As Nationwide's Deputy Data Protection Officer, you will support the DPO in providing strategic leadership of our Data Protection oversight agenda. You will work closely with the Business to ensure processing activities are known and assessed for risk and compliance.
The team provides the framework and Oversight for the first line to ensure compliance with existing and future Data Protection law. The Deputy Data Protection Officer is instrumental in designing and implementing this across Nationwide.
At Nationwide we offer hybrid working wherever possible. More rewarding relationships are supported through our hybrid approach, bringing colleagues together across our UK wide estate, whilst also supporting generous access to home working. We value our time in the office to solve problems, to learn, and to feel connected.
For this job you'll spend at least two days per week, or if part time you'll spend 40% of your working time, based at either our Swindon or London offices. If your application is successful, your hiring manager will provide further details on how this works. You can also find out more about our approach to hybrid working here.
If we receive a high volume of relevant applications, we may close the advert earlier than the advertised date, so please apply as soon as you can.
What you'll be doing
* Supporting the Society wide approach to compliance with the Data Protection Act and other Data regulation/legislation, such as PECR through effective framework implementation and Oversight. A Society wide RACI is in operation that dictates which department is directly accountable for completing required compliance activities.
* Supporting the DPO to provide assurance to executive management and the Board Risk Committee on the status of Data Protection Compliance, and the adequacy and effectiveness of risk management to mitigate key operational, legal, regulatory and conduct risks.
* Employing various approaches for Data Protection Oversight which include "Close and Continuous" oversight, and undertaking risk and control based "formal oversight reviews". This will include areas such as DPIAs, Policies, Cookies, and Data incidents.
* Maintaining high value relationships at Director / Head of level with a sufficient depth of understanding of their business area deliverables, priorities and risks. You will ensure that the key Data Protection priorities and risks are sufficiently prominent and accounted for. Providing effective insight and presenting at risk and control governance forums/committee.
* Working collaboratively with partners across the 3LOD to simplify and strengthen Data Protection risk management practices for the benefit of the Business and Society overall.
* Deputising for the Data Protection Officer as required.
About you
* We'll need you to have a very strong and detailed understanding of all applicable Data Protection laws, regulations, and principles.
* You should have substantial data protection law experience at an expert level, with an emphasis on UK and EU requirements and the implementation of those requirements.
* You will have a demonstrable track record of applying and overseeing these within a Retail Banking/Financial Services firm and be known as a Data Protection expert. You should be able to demonstrate your subject matter expertise on UK and EU GDPR, including as it applies to banking services.
* You should be able to use your knowledge to ensure Nationwide, via its policies and procedures, fulfils its obligations to data subjects and comply with data protection laws.
* You will have the ability to comprehend and assimilate Data Protection information rapidly, break down complex problems and provide support and challenge to Data owners, users, and processors in a clear and understandable way.
* Interpersonally, you will have experience of working on a regular basis with Director and Heads of Business areas and you can develop high value relationships at all levels.
#J-18808-Ljbffr