Privacy Specialist

We're Civica, and we create software that helps deliver critical services for citizens all around the world. From local government, to education, health, and care, over 5,000 public bodies across the globe use our software to provide essential services to over 100 million citizens.

Our aspiration is to be a GovTech champion everywhere we work, supporting the needs of citizens and those who serve them every day. Building on 21 years of continuous growth and success, we're at a pivotal point in our journey to realise that aspiration.

We're hiring for a Privacy Specialist who will be responsible for ensuring that Civica adheres to legal, regulatory, and internal policy requirements related to privacy, information security, business continuity, and operational integrity.

To act as subject matter expert in Data Protection and contribute to all aspects of Civica's compliance program.

Responsibilities

Breach and Incident Management

• Lead investigations and response relating to data breaches, security incidents and near misses that involve personal and other data where an IRT is not required
• Ensure adherence to regulatory breach reporting requirements in accordance with the geography and product
• Facilitate lessons learned reviews ensuring improvement actions are completed within the agreed timescales
  
  

Risk Management

• Conduct systematic risk reviews to identify potential compliance gaps and areas of vulnerability. Accurately capture details in Civica's GRC platform
• Agree and record risk mitigation strategies and work with stakeholders to ensure effective management of identified risks
  
  

Privacy

• Document and maintain record of processing activities in accordance with the regulations of the operating geography
• Conduct privacy impact assessments to identify and mitigate any risks of harm to individuals
• Ensure the appropriate classification, protection, handling and retention of personal data
• Ensure all processes align with the core principles of privacy, security, resilience, and quality
• Maintain knowledge of applicable data protection laws across all geographies in which Civica operates
• Deliver Data Subject Access Requests in a timely fashion, coordinating cross-functional activity where necessary
  
  

Supplier Management

• Evaluate potential vendors to assess the suitability of the organisation and its products or services
• Conduct reviews of key vendors
  
  

Audit Programme

• Coordinate and conduct internal audits to ensure compliance with established policies and regulations
• Organise and participate in external audits ensuring all participants are prepared and the operation complies with the audit requirements
• Lead on resolving any audit findings by establishing the root cause and implementing corrective action
  
  

Training and Awareness

• Where appropriate, design and deliver compliance training and awareness programs to colleagues
• Serve as a point of contact for compliance-related enquiries
  
  

Policy Management

• Contribute to the Policy Advisory Board to ensure policies are relevant and reviewed on a regular basis
• Ensure Privacy Notices appropriately reflect processing of personal data.
  
  

Continual Improvement

• Support and/or deliver any required compliance-related activity and projects as deemed necessary
  
  
  

Requirements

• Background in the software industry in a technology-focused compliance role
• Experience of assessing and supporting the compliance aspects of marketing and sales functions
• Knowledge of ISO standards including ISO 27001 (Information Security, ISO 27701 (Privacy), ISO 22301 (Business Continuity) & ISO 9001 (Quality)
• Degree level or professional qualification - preferably CIPP/E or similar
• Possess demonstrable detailed knowledge and understanding of data protection regulations
• A knowledge of information security controls
• Proven experience in risk assessment and mitigation strategies
• Able to analyse complex issues to achieve logical conclusions
• Confident speaker that can present credible outcomes and influence stakeholders
• Able to apply active listening skills through focused attention and seeking clarification when needed
• Proficient in written communication that is tailored for the audience, well-structured and factually correct
• Delivery Orientated
• Accountable for tasks and key objectives ensuring transparency and attention to detail
• Committed to deadlines by proactively managing time and creatively using available resources to overcome obstacles
• Able to work as part of a global team - including working out of hours to attend meetings or support incident response activities
• Occasional travel to Civica facilities within the local geography
  
  
  

Benefits

We know that when our people are happy, they work better and have greater job satisfaction. Here's what you can expect:

Time Off & Work-Life Balance

25 Days Annual Leave + bank holidays - plus the option to buy up to 10 extra days!

Days of Difference - Up to 3 extra days off for volunteering.

Financial Well-being & Security

Pension Contributions - 5% employer match to support your future.

Income Protection - Up to 75% salary cover for long-term illness.

Life Assurance - 4x salary tax-free lump sum.

Critical Illness Cover - £25,000 lump sum (extendable to dependents).

Health & Perks

Private Medical Insurance - Fast access to private healthcare.

Health Cash Plan - Claim back physio, therapies & more.

Dental Insurance - Cover for routine & emergency care.

Affinity Groups - Join employee-led communities.

Bounty Bonus - Refer a friend & get rewarded.

Why You'll Love Working with Us

As a company, we're passionate about what we do and the citizens we serve. If you, too, want to champion the use of technology in public services to improve outcomes for citizens and public sector organizations, then Civica is the right place for you. We will help you unlock the best version of yourself, achieve career growth, and make a real difference to people and communities.