Data Protection Manager
| Posting date: | 17 May 2024 |
|---|---|
| Hours: | Full time |
| Closing date: | 16 June 2024 |
| Location: | Flexible Location, LS1 5RD |
| Company: | Reed Talent Solutions |
| Job type: | Permanent |
| Job reference: | RinP08255-296428 |
Summary
Introduction
Consider the role of an Data Protection Manager at Reed in Partnership!
We are on a mission to be the partner of choice for developing people and their communities. Reed in Partnership is a public service provider specialising in skills training for the long-term unemployed, increasing employment opportunities by working with employers and providing youth services.
What is the role about?
The Data Protection Manager will lead Reed in Partnership’s risk management and compliance services on data privacy across all of the organisation’s divisions. The role is broad and varied, covering a range of data protection responsibilities, as well as line management responsibilities of a team of Data Protection Advisers.
Reed in Partnership are part of the wider Reed Group of companies, and the role holder will be responsible for Reed in Partnership’s Privacy Framework and creating and implementing the roadmap for developing the organisation’s overall maturity. Currently spanning 5 divisions, the role holder will lead the development of the function and work to embed a business wide accountability of data privacy, working closely with both internal and external stakeholders.
The role holder will be responsible for leading the completion and providing advice on data privacy outputs, including DPIAs, risk assessments, data breach policy and procedures, drafting privacy notices and ensuring Records of Processing Activities are kept up to date.
The Data Protection Manager will be responsible for Reed in Partnership’s overall Data Privacy Framework, liaising with the Group level DPO when required. The Data Protection Team are also responsible for the management of Data Subject Rights, including liaising with the Group level Data Protection Officer and escalating risks associated with legislative, reputational or financial risks where appropriate.
The Data Protection Manager will inherit a portfolio of policies and will be responsible for the review and updates to ensure continued compliance with legislation. The Data Protection Manager will also support the development of training for all levels across the organisation
This is a remote role, with occasional travel as and when required. With the opportunity to work hybrid from the nearest Reed in Partnership office.
Just some of your day-to-day responsibilities will include
LEADERSHIP AND MANAGEMENT • Develop and lead the strategy and maturity of the Data Privacy Framework for the organisation.• Manage and develop a team of Data Protection specialists to deliver a high-quality service that is customer focused, cost effective and adds value and insight to the business.
• Uphold, safeguard and promote the Company’s mission, vision & values.
STRATEGY AND PLANNING
• Accountable for the development and maintenance of a Data Privacy Compliance Programme
• Provide expert advice and guidance to management to inform strategic and tactical decisions
• Maintain a thorough knowledge of applicable legislation, guidance and best practice across each country and sector GOVERNANCE, RISK MANAGEMENT AND COMPLIANCE
• Set internal governance policies and procedures
• Maintain awareness of the risks that may impact on the organisation
• Oversee the completion Data Privacy Impact Assessments & compliance with the regulations and contractual requirements
• Oversee incident management processes, ensuring incidents are appropriately investigated and managed DELIVERY
• Design and implement effective procedures to manage and monitor Data Protection
• Oversee the development of a successful training and awareness programme for all staff
• Build capability across the organisation
• Provide expert advice on complex queries relating to the introduction of new contracts, processes and systems, privacy issues, complaints and marketing/ promotional activities and research projects
• Define and enforce data lifecycle management processes
• Oversee the creation and maintenance of the organisations data inventory
STAKEHOLDER MANAGEMENT
• Collaborate and communicate effectively with a wide network of key stakeholders across the business to ensure expectations are managed, satisfaction is delivered and to lead change efforts effectively;
• Influence senior stakeholders to embed risk management and controls into strategic decision making
• Build credible and powerful relationships with senior stakeholders
• Act as key contact and decision maker for stakeholders
What’s in it for you?
A generous base salary (pro-rata for part time), and great flexibility with your working schedule, we offer training, development and progression opportunities. You will have access to the range of Reed in Partnership benefits, which include:
- 25 days annual leave (pro-rata for part time) plus statutory bank holidays
- Reed Pension Scheme
- Award Winning Management & Leadership training
- Professional & Personal Development Funds
- Bi-annual pay reviews
- Plus much more that can be found Here
- With the chance to dramatically make a difference to the local community, this role offers immense job satisfaction.
At Reed in Partnership, we live and breathe our values in every decision and action taken, resulting in a collaborative and enjoyable culture within our offices. Our company values – we are fair open and honest; we take ownership, and we work together.
Where possible we consider applications from candidates that require part-time hours, please discuss with your Talent Partner if this is something you require.
To be successful in this role, we are looking for someone with
Essential Attainments:
• Experience within a data protection role, with professional qualification (CIPP/E, CIPM or GDPR Practitioner) or equivalent experience.
• An in-depth knowledge of current/proposed UK and EU privacy and data protection legislation (including the General Data Protection Regulation, Human Rights Act, Investigatory Powers Act, Privacy and Electronic Communications Regulations, ePrivacy Directive, and Digital Economy Act)
• Knowledge and experience delivering data protection programmes including DPIAs, LIAs, Data Mapping and ROPA maintenance.
• Solid understanding of Information Security and Information Management principles
• Experience of advising on data protection breaches and issues.
• Experience of managing data subject rights.
• Experience of writing data protection focussed policies and procedures.
Desirable Attainments:
• Knowledge of data protection laws relevant to overseas data sharing/transfers.
• Knowledge of security certifications such as ISO27001 and Cyber Essentials
• Previous experience within an organisation delivering multiple services.
• Experience working in a project environment.
Essential Criteria:
• Ability to influence, motivate and engage with other parties.
• Ability to exercise critical but balanced judgments in identifying problems and to present effective practical and potential original solutions.
• Demonstrable experience of being able to absorb complex information quickly and present it in a way that can be understood by all levels within the business.
• Exemplary written and verbal communication skills.
• Demonstrates a high level of business and commercial awareness.
• Shows exceptional time keeping and organisational skills including the ability to work to deadlines.
• Experience of working in a collaborative manner with operational teams, whilst maintaining independence, integrity and confidentiality.
• Ability to communicate effectively at all levels of the organisation, including the production and delivery of high-quality presentation to internal and external customers.
• Demonstrates a high level of business and commercial awareness
Proud member of the Disability Confident employer scheme