Data Compliance Manager - Nottingham - The Nottingham

Description

About The Role

Contract type: Permanent

Hours: Full-time, 35 hours

Location: Head Office, Nottingham (Hybrid working, minimum 2 days per week)

Application process: Please apply via the application button which will direct you to our careers site. If you require any adjustments to assist you in applying, please contact

At Nottingham Building Society our talent acquisition approach is rooted in openness and inclusive hiring, so even if you don't feel you tick every box, we'd still genuinely love to hear from you.

As our Data Compliance Manager, you'll play a key role in shaping and safeguarding the way we manage data across the organisation. You'll lead the development and delivery of our data protection and information governance strategies, ensuring we not only meet regulatory requirements but also champion best practice in handling sensitive business, customer, and colleague information.

Working closely with teams across the organisation, as well as senior leaders and external partners, you'll build strong frameworks, strengthen governance processes, and help create a culture where awareness and accountability for data protection thrive. This is an exciting opportunity to make a meaningful impact, influence organisational standards, and support a diverse community of colleagues in managing data responsibly and confidently.

Here's a taste of what you will be doing as a Data Compliance Manager at Nottingham Building Society:

• Policy & Governance Development: Create, implement and maintain data protection and information governance policies, controls, and standards aligned to laws, regulations, and best practice.
• Risk & Incident Management: Lead data breach risk assessments, mitigation planning, continuous monitoring and collaborate on breach, complaint and risk event handling within regulatory deadlines.
• Regulatory Compliance Oversight: Ensure adherence to UK GDPR, DPA 2018, PECR and relevant global frameworks such as CCPA, HIPAA, ISO 27001, NIST, PCI‑DSS and SOX.
• Audits & Assessments: Conduct data protection and information governance audits, gap analyses, and assessments to identify risks and improvement opportunities.
• Third‑Party Risk Management: Oversee vendor risk processes to ensure external partners meet data protection and governance requirements.
• Training & Awareness: Deliver regular training and awareness initiatives to strengthen organisational understanding of data protection and governance.
• Data Lifecycle & Classification Management: Develop and maintain data classification, privacy, and retention policies in partnership with second‑line Data Protection teams.
• Security & Privacy Operations Support: Support DLP, encryption, IAM implementation, and collaborate on PIAs and DPIAs to ensure privacy‑by-design.

About you:

• Data Protection Expertise: Strong experience in data protection and information governance, including DPIAs and framework/policy development.
• Regulatory Knowledge: Solid understanding of UK and global data protection requirements and industry best practices.
• Technical & GRC Skills: Background in information security, GRC, risk management and working with frameworks such as ISO 27001, NIST, CIS and COBIT.
• Communication Skills: Ability to explain complex technical concepts clearly to non‑technical stakeholders.
• Stakeholder Influence: Proven experience influencing and engaging stakeholders at all levels, including senior leadership.
• Third‑Party Management: Experience conducting vendor due diligence and appropriateness assessments.
• Leadership & Collaboration: Strong leadership skills with experience working cross‑functionally and building relationships at all levels.

Reward & Benefits:

• Competitive Package: Fair salary benchmarked against market data, annual discretionary bonus, and 29 days holiday plus bank holidays.
• Health & Wellbeing: Access to Medicash healthcare, mental health first aiders, and a suite of wellbeing resources to support you inside and outside of work.
• Work-Life Balance: 35-hour working week for full-time roles, with flexibility to help you perform at your best.
• Career Growth: Ongoing personal and professional development, we'll support your ambitions and help you grow your potential.
• Inclusive Culture: Be part of a friendly, values-led team that genuinely cares about doing the right thing for colleagues and customers.
• Giving Back: Use two paid volunteering days each year to support causes close to your heart, through our Samuel Fox Foundation.
• Sustainability Focus: Join a business committed to reducing its carbon footprint and making a positive impact on the environment.
• Free access to Octopus Money: Financial coaching & tools that help you plan, manage, and make the most of your money.

Embracing Diversity Together:

We proudly embrace and celebrate diversity as a fundamental cornerstone of our values. We believe that a diverse and inclusive workplace is not just essential for our success but is also a reflection of the vibrant communities we serve. Our commitment to diversity extends beyond our internal culture to the way we approach advertising and engage with our customers.

Our commitment means actively working to eliminate barriers and biases that may hinder equal opportunities within our organisation. We strive to ensure that all individuals, regardless of background, have an equal chance to thrive and advance in their careers.

We acknowledge that diversity is not just a goal to be achieved but a continuous journey toward creating an environment that embraces differences and promotes equal opportunities for all. We are committed to creating an inclusive culture that encourages collaboration, creativity, and a sense of belonging for every member of our community.

About Us

We are a mutual, which means we don't have shareholders. Instead, we're owned by our members and use our money to do good, investing in our community, responsible causes, and – well, you. So, we're always striving to do the right thing for our team, communities and members.

Although our history spans over 170 years, our purpose of helping our members save, plan for and protect their financial futures is enduring. At The Nottingham Building Society, we are dedicated to overcoming obstacles and turning challenges into opportunities. At the heart of our mission is our unwavering commitment to breaking down barriers and building better futures by helping our customers achieve the significant milestone of owning their own home.