps and reduce repeat work. * Support customer audits and security reviews: coordinate customer-facing security calls, audit responses, and follow-ups with precision and care. * Shape the function: as an early team member, build the processes, workflows, and standards for Customer Trust that scale globally. Who You Are * 3–5 years in customer trust, security GRC, security assurance, third-party risk, or a closely related customer-facing security or compliance role. * You've owned complex, high-stakes B2B relationships with demanding security, procurement, and legal stakeholders — taking full ownership of issues, delivering exceptional outcomes, and turning scrutiny into trust. * You can translate technical security and AI-governance controls into clear, customer-ready answers, with the judgment to know what to answer, what to caveat, and what to escalate. * You notice patterns, anticipate objections before they escalate, and collaborate cross-functionally to drive lasting improvements. * You are customer-obsessed, organized, and detail-oriented under deadline pressure. * You are technically curious and comfortable learning new software, security concepts, and AI and compliance frameworks quickly. * Someone who enjoys being in the office 5 days a week. A key component of Legora’s success has been in-person collaboration and we want you to be part of that. Nice To Have * Familiarity with SOC 2, ISO 27001, GDPR, and NIST, plus DPAs and subprocessor management. * Exposure to AI governance and assurance: EU AI Act, ISO/IEC 42001, NIST AI RMF, model-training and data-retention questions, and AI-subprocessor disclosure. * Certifications such as CISA, CISM, CISSP, or ISO 27001 Lead Implementer / Lead Auditor. * Experience with trust and GRC tooling such as Vanta, Drata, SafeBase, OneTrust, Conveyor, or Loopio. * A working understanding of cloud security and data-handling fundamentals — access, encryption, and data residency. * Background in SaaS, AI, or legal tech environments. *Please note that due to summer holidays, our response times may be a little longer than usual. We'll be reviewing applications from late July/early August. Thank you for your patience! Legora is an Equal Opportunity Employer At Legora, we believe great teams are built on diversity of thought and experience. We’re proud to be an equal opportunity employer and committed to creating an inclusive, high-performance culture where everyone can do their best work. We welcome people of all backgrounds and don’t discriminate based on race, color, religion, national origin, gender, gender identity or expression, sexual orientation, age, disability, veteran status, or any other characteristic protected by law.
Company description: Founded in 1927 Job description: What you will doAs Senior Counsel, Data Privacy & Technology you will set strategic legal direction, strengthen governance, lead senior stakeholder engagement, support the SVP Digital & IT organization and function, enable responsible innovation and digital transformation, and promote compliant data use across VFS. You will support alignment with global data protection laws, EU data-driven regulatory frameworks (including the EU Data Act), AI and digital regulations, DORA, NIS2; represent VFS in relevant Volvo Group forums and governance bodies; and supervise one or more Data Privacy Managers Your will take responsibilities in the following areas:• Provide strategic legal advice on global data protection laws, including GDPR and other applicable privacy regimes, in support of VFS products & services, operations, and markets• Advise on data, digital, cybersecurity, and financial services-related technology regulation, including the EU Data Act, DORA, NIS2, data access and sharing rights, and related impacts for VFS• Advise on AI regulation, including the EU AI Act, and translate requirements into practical guidance for AI development, procurement, deployment, monitoring, and governance• Provide strategic and practical legal support for digital, IT, data, analytics, platform, connected services, and AI initiatives• Draft, review, and negotiate cloud, SaaS, software, outsourcing, data-sharing, AI, analytics, platform, and technology services agreements, including data protection agreements and cross-border transfer mechanisms• Lead and continuously mature VFS privacy, data, and AI governance frameworks• Provide governance tools, legal oversight, and escalation support for privacy-by-design, AI-by-design, data lifecycle controls, risk classification, control requirements, DPIAs, transfer impact assessments, legitimate interest assessments, AI risk assessments, and related remediation plans • Advise on and support risk management for data access, data sharing, connected products & services, AI outputs, cybersecurity, connected products, and other data-intensive solutions• Lead, manage, and develop Data Privacy Managers, setting priorities, coaching performance, and building capability across the VFS privacy, data, and AI legal agenda• Collaborate with IT, Digital & IT, Security, Risk, Compliance, Operations, and other colleagues to provide practical guidance, governance tools, and escalation support for effective controls and accountable governance• Serve as the primary VFS legal interface with Volvo Group privacy, AI, data, and digital governance stakeholders, representing VFS in Group-wide policy, governance, framework, and implementation discussions• Act as VFS Data Protection Representative (or designate a qualified Privacy Manager or equivalent as delegate for operational privacy activities, while retaining overall accountability for compliance)• Translate Volvo Group requirements into fit-for-purpose VFS guidance, governance tools, and planning support that enables local implementation• Monitor and assess legal developments in privacy, AI, cybersecurity, data, digital regulation, DORA, NIS2, and financial services-related technology regulation, and translate requirements into actionable policies, standards, guidance, templates, training, and governance routines• Support audits, regulatory interactions, customer and partner due diligence, and management reporting on privacy, data, AI, cybersecurity, and technology regulatory matters• Enable responsible AI & data-driven services, digital transformation, and data commercialization opportunities by providing legal direction that supports compliant and scalable innovation. Your future teamYou will report directly to the SVP, Legal & Compliance of VFS and will provide front-line support for the SVP Digital & IT function and this position is located in Gothenburg, Sweden.Who are you?Qualifications likely required to be successful in this role include:• Law degree and qualification to practice law in at least one relevant jurisdiction• 8–12+ years of relevant legal experience in privacy, technology, AI, data, cybersecurity, digital regulation, or financial services-related technology regulation, with significant experience advising on GDPR and global privacy laws• Knowledge of the EU Data Act, EU AI Act, DORA, NIS2, data governance, cybersecurity, cross-border data transfers, digital regulation, and emerging technology regulatory frameworks• Proven experience in a global matrix organization, regulated business, or comparable environment, preferably within connected products or other data-intensive sectors• Strong collaboration and stakeholder management skills, including the ability to support and enable local market teams• Experience working in a multi-jurisdictional environment• Ability to translate complex regulatory requirements into practical global guidance, frameworks, and governance tools that support consistent local market implementation by accountable teams• Ability to influence outcomes in a matrix organization without direct authority or ownership of local execution We look forward to receiving your application, no later than July 31.If you have any questions or would like further information, please feel free to contact:Eleisha Graves, SHRM-CPPeople & Culture Business Partner eleisha.graves@volvo.com As part of the recruitment process, a background check as well as alcohol and drug testing may be conducted. You will be informed if applicable.