At a Glance
- Tasks: Lead global data protection initiatives and manage incident response processes.
- Company: Join EY, a diverse powerhouse shaping the future of work.
- Benefits: Flexible environment, world-class experiences, and professional development opportunities.
- Why this job: Make a real impact in data protection while collaborating with global teams.
- Qualifications: Qualified lawyer with 6-8 years of data protection experience.
- Other info: Be part of a culture that values diversity and inclusion.
The predicted salary is between 43200 - 72000 £ per year.
This job is brought to you by Jobs/Redefined, the UK's leading over-50s age inclusive jobs board. At EY, we're all in to shape your future with confidence. We'll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world.
Our global data protection team is seeking a qualified data protection lawyer to advise on and coordinate data protection matters, in particular, to oversee and run the Global Record of Processing Activities (RoPA) Inventory as well as coordinate the Global Incident Response (IR) Process. This involves overseeing a team who are responsible for completing and maintaining EY's Global RoPA and integration of Privacy Impact Assessment (PIA) records and Third Party Vendor Due Diligence (VDD) data as well as coordinating the work of other resources and EY's Global Delivery Service ("GDS") involved in the Global Incident Response Process.
The global data protection team is responsible for the implementation and transformation of EY's privacy compliance program, which includes Binding Corporate Rules. The team works closely with all parts of the business on data protection matters, including both personal data privacy and the protection of client and EY confidential information.
Your key responsibilities:
- Oversee EY's global Data Protection program for Records of Processing Activities (ROPA) process and the management of Global Incident Response process.
- Manage the ROPA program which includes an intake process to meet the requirements of Article 30 GDPR to record all processing activities in a centrally managed inventory.
- Support the optimization of the ROPA process to work efficiently within the global EY organization as part of an overall data protection management platform and adapt to new regulatory frameworks such as for AI technologies.
- Work and collaborate with Regional and Country DP Leaders to adapt and integrate local RoPA activities into the Global RoPA.
- Collaborate with key stakeholders to update, implement, and maintain IR methodology as part of the global DP program.
- Communicate the Global IR plan to Member Firms, provide training, and support overall preparedness e.g. through planning and conducting of table top exercises.
- Lead the overall IR policy improvement and process alignments in the Global IR process.
- Manage a variety of internally and externally triggered global incidents in coordination with Member Firms, Information Security, and our business Service Lines.
- Communicate effectively and consistently with key stakeholders.
- Work with a team of data protection resources globally throughout EY; Collaborate with team efforts to raise awareness among EY personnel globally regarding the importance of compliance with data protection regulations and EY's own privacy compliance program.
- Identify / flag legal and regulatory issues surrounding IR and related data protection issues and provide appropriate legal advice / work to implement related solutions.
- Escalate to the Chief Privacy Officer and Global DPO any significant incidents, related issues, and plans for their resolution, including as applicable implications of local data protection regulations as aligned with local counsel.
- Provide general support to the global data protection team.
Skills and attributes for success:
- Must be legally qualified and holding a current practicing certificate.
- Between 6-8 years of relevant experience either in private legal practice or an in-house role (including proven experience in the field of data protection in cross border situations).
- Solid knowledge in EU data protection legislation (specifically the GDPR) and ideally familiarity with the legislation of one or more other jurisdictions.
- Ideally, internationally recognized privacy certification, such as CIPP/E and CIPM.
- Experience in conducting internal investigations, and in particular data breach response investigations preferred, but not required.
- Strong project management skills.
- Excellent command of the English language.
- Sensitivity to intercultural contacts and communication.
What we offer you:
At EY, we'll develop you with future-focused skills and equip you with world-class experiences. We'll empower you in a flexible environment, and fuel you and your extraordinary talents in a diverse and inclusive culture of globally connected teams. Learn more.
Are you ready to shape your future with confidence? Apply today.
To help create an equitable and inclusive experience during the recruitment process, please inform us as soon as possible about any disability-related adjustments or accommodations you may need.
Global Legal Counsel - Data Protection, Assistant Director employer: EY
Contact Detail:
EY Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Global Legal Counsel - Data Protection, Assistant Director
✨Tip Number 1
Network like a pro! Reach out to your connections in the legal field, especially those who work in data protection. A friendly chat can lead to insider info about job openings or even a referral.
✨Tip Number 2
Prepare for interviews by researching EY's data protection initiatives. Show us you know your stuff and can contribute to their Global RoPA and Incident Response processes. Tailor your answers to reflect their values and goals.
✨Tip Number 3
Practice makes perfect! Conduct mock interviews with friends or mentors. This will help you articulate your experience in data protection and incident response clearly and confidently.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets noticed. Plus, it shows you’re serious about joining the EY team and shaping a better working world.
We think you need these skills to ace Global Legal Counsel - Data Protection, Assistant Director
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Global Legal Counsel role. Highlight your experience in data protection and any relevant qualifications, like your knowledge of GDPR. We want to see how your background fits with what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about data protection and how your skills align with our needs. Be sure to mention your experience with incident response and collaboration with stakeholders.
Showcase Your Project Management Skills: Since this role involves managing processes like RoPA and IR, make sure to highlight your project management experience. We love seeing examples of how you've successfully led projects or teams in the past!
Apply Through Our Website: Don't forget to apply through our website! It’s the best way to ensure your application gets to us directly. Plus, it shows you're keen on joining our team at EY and shaping a better working world together.
How to prepare for a job interview at EY
✨Know Your GDPR Inside Out
As a Global Legal Counsel focusing on data protection, it's crucial to have a solid grasp of GDPR and other relevant legislation. Brush up on key articles, especially Article 30 regarding Records of Processing Activities (RoPA). Be prepared to discuss how you would ensure compliance and manage the RoPA process effectively.
✨Showcase Your Project Management Skills
This role requires strong project management abilities. Think of examples from your past experience where you've successfully managed complex projects, particularly in data protection or incident response. Be ready to explain your approach to optimising processes and collaborating with diverse teams.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that test your problem-solving skills in real-world situations. For instance, how would you handle a data breach incident? Prepare structured responses that highlight your analytical thinking and ability to coordinate with various stakeholders during such incidents.
✨Demonstrate Cultural Sensitivity
Given the global nature of this role, showcasing your sensitivity to intercultural communication is vital. Share experiences where you've successfully navigated cultural differences in a professional setting, especially when working with international teams or clients.