Requirements
Must have:
- Strong knowledge of data protection and privacy laws (GDPR, UK GDPR, UK DPA) and sector-specific regulations - Experience in a similar role (DPO, Privacy Officer, Information Security Officer, or equivalent) - Skilled in risk assessment, audit, governance, incident response, and vendor risk management - Excellent communication and influencing skills, able to translate technical topics for non-technical stakeholders - Strong analytical, problem-solving, and project management abilities - Able to work independently while collaborating across IT, legal, HR, and operations - Integrity, independence, and discretion, with high confidentiality standards - Degree in information security, computer science, law, or related field; certifications in privacy or cybersecurity desirable
Responsibilities:
- Advise leadership and teams on data protection obligations, ensuring compliance with GDPR, UK GDPR, and sector-specific laws - Maintain Records of Processing Activities (RoPA), manage data flows, and oversee Data Protection Impact Assessments (DPIAs) - Act as liaison with regulators (e.g., ICO) and handle investigations, data subject requests, and breach/incident response - Review policies, contracts, and vendor agreements to embed privacy-by-design and ensure compliance - Deliver training and awareness programs to foster a strong culture of privacy and security - Develop, maintain, and continuously improve the organizations information security framework, including policies, standards, and procedures - Monitor and respond to security incidents, manage vendor security compliance, and oversee business continuity and disaster recovery - Collaborate with IT, development, and operations to embed security controls and ensure secure system design - Lead security awareness initiatives and report on security posture, risks, and KPIs to senior management - Stay informed on emerging cyber threats, regulatory changes, and best practices, advising leadership on risk mitigation
Company:
Bertelsmann is a media, services, and education company operating in about 50 countries worldwide. We include various subsidiaries such as RTL Group, Penguin Random House, and BMG, and have a strong emphasis on creativity and entrepreneurship. Our company, with 117,000 employees, generated revenues of €17.1 billion in the 2015 financial year. We offer an annual salary of up to £34,000, 25 days of annual leave plus 8 UK bank holidays, pension contributions, a life assurance policy, Employee Assistance Programme for confidential support, and a discount scheme. The role is based in Hams Hall with a standard 40-hour work week from Monday to Friday.