Job type
PermanentLocation
LondonWorking Pattern
Flexible Working,Full-timeSpecialism
Cyber SecurityIndustry
InsurancePay
60000
Data Protection Manager
You will be tasked with establishing, implementing, and maintaining a data protection control and oversight framework to safeguard compliance with applicable data protection laws.
The role will contribute to delivering data protection plans and projects that enhance compliance, improve risk management, and maintain up-to-date and effective privacy practices across the organisation. Key
Responsibilities:
Delivering key aspects of the annual Data Protection Plan and Risk & Control Framework.
Identify improvement opportunities within the Data Protection Framework, focusing on early risk identification and remediation.
Lead assigned projects, including integration of new business acquisitions and new policy administration systems.
Maintain data protection registrations and meet proficiency requirements through ongoing training and alignment to internal policies.
Advise on data protection matters such as Data Subject Requests, Personal Data Breaches, Data Protection Impact Assessments, vendor due diligence, and data retention.
Document and maintain Records of Processing Activities (RoPAs) for each in-scope entity, ensuring privacy notices reflect current practices.
Complete annual Data Protection risk assessments for internal governance reporting and support enterprise risk assessments.
Supervise data protection compliance, performing gap analyses, and coordinating remediation and training as vital.
Act as a referral point for data protection queries and advance issues to the Head of Data Protection as needed.
Skills & Attributes
Deep knowledge of UK and EU data protection laws and ePrivacy regulations, including PECR.
Experience with data protection compliance in sophisticated, multi-company environments.
Skilled in assessing and advising on personal data breaches, subject access requests, and contractual reviews with controllers and processors.
Solid understanding of information technologies and data security best practices.
Experience within Financial Services (preferably insurance) is desirable.
Effective interpersonal and negotiation skills to work with diverse internal and external stakeholders.
Excellent interpersonal, time management, and planning abilities.
Qualifications
CIPP/E, CIPM, or Certified Data Protection Practitioner.
The role will contribute to delivering data protection plans and projects that enhance compliance, improve risk management, and maintain up-to-date and effective privacy practices across the organisation. Key
Responsibilities:
Delivering key aspects of the annual Data Protection Plan and Risk & Control Framework.
Identify improvement opportunities within the Data Protection Framework, focusing on early risk identification and remediation.
Lead assigned projects, including integration of new business acquisitions and new policy administration systems.
Maintain data protection registrations and meet proficiency requirements through ongoing training and alignment to internal policies.
Advise on data protection matters such as Data Subject Requests, Personal Data Breaches, Data Protection Impact Assessments, vendor due diligence, and data retention.
Document and maintain Records of Processing Activities (RoPAs) for each in-scope entity, ensuring privacy notices reflect current practices.
Complete annual Data Protection risk assessments for internal governance reporting and support enterprise risk assessments.
Supervise data protection compliance, performing gap analyses, and coordinating remediation and training as vital.
Act as a referral point for data protection queries and advance issues to the Head of Data Protection as needed.
Skills & Attributes
Deep knowledge of UK and EU data protection laws and ePrivacy regulations, including PECR.
Experience with data protection compliance in sophisticated, multi-company environments.
Skilled in assessing and advising on personal data breaches, subject access requests, and contractual reviews with controllers and processors.
Solid understanding of information technologies and data security best practices.
Experience within Financial Services (preferably insurance) is desirable.
Effective interpersonal and negotiation skills to work with diverse internal and external stakeholders.
Excellent interpersonal, time management, and planning abilities.
Qualifications
CIPP/E, CIPM, or Certified Data Protection Practitioner.
What you'll get in return
Flexible working options available.
