!*Data Governance Lead - London - Global Medical Life Science!*
Location: London, 3 days on site
Start date: ASAP
Type of position: Permanent
Job Description
Partnered with a medical research life science that focuses on translating early-stage science into medical breakthroughs. It works to bridge the gap between academic research and patient-ready treatments, particularly in areas like drug discovery, diagnostics, and funding innovation. They collaborates with scientists, biotech companies, and healthcare organizations to accelerate the development of new therapies, especially for rare diseases and underserved conditions
Position Summary:
This role supports the organisation’s compliance with ISO27001 (information security), ISO9001 (quality management), ISO13485 (medical devices), and other relevant certification frameworks.
Reporting directly to the Chief Technology Officer, the Data Governance Lead collaborates across departments to cultivate a strong data culture and address findings from internal and external audits. They also work closely with the Data Council to advance data governance practices across the organisation.
Key Responsibilities:
* Provide guidance to staff on data protection and information security obligations, including UK GDPR, DPA 2018, and ISO27001. Ensure privacy by design is embedded in all relevant projects.
* Monitor and enforce compliance with data protection laws, certifications, and internal policies. Conduct audits, maintain processing records, and oversee corrective actions.
* Maintain and update key documentation such as Data Management Plans, consent forms, and security policies. Support the implementation of ISO27001 and other standards.
* Lead training and awareness initiatives to ensure staff understand their responsibilities, with a focus on high-risk areas like HR, IT, and clinical research.
* Advise teams on conducting Data Protection Impact Assessments, reviewing outcomes, and recommending safeguards for sensitive data processing.
* Support incident response efforts, including breach assessment, containment, reporting, and post-incident reviews to improve resilience.
* Serve as the primary contact for regulators such as the ICO. Coordinate responses to inspections, inquiries, and consultations on high-risk processing.
* Manage and oversee data subject rights requests, ensuring timely and compliant responses.
* Ensure all required documentation—such as processing records, contracts, and consent logs—is accurate and up to date.
* Represent the organisation in external partnerships, ensuring data protection requirements are clearly defined and upheld.
If this role isn’t suitable for you, please let us know if you can refer anyone – any recommendations are much appreciated! Planet Pharma offers a competitive referral scheme so you will be rewarded for your help!
About Planet Pharma
Planet Pharma is an American parented Employment Business/Agency that provides global staffing services with its head-quarters in Chicago and our EMEA regional office located in Central London. We have invested significantly in creating a robust international platform that enables us to work compliantly in 30+ countries with a current network of 2500+ active contractors globally as well as a very strong permanent / direct hire recruitment offering.
Our specialist knowledge and close relationships with our clients and the wider industry really makes us unique in our field. Just recently we were recognized by FORBES as the 17th best professional staffing firm, and have won multiple awards from industry accredited bodies for our commitment to excellence and service delivery. We have extensive functional expertise including: Regulatory Affairs, Pharmacovigilance, QA, QC, Submissions experts, Clinical development, Quality, Biostatistics, and Medical Affairs / Writing.
We are an equal opportunities Recruitment Business and Agency.
We welcome applications from all suitably qualified candidates regardless of their race, sex, disability, religion/belief, sexual orientation or age.