Skill-Profil

GDPR / 152-FZ Compliance

Personal data, consent, right to erasure, Data Protection Officer, DPIA

Security Compliance

Rollen

wo dieser Skill vorkommt

Stufen

strukturierter Entwicklungspfad

Pflichtanforderungen

die anderen 2 optional

Security

Compliance

17.3.2026

Wählen Sie Ihr aktuelles Level und vergleichen Sie die Erwartungen.

Was wird auf jedem Level erwartet

Die Tabelle zeigt, wie die Tiefe von Junior bis Principal wächst.

Rolle	Pflicht	Beschreibung
Application Security Engineer	Pflicht	Understands basic GDPR / 152-FZ Compliance concepts. Follows security guidelines. Recognizes typical code vulnerabilities.
QA Security Engineer		Understands basic GDPR/152-FZ compliance concepts. Follows security guidelines. Recognizes typical code vulnerabilities.
Security Analyst	Pflicht	Understands basic GDPR / 152-FZ Compliance concepts. Follows security guidelines. Recognizes common code vulnerabilities.

Rolle	Pflicht	Beschreibung
Application Security Engineer	Pflicht	Applies GDPR/152-FZ compliance in application security: conducts privacy-focused code reviews, implements data minimization checks, and validates consent management flows. Uses SAST tools to detect PII exposure and logging violations.
QA Security Engineer		Applies GDPR / 152-FZ Compliance in daily work. Conducts security code review. Uses scanning and analysis tools.
Security Analyst	Pflicht	Applies GDPR/152-FZ compliance in security analysis: monitors data processing activities for regulatory violations, conducts DPIA assessments, and validates data retention policies. Uses DLP tools to detect unauthorized PII transfers.

Rolle	Pflicht	Beschreibung
Application Security Engineer	Pflicht	Designs privacy-by-design architecture aligned with GDPR/152-FZ: data classification systems, automated PII discovery, and pseudonymization pipelines. Implements privacy threat modeling (LINDDUN) and conducts compliance audits of application stacks.
QA Security Engineer	Pflicht	Designs compliance testing strategy for GDPR/152-FZ: automated privacy regression tests, data subject rights verification, and consent flow validation suites. Implements continuous compliance monitoring in CI/CD with privacy-focused test scenarios.
Security Analyst	Pflicht	Designs security solutions with GDPR / 152-FZ Compliance. Conducts threat modeling. Integrates security practices into SDLC. Mentors the team.

Rolle	Pflicht	Beschreibung
Application Security Engineer	Pflicht	Defines GDPR/152-FZ compliance strategy for application security: establishes privacy review processes, data processing agreement templates, and breach notification procedures. Coordinates DPO collaboration and cross-team privacy training.
QA Security Engineer	Pflicht	Defines security strategy with GDPR/152-FZ compliance. Establishes security policies. Coordinates incident response. Trains teams.
Security Analyst	Pflicht	Defines GDPR/152-FZ compliance monitoring strategy: establishes data processing registers, incident classification criteria, and regulatory reporting workflows. Coordinates with legal team on cross-border data transfer assessments and supervisory authority interactions.

Rolle	Pflicht	Beschreibung
Application Security Engineer	Pflicht	Defines enterprise privacy and GDPR/152-FZ compliance strategy. Shapes organizational privacy architecture spanning data governance, consent management, and cross-border transfer frameworks. Represents company in regulatory discussions and industry privacy initiatives.
QA Security Engineer	Pflicht	Designs GDPR compliance testing strategy: automated data mapping verification, consent mechanism testing, right-to-deletion validation, data breach detection. Defines privacy-by-design testing framework.
Security Analyst	Pflicht	Defines enterprise data protection strategy aligned with GDPR/152-FZ and emerging privacy regulations. Shapes organizational compliance framework spanning multiple jurisdictions. Drives privacy-by-default culture and represents organization in regulatory community.

Junior 3 Anforderungen

Application Security Engineer
Pflicht

Understands basic GDPR / 152-FZ Compliance concepts. Follows security guidelines. Recognizes typical code vulnerabilities.
QA Security Engineer

Understands basic GDPR/152-FZ compliance concepts. Follows security guidelines. Recognizes typical code vulnerabilities.
Security Analyst
Pflicht

Understands basic GDPR / 152-FZ Compliance concepts. Follows security guidelines. Recognizes common code vulnerabilities.

Middle 3 Anforderungen

Application Security Engineer
Pflicht

Applies GDPR/152-FZ compliance in application security: conducts privacy-focused code reviews, implements data minimization checks, and validates consent management flows. Uses SAST tools to detect PII exposure and logging violations.
QA Security Engineer

Applies GDPR / 152-FZ Compliance in daily work. Conducts security code review. Uses scanning and analysis tools.
Security Analyst
Pflicht

Applies GDPR/152-FZ compliance in security analysis: monitors data processing activities for regulatory violations, conducts DPIA assessments, and validates data retention policies. Uses DLP tools to detect unauthorized PII transfers.

Senior 3 Anforderungen

Application Security Engineer
Pflicht

Designs privacy-by-design architecture aligned with GDPR/152-FZ: data classification systems, automated PII discovery, and pseudonymization pipelines. Implements privacy threat modeling (LINDDUN) and conducts compliance audits of application stacks.
QA Security Engineer
Pflicht

Designs compliance testing strategy for GDPR/152-FZ: automated privacy regression tests, data subject rights verification, and consent flow validation suites. Implements continuous compliance monitoring in CI/CD with privacy-focused test scenarios.
Security Analyst
Pflicht

Designs security solutions with GDPR / 152-FZ Compliance. Conducts threat modeling. Integrates security practices into SDLC. Mentors the team.

Lead / Staff 3 Anforderungen

Application Security Engineer
Pflicht

Defines GDPR/152-FZ compliance strategy for application security: establishes privacy review processes, data processing agreement templates, and breach notification procedures. Coordinates DPO collaboration and cross-team privacy training.
QA Security Engineer
Pflicht

Defines security strategy with GDPR/152-FZ compliance. Establishes security policies. Coordinates incident response. Trains teams.
Security Analyst
Pflicht

Defines GDPR/152-FZ compliance monitoring strategy: establishes data processing registers, incident classification criteria, and regulatory reporting workflows. Coordinates with legal team on cross-border data transfer assessments and supervisory authority interactions.

Principal 3 Anforderungen

Application Security Engineer
Pflicht

Defines enterprise privacy and GDPR/152-FZ compliance strategy. Shapes organizational privacy architecture spanning data governance, consent management, and cross-border transfer frameworks. Represents company in regulatory discussions and industry privacy initiatives.
QA Security Engineer
Pflicht

Designs GDPR compliance testing strategy: automated data mapping verification, consent mechanism testing, right-to-deletion validation, data breach detection. Defines privacy-by-design testing framework.
Security Analyst
Pflicht

Defines enterprise data protection strategy aligned with GDPR/152-FZ and emerging privacy regulations. Shapes organizational compliance framework spanning multiple jurisdictions. Drives privacy-by-default culture and represents organization in regulatory community.

Kommentare werden geladen...