At a Glance
- Tasks: Lead data protection initiatives and provide expert advice on privacy matters.
- Company: Join EY, a global leader in assurance and advisory services.
- Benefits: Competitive pay, flexible working, and continuous learning opportunities.
- Other info: Dynamic team environment with a focus on personal and professional growth.
- Why this job: Make a real impact on data protection and privacy compliance.
- Qualifications: 4+ years in data protection with strong knowledge of UK legislation.
The predicted salary is between 80000 - 100000 £ per year.
At Ernst & Young (EY), the Risk Management (RM) function plays a critical role in identifying, managing and mitigating risk across the business. RM supports the firm in upholding EY’s business standards, protecting its reputation and value, and ensuring compliance with all applicable legal, regulatory and professional obligations. The UK Data Protection team supports the UK firm in complying with data protection and privacy legislation and regulatory requirements. This includes the development, implementation and ongoing maintenance of data protection policies, standards and procedures, the provision of advice on complex data protection matters, and the delivery of training and awareness to embed effective data protection practices across the business. The team also monitors and oversees the application of Global and local DP policies to ensure continued compliance.
This is an exciting opportunity to join the UK Data Protection team, supporting EY’s compliance with data protection and privacy legislation, including the UK General Data Protection Regulation (GDPR), Data Protection Act 2018, the Data (Use and Access) Act 2025 and Privacy and Electronic Communications Regulations. As a Data Protection Manager, you will act as a senior advisor to the business, leading on complex and high‑risk privacy matters and providing clear, pragmatic, and commercially focused guidance. You will combine strong technical expertise with sound judgement to support decision-making, manage risk effectively, and drive the consistent application of data protection practices across the firm. You will operate with a high degree of autonomy, taking ownership of key areas of data protection, leading delivery across multiple workstreams, and contributing to the ongoing development and improvement of EY’s privacy risk management framework.
Your Key Responsibilities
- Advisory and Escalation: Act as a senior data protection advisor and escalation point, providing clear, risk‑based and commercially pragmatic advice on complex and high‑risk matters.
- Frontline Compliance Oversight: Lead and oversee key data protection activities, including:
- Data subject rights requests
- Data incidents and breach investigations (including fact‑finding, containment and mitigation)
- Privacy and Confidentiality Impact Assessments (PIAs)
- Legitimate Interest Assessments (LIAs)
- Compliance reviews and health checks
- Risk Assessment and Challenge: Review and challenge risk assessments, ensuring appropriate controls, mitigations and governance frameworks are in place.
- Framework, Policy and Embedding: Develop, implement and maintain data protection policies, procedures and training to embed compliant and practical privacy practices across the firm.
- Delivery and Continuous Improvement: Own delivery across multiple workstreams, ensuring timely, high‑quality outcomes while driving continuous improvement in data protection processes.
- Stakeholder Management and Influence: Build strong relationships across the business, influencing stakeholders at all levels and providing clear direction on data protection requirements.
- Training and Awareness: Deliver training across the business and support embedding a strong privacy awareness culture for all personnel.
- Leadership and Contribution: Lead and coordinate complex workstreams and contribute to wider Data Protection initiatives and strategic projects, including supporting the evolution of the firm’s privacy framework.
Behaviours, skills and attributes for success
- Strong ability to plan, prioritise and manage multiple complex workstreams independently.
- Excellent commercial acumen, with the ability to balance regulatory requirements and business objectives.
- Strong analytical, problem‑solving and decision‑making capability, operating independently with sound judgement in complex or ambiguous situations.
- Clear and authoritative communicator, able to influence and advise stakeholders at all levels, provide effective challenge, including delivering risk‑based messages to senior leadership.
- Demonstrated ability to lead delivery across complex issues or projects, with accountability for outcomes.
- Resilient and flexible, able to operate effectively in a fast‑paced and evolving environment, adapting quickly as priorities change.
- Calm, professional, positive and resilient under pressure, with a pragmatic and solutions focused mindset.
- Work collaboratively within a high‑performing team, contributing to wider team objectives and supporting colleagues where needed.
- Maintain high levels of accuracy and attention to detail with a commitment to quality.
To qualify for the role, you must have
- At least four years of relevant professional work experience in data protection, privacy, risk, compliance, legal or a related field.
- Strong working knowledge of UK data protection and privacy legislation, and a risk‑based approach to compliance.
- Experience handling complex data protection matters and stakeholder engagement.
- A recognised privacy qualification (e.g. CIPP/E, CIPM, ISEB Certificate, PC.dp or equivalent).
Ideally, you will also have
- Practical experience applying data protection law in a commercial or professional services environment.
- Experience working within a regulated industry (e.g. Financial Services or Professional Services).
