Data Protection Manager

Salary: £65,000 - £70,000

Work Life Balance: Hybrid, 1 day per week at our Northampton office

Candidate Journey: Our goal is to reply to applications within 3 working days. Additionally, we make sure to acknowledge, evaluate, and respond to all applications as a way of showing our appreciation for your time and effort in applying to us.

Interview Process:

1. Telephone interview with a member of recruitment (30 mins)
2. Competency based interview with Hiring Manager & Head of InfoSec (60 mins)
3. Final interview - informal chat with senior leaders (30 mins)

Are you ready to join an award-winning business that is reshaping the insurance landscape? Our organisation has transformed the way customers interact with insurers, establishing a benchmark for exceptional service. With our recent digital transformation, we are eager to find passionate and motivated individuals to join us on our journey to success.

We firmly believe that attracting and developing talented professionals is essential for our ongoing growth and success. By investing in our team, we create an environment where innovation thrives and opportunities abound.

Our aim is to innovate, dominate and disrupt niche insurance on a global scale, which means we are seeking innovators and individuals who embrace change with ease. Together, we can drive change and make a significant impact in the industry.

The Role:

As our Data Protection Manager, you’ll be the guardian of our data protection policies and procedures. You’ll ensure compliance with GDPR and other regulations, oversee information security practices, and integrate AI technologies responsibly. You’ll also be the go-to person for data protection queries and issues.

What will you do?

• Develop and maintain data protection policies and procedures.
• Ensure compliance with GDPR and other data protection laws.
• Conduct audits and risk assessments to mitigate data protection risks.
• Manage the Record of Processing Activities (ROPA).
• Provide training and guidance on data protection practices.
• Liaise with regulatory bodies and manage data protection impact assessments (DPIAs).
• Handle data subject access requests (DSARs) and other rights requests.
• Oversee data breach management and reporting.
• Develop a privacy monitoring plan to ensure ongoing compliance.
• Develop and enforce security policies and procedures.
• Monitor and assess security risks.
• Collaborate with IT and other departments to ensure data security.
• Ensure compliance with ISO 27001 and other ISO standards.
• Lead and manage data protection and information security projects.
• Oversee the responsible integration and use of AI technologies.
• Regularly review and audit AI systems to ensure data privacy and security.
• Develop guidelines and best practices for using AI in handling personal data.

Essentials:

• Proven experience in a data protection role, preferably in insurance or financial services.
• In-depth knowledge of GDPR, UK data protection laws, and information security practices.
• Experience with ISO 27001 and other ISO standards.
• Strong project management skills.
• Familiarity with AI technologies and their implications for data privacy and security.
• Strong analytical and problem-solving skills.
• Excellent communication and interpersonal skills.
• Ability to manage multiple tasks and projects effectively.

Bonus skills you may pack in your suitcase:

• Relevant certifications (e.g., CIPP/E, CIPM, ISO 27001 Lead Auditor/Implementer).

We’re assembling a diverse team, where skills, not checkboxes, reign supreme, regardless of race, religion, sex, sexual orientation, gender identity or disability.

Staysure Group welcomes all new starters with open arms, providing training, development opportunities, and great benefits.