Menu

I am a Job Seeker looking for work

Signup with our easy to use form and keep us up to date with your details so we can find the right job for you

Register now →

I am an Employer looking for talent

Let us know your exact requirements and we will find you a perfect candidate for your role

Get in contact ↓

Search our job database

×

Data Privacy and Compliance Manager (O910700)

Thame

Compliance & Legal

£45,000 - £50,000 per annum (DOE)

Full time / Permanent

Add to shortlist + Remove from shortlist

Job description

Overview

Our Client are a leading, fast-growing sales and marketing insights business, providing their clients with market advantage through customer experience analysis and data analytics services.

Working as part of the wider compliance team across the global group, the Data Privacy and Compliance Manager is responsible for the adherence of the company's entities to group-led policies and procedures, as well as regulatory, legislative, internal and external requirements.

Performing regular audits, maintaining control systems and helping to design and implement company policies, you will monitor internal compliance to ensure that the business has a coordinated strategy for managing Data privacy, governance, risk management and compliance. Identifying issues and then working with internal stakeholders and project owners at all levels to drive focus and improvement across our business to remediate and manage.

Role Profile

Principle accountabilities:

  • Coordination with stakeholders e.g., Legal and Data Privacy to translate local policy requirements into actionable items and their communication
  • Support the creation and/or maintenance of local policy, process and procedures in line with and to support Group policies
  • Support and coordinate awareness information and training material and provide regular update sessions with relevant teams. Ensure existing documents are up to date and centrally available
  • Support the maintenance of existing frameworks e.g., ISO 9001, ISO 14001 and Privacy Management by coordinating external audit programmes/consultants to maintain accreditation and certification. Collaborate with internal and external teams to respond to and address findings of audits
  • Support with business continuity planning (BCP) - this will include being involved in the maintenance of the BCP document and involvement in testing of the BCP and demonstrating that the business is ready to enact the BCP at any time
  • Work with various vendors and service providers to ensure compliance with applicable standards
  • Undertake the role of Data Protection & Privacy champion for the business, working collaboratively with Data Protection & Privacy champions across the group and participate in regular meetings and learning events
  • Adopt the role of approver and "local administrator" of the Privacy, Security & Governance platform
  • Demonstrate compliance to the Group Data Protection & Privacy Programme, evidenced through the embedding and everyday use of the Group Central Privacy Management Platform, OneTrust
  • Support new business pitches with information relating to the compliance/information security/data protection programmes
  • Be a point of contact for advice to managers and Directors regarding privacy impact assessments, data processing impact assessments and compliance
  • Assist in the data privacy impact assessment and record of processing activity process and ensure assessments are carried out in a timely, accurate manner and used effectively in all areas of the business
  • Respond in a timely manner to data and information security incidents and breaches
  • Deliver periodic reporting/updates to leadership and the wider business
  • Carry out regular reviews of the UK group's data processing operations and the accessibility of personal data
  • Work closely with the Head of Group Compliance & Security, the Group Data Compliance & Privacy Officer and the Operations Director to ensure adherence to the group data protection & privacy programme and information security programme

Person Profile

  • Bachelor's degree in a technical or analytical field or equivalent experience
  • EU GDPR-F & EU GDPR-P Certifications
  • CIPP/E & CIPM
  • Project Management Experience - Business Process Improvement
  • Experience of working with regulations, standards and frameworks such as GDPR, PCI-DSS, ISO 9001, ISO 27001, HIPAA
  • ISO 9001 & 27001 Internal/Lead auditor
  • Experience of driving change and compliance in a large organisation, including good working knowledge of governance, project planning, risk and issue management and mitigation
  • Strong knowledge of EU & UK data privacy and data protection regulation, and a good understanding of other major privacy frameworks and evolving legislation worldwide
  • Detail-oriented approach needed to recommend and implement strategic improvements on a range of data privacy and data protection issues
  • Ability to provide clear advice to help and support the business to achieve their objectives while also doing the right thing for CPM and its clients and employees
  • Ability to present accurate and concise updates, ensuring that significant risks and issues are escalated as appropriate
  • Ability to work unsupervised, exercise leadership, and influence change
  • Strong interpersonal and stakeholder management / influencing skills, with the ability to make a 'sometimes difficult/technical' subject seem simple
  • Able to identify root causes of issues and develop, document and implement effective solutions to resolve issues appropriately
  • Ability to handle confidential and sensitive information with the appropriate discretion

Apply for this job

Required fields

Required

Required

Required

Recommended
Recommended fields
Recommended

Choose a CV from your account

  • No resume attached

Maximum filesize 10mb. Allowed file types: .pdf,.doc,.docx,.wpf,.xls,.txt

Required field