Data Protection & Governance Specialist required
to support and strengthen the data protection and privacy framework across the organisation. This is a mid-level role suited to a proactive professional with strong GDPR knowledge and proven experience working cross-functionally in the business.
Key Responsibilities
* Support the implementation and ongoing maintenance of the organisation's data protection and governance framework.
* Act as a subject matter expert on
GDPR
and related data protection legislation.
* Work cross-functionally with Legal, IT, Security, HR, Procurement, and business teams to ensure compliant data processing practices.
* Conduct and review
Data Protection Impact Assessments (DPIAs)
and advise on risk mitigation.
* Maintain records of processing activities (RoPA) and support audits and regulatory enquiries.
* Provide pragmatic advice on data sharing, retention, international transfers, and vendor risk.
* Support incident and data breach management, including investigation and regulatory notification processes.
* Deliver training and awareness initiatives to promote a strong data protection culture.
* Monitor regulatory developments and help translate requirements into practical guidance.
Skills & Experience
* Solid experience in a
data protection, privacy, or governance role
within a complex organisation.
* Strong working knowledge of
GDPR.
* Demonstrated experience working
cross-functionally
with both technical and non-technical stakeholders.
* Experience conducting DPIAs and advising on data protection risks.
* Ability to balance regulatory requirements with commercial and operational needs.
* Strong communication skills, with the confidence to influence and challenge appropriately.
* Highly organised, detail-oriented, and able to manage multiple priorities.