Head of Data Compliance in Romsey

Roke is a world‑class engineering and technology company with a trusted and long‑standing record spanning research & development, products, managed‑services and consultancy, serving customers across the globe. The markets include defence, national security and intelligence sectors, with diversity at the centre of Roke’s strategy.

About the Role

Senior role leading all data protection, GDPR compliance and data risk matters. The role arose due to the incumbent retiring. Reports to the General Counsel.

Key Responsibilities

• Leadership
  • Proven leadership experience in data protection and privacy.
  • Influence senior stakeholders and communicate effectively at all levels.
  • Exceptional interpersonal skills, building relationships across the Company.
  • Strong written and verbal communication; write and articulate issues and risks clearly.
• Governance & Compliance
  • Primary point of contact for data privacy matters.
  • Develop & implement strategies, policies and controls to ensure compliance.
  • Maintain statutory records (Records of Processing Activities, Legitimate Interest Assessments).
  • Respond to Data Subject Access Requests.
  • Monitor regulatory developments & update internal policies.
• Data Management & Documentation
  • Embed Privacy by Design principles in projects, assist with DPIAs.
  • Lead investigations into suspected or actual data breaches, assess, contain, document, root cause and recommend actions to General Counsel.
  • Collaborate with the Security Team for robust data security measures.
• Contracts & Third‑Party Oversight
  • Review data protection clauses in contracts, DPA and Standard Contractual Clauses.
  • Work with Supply and Commercial Teams to ensure compliance.
  • Deliver training on data compliance principles to all new employees.
  • Develop & deliver training programmes to embed data protection awareness across the Company.
• Monitoring & Reporting
  • Define & track KPIs for data protection compliance.
  • Plan & execute regular internal audits to identify and mitigate risks proactively.
  • Assist General Counsel in engaging with regulatory bodies including the ICO.
• Emerging Technologies & AI Governance
  • Working knowledge of AI utilisation, measuring associated risks and experience in leveraging its potential responsibly.
• Cyber Security
  • Knowledge of cyber security principles & practices.
  • Knowledge and awareness of ISO standards and other related standards (NIST, Cyber Essentials).

Desirable (no matter if you can’t meet these!)

• Experience in a technology business.
• Experience in a national security setting.
• Experience in defence.

What we can offer

• DV clearance bonus (if applicable)
• Performance‑related bonus scheme
• Contributory pension plan
• Sharesave scheme
• 30 days of annual leave with the option to purchase an additional 5 days.
• Flexible benefits platform packed with lifestyle discounts.

And we can also offer:

• Learning & Development – fully funded professional qualifications, leadership development, mentoring.
• Diversity and belonging – everyone is welcome at Roke.
• Pace and variety – fast‑paced work, diverse skill set.

Clearances

Eligible to achieve SC clearance. Must be British citizen and have resided in the UK for the last 5 years.

The Next Step

Click apply, submitting an up‑to‑date CV. No cover letter required, but may send one if you wish. If you would like to discuss this role in more detail, please contact Shahzad Hamid via Shahzad.Hamid@roke.co.uk.

Seniority level: Mid‑Senior level

Employment type: Full‑time

Job function: Legal

Industries: IT Services and IT Consulting