Senior Data Risk Manager (Privacy) in London

Senior Data Risk Manager (Privacy) in London

London Full-Time 60000 - 80000 £ / year (est.) No working from home possible
Kennedys Law LLP

At a Glance

  • Tasks: Lead data privacy initiatives and manage compliance with global regulations.
  • Company: Join Kennedys, a forward-thinking firm focused on risk and compliance.
  • Benefits: Competitive salary, flexible working options, and opportunities for professional growth.
  • Other info: Dynamic team environment with opportunities to lead and develop others.
  • Why this job: Make a real impact in data protection while navigating exciting tech challenges.
  • Qualifications: Strong knowledge of GDPR and experience in data risk management.

The predicted salary is between 60000 - 80000 £ per year.

Kennedys is looking for a Senior Data Risk Manager to join us on a 12 month fixed term contract.

This role provides strategic oversight and operational leadership across data privacy, regulatory compliance, and information risk.

The role ensures personal data is managed lawfully, securely, and in line with global regulatory requirements, acting as a subject matter expert in data protection and privacy risk.

Team

Kennedys Risk & Compliance team handles a wide range of partnership and risk and compliance issues for the firm and acts as an in‑house legal department assisting with regulatory and professional conduct enquiries.

Within this the Data Risk Team specialises in risk to data, privacy and information as well as compliance with associated regulations and best practice globally.

This includes keeping abreast of new and emerging risks associated with ever developing technology such as AI.

Key responsibilities

  • Act as SME on data protection (GDPR, UK DPA)
  • Lead DPIAs and privacy risk assessments
  • Oversee the maintenance of risk registers and mitigation plans
  • Develop privacy policies and frameworks
  • Support ISMS and ISO 27001 alignment
  • Lead incident and breach management
  • Engage stakeholders and deliver training
  • Support AI and emerging risk governance
  • Product owner for Surecloud (or equiv) Platform
  • Lead and develop team members and deputise for Head of Data Risk as required.
  • Required experience
  • Strong knowledge of GDPR and global privacy laws inc HIPAA, PIPA and Aus Privacy
  • Experience in data risk management and governance
  • DPIA and incident management experience
  • Understanding of ISO 27001 / ISMS
  • Demonstratable experience of assessing AI and Privacy risks
  • Stakeholder engagement skills

Please let us know if you require any additional support or adjustments to be made in order to submit your application to Kennedys.

*where a level of experience is indicated, this is a guideline only and represents the amount of time we would usually expect a candidate to accumulate the requisite level of experience.

This does not preclude applications from candidates with more or less experience.

#J-18808-Ljbffr

Kennedys Law LLP

Contact Details:

Kennedys Law LLP Recruitment Team

We think you need these skills to ace Senior Data Risk Manager (Privacy) in London

Data Protection Expertise
GDPR Knowledge
UK Data Protection Act Knowledge
Privacy Risk Assessment
DPIA Experience
Incident Management
ISO 27001 Understanding