Data Protection Manager

VNI Finance is delighted to be supporting our key client in the city centre of Glasgow with the recruitment of a Data Protection Manager. The role will work across a number of senior stakeholders and play a pivotal role in the rollout of ISO27001:2022. Our client has a renowned and supportive culture and provides a fantastic career platform for individuals. Role overview: Work across multiple departments to ensure data protection is embedded, promoting best practice. Coordinating department functional leads (DFL’s) to ensure compliance across all departments. To maintain and update Data Protection policies, procedures and standards as appropriate for the business To deliver annual GDPR Roadmap requirements. To keep up to date with new legislation or other regulatory changes and make recommendations as necessary to ensure that risks are mitigated as well as ongoing compliance. Design and deliver classroom-based data protection training for colleagues. Manage requests from data subjects (access, rectification, erasure). Manage DPIAs, assess risks and implement mitigation strategies in conjunction with DFL’s. Act as first point of contact for the assessment, resolution and reporting of any data breaches escalating as appropriate. Investigate data breaches in line with response plans. Maintain records of processing activities and compliance evidence – utilising DPOrganiser. Day to day management of Data Protection mailbox and processes. Attend wider group Data Protection Forum. Play an active part in the achievement and maintenance of ISO 27001 certification. Enforce group information security policies, and procedures to protect information assets. Assist with the identification, evaluation and mitigations for security risks and vulnerabilities. Work with department DFL’s to integrate information security into business processes and goals. Candidate Background: Advanced knowledge of data protection regulations and procedures. 2 years of experience in a Data Protection role Strong organisational, analytical and problem-solving skills. Understanding of information security principles, with the desire to learn and enhance skillset in this area. Confident reviewing controls, assessing risks, and producing clear, well-evidenced mitigation plans An understanding of data mapping methodologies. Able to work effectively with auditors, suppliers and colleagues, presenting information clearly and professionally. Ability to report accurately and meet deadlines. Demonstrates a strong work ethic and maintains very high standards with high levels of attention to detail. Enthusiastic team player with emotional intellect to develop effective networks and drive change. IT literate with proficiency in Microsoft Office suite. Package: £35,000-£45,000 Hybrid working 3/2 Free travel into the city centre office