The chosen candidate will be primarily in charge of ensuring that the company complies with privacy and Data Protection laws. They will collaborate closely with the IT division, especially the cyber team, and form an integral element of the Risk & Compliance team.
Although prior work experience in Data Protection is necessary, candidates do not need to be legally qualified or have experience working in a law firm.
Responsibilities:
- Maintaining Data Protection, information security and cybersecurity policies;
- Maintaining the firm's asset information register and records of processing;
- Being the internal expert on Data Protection - helping the compliance analysts deal with routine queries and handling more complex queries;
- Handling data requests, such as subject access requests and erasure requests.
- Working with the IT department, particularly the cyber team, to monitor the effectiveness of the firm's information and cybersecurity controls;
- Assisting the Head of Risk & Compliance with cyber liability insurance renewal;
- Working with all departments to identify emerging and current risks, plus working with them to devise and implement a plan to mitigate the risks;
- Reviewing commercial agreements from a Data Protection perspective.
If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.
If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career.
#4531959 - Tom Carter