Data Protection Compliance Manager - Risk Management - London, Leeds, Birmingham

at  EY

JOB DESCRIPTION

Within the professional services environment, the application of risk management procedures is fundamental to the successful delivery of our client services and promotion of our brand. Risk management encompasses the technical support and processes which underpin the delivery of service quality, contain the threat of litigation, limit damage to our reputation and seek to achieve full fee recovery.
The Data Protection team is responsible for supporting the UK firm in the execution of and compliance with Global, Regional and local data protection laws and regulations, policies and procedures and the development, maintenance, communication and training of key data protection policies, providing advice on complex matters and monitoring the application of these policies. The Data Protection teams sits within the Central Risk Management team consisting of a Risk Management Partner, Chief Compliance Officer, a Financial Crime Director, a Compliance Director, Data Protection Officer and supporting managers and associates.
With the implementation of the UK General Data Protection Regulation and the UK Data Protection Act 2018, data protection is an area of increased risk for the firm. The law has been modernised and strengthened and the penalties have increased and as a result, the central Data Protection team is continuing to develop its compliance function.

SKILLS AND ATTRIBUTES FOR SUCCESS

• Ability to plan, organise and prioritise tasks and projects.
• Strong team player with excellent commercial acumen and communication skills.
• Experience managing a team and highly complex projects.
• Strong analytical and interpretation skills with excellent attention to detail.
• Strong communication ability with colleagues at all levels including delivering tough messages to senior leaders within the firm.
• Ability to remain calm, controlled and resilient in a high paced and agile environment.

WHAT WE LOOK FOR

We are looking for an experienced, high-energy individual who embraces change and innovation in order to ensure that we can continue to deliver world-class Risk Management initiatives in an ever-changing environment.

YOUR KEY RESPONSIBILITIES

You will enjoy a challenging workload, specifically responsible for leading on the design and deployment of data protection compliance monitoring processes. This will include:

• Creation and application of monitoring and testing protocols to measure compliance with regulatory data protection obligations.
• Oversight and instruction of monitoring resources and administrative support resources.
• Critical assessment of effectiveness of data protection systems/controls including maturity and risk assessment(s).
• Maintenance of robust records of the framework, responsibilities, controls, testing and monitoring results, risk assessments and production of reports for DP & Risk Management leadership as well as any required committee reporting.
• Preparation and delivery of information to the business on EY’s data protection compliance program to raise awareness and understanding of key data protection matters.
• Recommendation of control improvements along with associated testing and oversight arrangements.
• Developing, implementing and overseeing any required remedial actions.

Additionally, you will assist with:

• Drafting and updating internal policies and procedures;
• Delivering training and awareness across the UK firm;
• Providing technical advice to the firm’s service lines on data protection matters; and
• Advising on complex and high-risk data protection issues arising out of frontline compliance, such as data subject requests, potential data incidents, privacy impact assessments and compliance ‘health checks’.

TO QUALIFY FOR THE ROLE YOU MUST HAVE

A minimum of 4 years of experience in quality, risk management and compliance processes, with strong data protection knowledge.