Data Protection Specialist

Ref: 389| Posted: 13th Sep 2019

Durham Professional Services is delighted to be working with our Client to recruit an exciting new position based in Glasgow City Centre. We are looking to recruit a Data Protection Specialist who has string skills around Privacy by Design. This role is being offered on a permanent basis.

This role will be to support and enable the embedding of privacy concepts and principles throughout our client focussing especially within its technology estate, and to ensure that appropriate controls and procedures are implemented and continuously monitored for both new projects and existing business processes.

Our client recognises that privacy and confidentiality of personal data is critical and as such is striving to implement effective privacy management and governance. ‘Privacy by Design’ and ‘Privacy by Default’ are 2 key components of its privacy programme, in accordance with the requirements of GDPR.  

Key Responsibilities of this role includes: -

  • Building upon the existing relationship between IT Security and Corporate Assurance, the Privacy Specialist will work closely with the Privacy Office to ensure that privacy and Data Protection principles are embedded into technology projects and operational systems from the design stage and throughout lifecycle
  • Collaborate and coordinate with key business functions and projects to advise on privacy by design requirements, and work with the privacy office to design and deliver relevant privacy training and awareness campaigns for relevant business areas
  • Work closely with the IT Security Manager and the Privacy Office to identify and provide prioritisation and guidance on improved privacy tools and controls, for a diverse number of IT services, and collaborate with vendors and key partners to deliver these improvements.
  • Work with Enterprise Architects to perform capability maturity assessments for privacy using our client’s Business Capability Maturity (BCM) model
  • Engage with strategic projects to leverage new technical capabilities especially privacy-enhancing technologies (PETs), and undertake privacy impact assessments (PIA) in accordance with the data governance checklist
  • Participate in privacy reviews in collaboration with the Privacy Office, and provide input into the development of data privacies policies, Secure Operating Procedures and data mapping when required      
  • Implement and maintain the terms of reference, engagement model, and roadmap for privacy collaboration, and make data protection an essential component of the core functionality of our processing systems and services

The Person:

We are looking for an exceptional candidate who has the following skills and experience:

  • Educated to degree level or equivalent, or an equivalent level of experience.
  • Strong knowledge of data privacy standards and legislation, including but not limited to DPA 2018 and GDPR
  • Experience of technology solution design, deployment and integration
  • Knowledge and experience of technology governance and information management
  • Data privacy qualification such as CIPM, CIPT, CIPP, PCDP, ISO or equivalent would be an advantage.
  • Proven ability to build relationships and influence co-workers, senior management and 3rd parties.
  • Proven ability to work pragmatically in a changing or uncertain environment
  • Excellent communication and problem-solving skills.