Job Description
Data Protection Officer – Liverpool (Hybrid) - £50,000 - £60,000 + Bonus + Benefits Locke & McCloud are seeking an experienced Data Protection Officer to join our client, a dynamic organisation dedicated to privacy and data security. As they navigate a strategic transformation, the organisation is expanding its focus on data protection. In this role, you will play a pivotal part in ensuring the privacy and security of personal data, leading efforts to develop and implement data protection policies and procedures. Your primary responsibilities will include overseeing compliance with GDPR and other data protection regulations, advising on data protection impact assessments, and fostering a culture of privacy across the organisation. Main Responsibilities: Oversee compliance with UK GDPR and other relevant data protection regulations, ensuring that the firm’s policies are effectively implemented. This includes assigning roles, raising awareness, and training staff on their data protection responsibilities. Conduct regular audits of the firm’s data protection practices, covering both manual and electronic records, outsourced activities, archived data, and backups, to evaluate compliance with data protection standards. Address any issues identified during the audits. Supervise and manage the organisation’s data protection frameworks, ensuring all systems and processes meet regulatory requirements. Lead the drafting and management of Data Protection Impact Assessments (DPIAs), ensuring privacy risks are properly evaluated and mitigated. Create and review privacy notices, legitimate interest assessments, and data protection policies and procedures to ensure they are up to date and compliant with legal standards. Provide expert guidance on DPIAs when needed, and ensure they are properly executed and monitored for ongoing compliance. Investigate and manage any data protection incidents or potential breaches, ensuring adherence to relevant laws and internal policies, and taking corrective actions as required. Stay informed of any changes in data protection laws and regulations, and analyse their potential impact on the organisation, making recommendations for necessary policy adjustments. To be considered for this role, you should have: Demonstrated expertise in data protection, ideally supported by an ISEB or CIPP/E certification. Familiarity with PECR and its application. Your knowledge in this area will be vital for providing compliance guidance and monitoring performance. Previous experience working with ISO27001 and GDPR Strong grasp of UK data protection laws and the relevant regulatory landscape. Proven track record with Privacy by Design and Default, conducting Data Protection Impact Assessments (DPIAs), and handling data breach incidents. Exceptional communication and interpersonal abilities, enabling you to foster and maintain strong relationships. A collaborative team player with the capability to plan, organize, and prioritize tasks effectively to align with business goals. Our client offers a great working environment with various progression plans to suite your career goals, in addition to a generous benefits package including a 10% bonus, family private healthcare, a generous pension scheme, 25 days of annual leave, share options, flexible working options, and more. If this role is of interest, please apply or reach out to Jacob – 07893921057 /j.collen@lockemccloud.com Locke & McCloud are the UK’s leading cyber security & information security staffing company – through having a sole focus on the cyber & information security space we have been able to foster solid relationships with some of the UK’s most exciting cyber security consultancies & end users. Our focus on the information security space allows us to be able to help you find the most exciting.