Join Our Data Security Compliance Team!

My clients are looking for a dedicated individual to join our small, friendly Data Security Compliance Team for 12 months. The successful candidate will play a key role in ensuring data protection and security compliance across the company.

Key Responsibilities:

• Manage Data Requests: Handle all aspects of data subject requests under the UK GDPR, including subject access and erasure requests, and information requests from law firms, law enforcement, and government agencies.
• Documentation and Communication: Improve internal documents and communication related to data requests, ensuring clarity for other departments and efficiency in processing requests.
• Tool Development: Collaborate with the team to develop and integrate tools, such as the OneTrust Privacy Rights Automation module, to streamline the data request process.
• Review Processes: Help evaluate and improve existing processes and work with business stakeholders to create new ones, ensuring compliance and reducing risk. Key processes include:

• Data Protection Impact Assessments (DPIAs)
• Legitimate Interest Assessments (LIAs)
• Legal Basis for Processing Checklists
• Records of Processing Activities (ROPA)

• Process Optimisation: Assist in optimising records, lists, and assessments and continuously improve related documentation.
• Data Protection Integration: Support the application of Data Protection by Default and by Design across the company, working with business and IT teams.
• Policy Communication: Help update and communicate the company’s Data Security Policy set.
• Training and Awareness: Contribute to data protection and security training programs, awareness campaigns, and eLearning rollouts.
• Communication Support: Aid the DPO in promoting data security compliance through communications and guidance for the team’s intranet.
• Provide Guidance: Offer clear, well-considered advice on data protection and security issues, both internally and externally.
• Problem Solving: Tackle ad hoc challenges and implement solutions.
• Representation and Learning: Represent the team in meetings and projects as needed and attend industry events to stay informed about new threats and legislation.

Skills

• Knowledge of UK Data Protection Law: Strong understanding of UK GDPR, the Data Protection Act 2018, PECR, and ICO guidance.
• Qualifications: At least one recognised data protection qualification, such as UK GDPR Practitioner, CIPP/E, or CIPM.
• Experience: Extensive experience managing data subject requests under UK GDPR.
• Teamwork: Ability to work independently and collaboratively to achieve team goals.

This is a fantastic opportunity to join a well-established and growing company on a brilliant starting salary of £45,000 - £50,000 (DOE).

Hybrid working structure - 2/3 days in the office the rest WFH

Amazing company benefits

This is an immediate starting position!!