At M&G our purpose is to give everyone real confidence to put their money to work. As an international savings and investments business with roots stretching back more than 170 years, we offer a range of financial products and services through Asset Management, Life and Wealth. All three operating segments work together to deliver attractive financial outcomes for our clients, and superior shareholder returns.
Through our behaviours of telling it like it is, owning it now, and moving it forward together with care and integrity; we are creating an exceptional place to work for exceptional talent.
We will consider flexible working arrangements for any of our roles and also offer work place accommodations to ensure you have what you need to effectively deliver in your role.
The Data Privacy Analyst supports the delivery of the privacy governance and oversight services. The core purpose of the role is to assist IFDL in meeting its requirements under data protection and privacy legislation and enabling the Chief Data Protection Officer (CDPO) to perform their legal tasks.
Investment Funds Direct Limited (“IFDL”) is an FCA regulated platform provider, ISA Manager and SIPP Operator that operates as part of the M&G Group.
The Role
The Data Privacy Analyst is an integral part of the IFDL Second Line team, within the second line of defence supporting the delivery of the privacy governance and oversight services. The core purpose of the role is to assist IFDL in meeting its requirements under data protection and privacy legislation and enabling the Chief Data Protection Officer (CDPO) to perform their legal tasks. Responsible for the research, data production, analytics and reporting, to provide oversight and challenge of the first line in the effective management of its risks related to privacy risks against the organisation’s operational risk framework in accordance with the expectations of its customers, shareholder and regulators.
Key Responsibilities
The key responsibilities of this role are to support the delivery of the Privacy Risk team’s governance and oversight objectives to co-ordinate and maintain the effectiveness of privacy risk management processes across IFDL and provide consolidated risk analysis and risk management information for Senior Management as required.This involves:
* Initiatives to improve privacy risk data quality and to aid collation and analysis of a range of privacy risk information (including RCSAs, KRIs, Events/Breaches etc.), consolidating and developing this information into suitable reporting formats for relevant governance forums.
* Keeping abreast of industry trends, regulatory and business issues impacting self-certification.
* Use of regulatory knowledge, business understanding and expert judgement, to quickly identify underlying issues and escalate issues, where appropriate.
* Assisting with development of privacy risk controls and guidelines, and the subsequent process of communication with the business.
* Working flexibly and building constructive and supportive working relationships with teams across IFDL and suppliers.
* Demonstrating a positive risk, compliance and control culture through the identification, assessment, monitoring and management of risks and issues ensuring timely resolution of control weaknesses.
* Supporting internal and external audits and undertake assurance and oversight of data privacy activities reporting weaknesses and ensuring remediation plans are implemented and tracked to closure.
* Taking end to end ownership of assigned activities and demonstrate deliverables leveraging data privacy expertise.
* Supporting internal and external audits to help ensure they are effectively communicated, and subsequent remedial activities are followed through to agreed actions.
* Compliance – To understand and adhere to IFDL’s Code of Conduct and, where appropriate, comply with all relevant regulatory policies.This includes completion of any mandatory training requirements.
Key Knowledge, Skills & Experience
* Practical knowledge of business risk and control frameworks and how these map to evolving regulatory requirements. (Essential)
* Good reporting skillsto build, publish and maintain reports and dashboards.(Essential)
* Must have competent Excel, PowerPoint and MS Word skills.
* Good knowledge of Wealth Management/Platform products, systems and distribution methods would be desirable.
* Good analytical skills in order to identify key themes, suggest solutions and deliver on opportunities.
* Good stakeholder management skills, with the ability to successfully navigate a complex organisation as well as build strong relationships and work collaboratively with teams across the business.
* Ability to operate remotely, in a diverse and multi-cultural environment. International work or consultancy exposure would be a definite plus.
* Practical knowledge of handling breaches and risk events.
* Practical knowledge of project management concepts and how to use these to complete and deliver tasks.
* Broad influencing skills to drive execution with the ability to communicate effectively with stakeholders.
* The ability to assist with managing and confidential investigations, maintaining confidentiality. Starts to apply sound judgement, using legislative knowledge to advise actions.
* The ability to create and deliver presentations to peer group.
Qualification and Certifications
* 2 years or more experience in financial services industry, preferably with some prior experience in Privacy Risk/Operational Risk/Risk Management/Internal Audit.
* Qualifications such as IAPP, DSCI or equivalents would be advantageous but not mandatory.
Experience Level: Experienced Colleague
Recruiter: Helen Simons
We have a diverse workforce and an inclusive culture at M&G plc, underpinned by our policies and our employee-led networks who provide networking opportunities, advice and support for the diverse communities our colleagues represent. Regardless of gender, ethnicity, age, sexual orientation, nationality, disability or long term condition, we are looking to attract, promote and retain exceptional people. We also welcome those who take part in military service and those returning from career breaks.
M&G is also proud to be a Disability Confident Leader, and we welcome applications from candidates with long-term health conditions, disabilities, or neuro-divergent conditions. Being a Disability Confident Leader means that candidates who meet the minimum criteria of a job, will be offered an interview if they "opt in" to the scheme when applying.
If you need assistance or an alternative means of applying for a role due to a disability or additional need, please let us know by contacting us at: careers@mandg.com
#J-18808-Ljbffr