Information Security Compliance Manager and Data Protection Officer (DPO)

Get AI-powered advice on this job and more exclusive features.

This range is provided by Tiger Resourcing Group. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.

Direct message the job poster from Tiger Resourcing Group

Information Security Compliance Manager and Data Protection Officer (DPO)

*Remote-first role with travel to UK and European offices if / when required*

Role Summary

Our client is seeking an Information Security Compliance Manager and Data Protection Officer (DPO) to ensure compliance with applicable Information Security Standards (e.g. ISO27001 / Cyber Essentials Plus, NIS2) as well as the General Data Protection Regulation (GDPR) and other applicable data protection laws. This role reports into the Director of Governance, Risk & Compliance and will coordinate with the Compliance department. You will oversee data protection strategies, implement policies, and ensure the secure processing of data within the organisation. The role requires strong expertise in information security compliance, data privacy, legal compliance, and risk management.

Job Responsibilities

Data Privacy Compliance & Advisory

• GDPR Compliance: Monitor and ensure compliance with GDPR, national data protection laws, and internal privacy policies; provide internal expert advice on data protection matters and privacy risks; act as the primary point of contact with supervisory authorities (e.g. ICO, CNIL, AEPD); conduct regular privacy impact assessments (DPIAs) for high-risk data processing activities; maintain Record of Processing Activities (ROPA)
• Policies & Training: Develop and implement privacy policies, guidelines, and best practices; develop and deliver training for employees on data protection obligations
• DSAR: Oversee and respond to Data Subject Access Requests (DSARs), including rights to access, erasure, and rectification
• Breach Management: Ensure breaches are identified, investigated, and reported according to applicable laws and standards
• Audit: Conduct internal audits and ensure continuous improvement in data protection practices; support external audits and regulatory assessments
• Assessments: Provide guidance on data privacy and information security in contracts, vendor agreements, and responsible for addressing third-party risk assessment requirements

Information Security Compliance

• Certifications: Manage certification compliance programs (ISO27001 / Cyber Essentials Plus); lead and coordinate annual certification efforts
• Other Cybersecurity Laws and Regulations: Support compliance efforts regarding EU’s emerging data and cyber laws (e.g. NIS2, Data Act)
• Governance: Support ongoing information security compliance and governance activities

Collaboration & Stakeholder Engagement

• Work closely with Legal, IT, Compliance, HR, Internal Audit, and external partners to align data protection strategies

Job Skills Requirements

• Strong knowledge of GDPR, ePrivacy Directive, ISO27001 and national data protection laws
• Experience in privacy law, compliance or data security
• Familiarity with data governance, cybersecurity and IT security frameworks
• Strong communication skills to engage with internal teams and external regulators
• Ability to handle sensitive and confidential information with integrity

Preferred

• Legal, IT security or compliance background
• Certification in CIPP/E, CIPM, CIPT, CISSP or equivalent privacy or cybersecurity qualification
• ISO 27001 Lead Auditor certifications and experience
• Experience conducting privacy impact assessments (DPIAs) and managing data breaches
• Strong attention to detail and analytical skills
• Ability to work independently and make risk-based decisions
• Strong organizational skills for managing compliance documentation
• Proactive approach to identifying and mitigating data protection risks

The above statements reflect the general details necessary to describe the principal functions of the occupation described and shall not be construed as a detailed description of all the work requirements that may be inherent in the occupation.

• Seniority level
  Mid-Senior level

• Employment type
  Full-time

• Job function
  Consulting
• Industries
  Security and Investigations

Referrals increase your chances of interviewing at Tiger Resourcing Group by 2x

Get notified about new Compliance Manager jobs in England, United Kingdom.

London, England, United Kingdom 2 weeks ago

Uxbridge, England, United Kingdom 1 week ago

London, England, United Kingdom 2 weeks ago

London, England, United Kingdom 2 weeks ago

London, England, United Kingdom 1 month ago

London, England, United Kingdom 2 weeks ago

London, England, United Kingdom 2 weeks ago

London, England, United Kingdom 2 weeks ago

Maidenhead, England, United Kingdom 2 weeks ago

London, England, United Kingdom 1 day ago

London, England, United Kingdom 1 month ago

London, England, United Kingdom 2 weeks ago

Abingdon-On-Thames, England, United Kingdom 2 weeks ago

Hemel Hempstead, England, United Kingdom 2 weeks ago

London, England, United Kingdom 2 days ago

Maidenhead, England, United Kingdom 2 weeks ago

London, England, United Kingdom 1 week ago

London, England, United Kingdom 2 weeks ago

London, England, United Kingdom 1 month ago

London, England, United Kingdom 1 week ago

London, England, United Kingdom 4 days ago

London, England, United Kingdom 2 days ago

Lincoln, England, United Kingdom 2 weeks ago

Slough, England, United Kingdom 2 weeks ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.