Join Our Data Security Compliance Team!
My clients are looking for a dedicated individual to join our small, friendly Data Security Compliance Team for 12 months. The successful candidate will play a key role in ensuring data protection and security compliance across the company.
Key Responsibilities:
1. Manage Data Requests: Handle all aspects of data subject requests under the UK GDPR, including subject access and erasure requests, and information requests from law firms, law enforcement, and government agencies.
2. Documentation and Communication: Improve internal documents and communication related to data requests, ensuring clarity for other departments and efficiency in processing requests.
3. Tool Development: Collaborate with the team to develop and integrate tools, such as the OneTrust Privacy Rights Automation module, to streamline the data request process.
4. Review Processes: Help evaluate and improve existing processes and work with business stakeholders to create new ones, ensuring compliance and reducing risk. Key processes include:
1. Data Protection Impact Assessments (DPIAs)
2. Legitimate Interest Assessments (LIAs)
3. Legal Basis for Processing Checklists
4. Records of Processing Activities (ROPA)
5. Process Optimisation: Assist in optimising records, lists, and assessments and continuously improve related documentation.
6. Data Protection Integration: Support the application of Data Protection by Default and by Design across the company, working with business and IT teams.
7. Policy Communication: Help update and communicate the company's Data Security Policy set.
8. Training and Awareness: Contribute to data protection and security training programs, awareness campaigns, and eLearning rollouts.
9. Communication Support: Aid the DPO in promoting data security compliance through communications and guidance for the team's intranet.
10. Provide Guidance: Offer clear, well-considered advice on data protection and security issues, both internally and externally.
11. Problem Solving: Tackle ad hoc challenges and implement solutions.
12. Representation and Learning: Represent the team in meetings and projects as needed and attend industry events to stay informed about new threats and legislation.
Skills:
1. Knowledge of UK Data Protection Law: Strong understanding of UK GDPR, the Data Protection Act 2018, PECR, and ICO guidance.
2. Qualifications: At least one recognised data protection qualification, such as UK GDPR Practitioner, CIPP/E, or CIPM.
3. Experience: Extensive experience managing data subject requests under UK GDPR.
4. Teamwork: Ability to work independently and collaboratively to achieve team goals.
This is a fantastic opportunity to join a well-established and growing company on a brilliant starting salary of GBP45,000 – GBP50,000 (DOE).
Hybrid working structure – 2/3 days in the office, the rest WFH.
Amazing company benefits.
This is an immediate starting position.
#J-18808-Ljbffr