What working at EY offers
We offer a competitive remuneration package where you’ll be rewarded for your individual and team performance. Our comprehensive Total Rewards package includes support for flexible working and career development, and with FlexEY you can select benefits that suit your needs, covering holidays, health and well-being, insurance, savings and a wide range of discounts, offers and promotions.
Additionally, we offer:
- Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next.
- Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way.
- Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs.
- Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs.
EY is committed to being an inclusive employer and we are happy to consider flexible working arrangements. We strive to achieve the right balance for our people, enabling us to deliver excellent client service whilst allowing you to build your career without sacrificing your personal priorities. Our flexible working arrangements can help you to achieve a lifestyle balance.
About EY: As a global leader in assurance, tax, transaction and advisory services, we’re using the finance products, expertise and systems we’ve developed to build a better working world. That starts with a culture that believes in giving you the training, opportunities and creative freedom to make things better. Whenever you join, however long you stay, the exceptional EY experience lasts a lifetime.
If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible. Join us in building a better working world. Apply now.
Data Protection Assistant Director (L3) - Risk Management - CBS - Manchester employer: EY
At EY, we pride ourselves on being an exceptional employer, offering a dynamic work culture that fosters continuous learning and personal growth. Our Manchester office is a hub of diverse talent, where you can thrive in a supportive environment that values flexibility and inclusivity, ensuring you can balance your professional ambitions with personal priorities. With competitive remuneration and a commitment to your development, joining EY means becoming part of a global leader dedicated to building a better working world.
StudySmarter Expert Advice🤫
We think this is how you could land Data Protection Assistant Director (L3) - Risk Management - CBS - Manchester
✨Join Compliance Communities
Get involved in compliance and risk communities — both online and offline. Look for forums, LinkedIn groups, or even local meetups where compliance pros hang out. You never know who might drop a job opportunity your way!
✨Attend Industry Conferences
Keep an eye out for compliance and risk management conferences and workshops in your area. These events are a goldmine for networking, and they often have job boards or recruiters on-site looking for new talent. Plus, it’s a chance to learn what's trending in the field.
✨Leverage Your University Career Services
If you’ve recently graduated or are still studying, head over to your university's career services. Many companies, including those in compliance, actively recruit fresh talent through these services, so make sure you tap into that resource.
✨Showcase Your Knowledge Online
Start writing articles or blog posts about compliance topics that interest you. Share them on platforms like LinkedIn to demonstrate your knowledge and passion. This not only builds your presence in the field but can also catch the attention of companies like EY looking for candidates who are engaged and informed.
We think you need these skills to ace Data Protection Assistant Director (L3) - Risk Management - CBS - Manchester
Some tips for your application 🫡
Show Your Understanding of Compliance:In the compliance-risk field, it's super important to showcase your understanding of regulations and risk management frameworks. Highlight any relevant coursework, certifications (like ICA or AML), or even projects that demonstrate your knowledge and commitment to this area. We want to see how you can navigate this complex landscape!
Quantify Your Achievements:When detailing your experience, try to quantify your achievements. For example, if you've previously worked on a project that improved compliance metrics or reduced risk exposure, give us the numbers! This data-driven approach really stands out to hiring managers in compliance-risk roles.
Tailor Your CV to Reflect Relevant Skills:Make sure your CV highlights skills that are particularly relevant to compliance, like attention to detail, analytical thinking, and report writing. Ensure these are easy to spot – consider using bullet points to break down your responsibilities and achievements for maximum impact!
Craft a Motivating Cover Letter:In your cover letter, let us know why you’re excited about the compliance-risk role at EY. Share what motivates you about compliance, and how you believe you can contribute to our mission. This is your chance to showcase not only your skills but also your passion for this important field!
How to prepare for a job interview at EY
✨Master the Regulations
Brush up on key compliance regulations relevant to the industry you're applying to. Familiarising yourself with specific laws and frameworks used in your field will give you an edge during technical questions. Show that you’re not just aware of them but can also apply them—think real-life scenarios!
✨Show Your Analytical Skills
Compliance roles really focus on analytical skills, so be prepared for case studies or situational questions during the interview. We've got to demonstrate how we approach risk assessments or compliance audits, possibly drawing on examples from past experiences or university projects. Bring some thoughtful case scenarios to discuss!
✨Know Your Tools
Get comfortable with commonly used compliance software and tools. Familiarity with platforms like RSA or MetricStream can really impress during your interview, as it shows you're ready to hit the ground running. If you’ve had any experience with them, make sure to highlight that!
✨Align with Company Culture
Since it's a full-time position, show your long-term commitment and interest in the company’s mission and values. Dive into how your ethics and professional philosophy align with EY’s stance on compliance. A shared vision can really resonate with interviewers looking for fit as much as skill!