External DPO

Answer:

As regards to the duties of the Data Protection Officer (DPO) you can find a full job description in our EU GDPR consultation toolkit https://advisera.com/eugdpracademy/consultants/ . Among the responsibilities of a DPO I could mention:
- providing and maintaining the necessary documentation to demonstrate compliance with the GDPR;
- monitoring compliance with the GDPR and relevant local laws and regulations;
- ensures that training and awareness is available and delivered to all members of staff involved in the processing of
personal data; etc.

The role of the DPO in light of the General Data Protection Regulation is described also at : https://advisera.com/eugdpracademy/knowledgebase/the-role-of-the-dpo-in-light-of-the-general-data-protection-regulation/. You might find useful to go through Article 29 Working Party Guidelines on Data Protection Officers as well as Art. 39 of the EU GDPR "Tasks of the data protection officer".

Regarding what to be expected from an external DPO, he or she should be performing the same tasks mentioned above, there should be no material differences between an internal and an external DPO. A key point to have in mind is that regardless if the DPO is a employee or an external consultant he/she must report directly to the organization’s management, must be guaranteed a degree of independence and must not be required to take instructions regarding the exercise of his/her functions

What the external DPO would expect from you is a question that I cannot answer since is dependent on the mandate given to him/her.