We are looking for a Risk Assurance and Data Protection Assistant to join our Compliance team and assist in relevant assurance activities. The role involves evaluating and reporting on how the Group manages risk and control, ensuring compliance with UK GDPR / Data Protection Act 2018. This dual responsibility role focuses on Risk Management and Data Protection.
As an advocate for risk management, you will plan and conduct regular testing of internal controls, update risk registers and risk scoring, and liaise with internal stakeholders to address issues and implement changes across the Group. You will work closely with the Risk Assurance Manager to develop a robust Controls Assurance Framework and Risk Management Framework, including policies, procedures, and guidance.
You should have a meticulous approach, be familiar with specific regulations, and support the development of policy documentation and guidance notes in areas such as UK GDPR, PECR, Information Management and Security, Data Retention, and Disposal. You will assist in producing Data Protection Impact Assessments (DPIA) and Legitimate Interest Assessments (LIA), make recommendations, and support data retention schedule maintenance. Additionally, you will support investigations into data breaches and handle Data Subject Rights Requests.
The ideal candidate will possess good knowledge of a robust Risk Management Framework, be comfortable taking ownership of tasks, and managing workload to meet deadlines. Strong interpersonal skills are essential to communicate risk-related content effectively to non-specialists. Good organizational and planning skills, along with the ability to learn and understand existing risk management and data protection frameworks, are also required.
#J-18808-Ljbffr