The Data Risk Manager will be responsible for embedding and deploying a Data Risk Framework across 1st and 2nd line teams. This role will strengthen the Data Risk regime that enables the business to mature, evidence data capabilities, and mitigate Data Risk.
You will define policies, standards and controls and support a Data Risk process to support business teams to assess their use of data and ensure the right level of controls are applied for the consistency and integrity of data to meet business need and mitigate Data Risks.
Responsibility includes ensuring the Data Privacy and Protection Policies and Operating Standards are understood and implemented across the business in line with DPA2018 and GDPR. The Data Risk Manager works closely with the business to assess risks resulting from data privacy needs assessments, records of processing activities, data privacy impact assessments, and cross-border data transfer.
The Data Risk Manager works closely with Audit, Risk, Business teams, IT and change programmes and supports those in data roles to understand their responsibilities and implement data requirements using standard approaches.
Some of your duties will include:
- Applying policies and setting standard approaches to Data Risk
- Supporting Compliance with Data Regulations such as DPA and GDPR
- Providing Subject Matter Expertise and support to ongoing:
- Data Risk Assessments
- Risk and Control Self-Assessment Process
- Supporting Data Priorities from a Data Risk perspective
- Data Audit
- Must have detailed understanding of Data Risk and controls required to mitigate.
- Excellent working knowledge of data regulations such a GDPR
- Excellent understanding and practical experience of implementing Data Risk across multiple stakeholders and roles.
- Must have experience of working on Data project/s
- Collaborative approach to working with data operational teams, developers, architects and subject matter experts alike, to establish the facts, and ensure good communication of requirements.
- Excellent communication skills to articulate data and the associated benefits to a non-expert audience.
- Highly organised and Innovative SME able to deliver in a large matrix organisation.
- Experience in running workshops with different business and technical stakeholders.
- Any form of GDPR certification