Data Privacy Specialist - Stratford, United Kingdom - Cancer Research UK

Cancer Research UK

Verified Company

Stratford, United Kingdom

3 weeks ago

Posted by:

Tom O´Connor

beBee Recruiter

Description

4,000 professionals, 0 days wasted, 1 incredible purpose. Together we will beat cancer.

Data Privacy Specialist

£43,550 - £48,550

Reports to:
Data Privacy Lead

Department:
Chief Operating Office

Contract: 12 month fixed-term contract

Hours:
Full time 35 hours per week

We're open to a variety of ways of working, including full time, part time, job share and compressed hours.

Location:
Stratford, London. Office-based with high flexibility (1-2 days per week in the office)

Recruitment process:
One competency-based interview

Application method:
At Cancer Research UK, we exist to beat cancer.

We are professionals with purpose, beating cancer every day. But we need to go much further and much faster. That's why we're looking for someone talented, someone who wants to develop their skills, someone like you.

This role is part of Cancer Research UK's Data Privacy Design & Assurance team which play a valuable role in protecting the charity by ensuring secure and safe controls, policies, and best practices are embedded across the organisation while providing strategic vision and practical support to our innovative technology portfolios and business teams.

You will play a vital role in monitoring compliance with data protection policy and supporting mandatory requirements while ensuring personal data is collected, stored, accessed, utilized, and disposed of in an appropriate manner.

You will gain exposure to stakeholders across the organisation by training and mentoring staff and resolving any internal and external information requests and queries.

What will I be doing?

Supporting the maintenance of the organisation's Records of Processing system and including collaborating with teams to ensure records are kept up to date.
Overseeing the Data Custodians network and ensuring that appropriate business partnering arrangements are in place between the Privacy Team and the broader organisation.
Developing key reporting metrics (including lagging and leading indicators of risk). Providing regular, concise, and timely privacy data reporting to senior stakeholders.
Maintaining a high profile for Data Protection & Security, working with senior managers to promote a culture that values, protects, and uses information effectively throughout the organisation.
Assisting in developing and maintaining effective Data Protection policies, procedures, and guidance.
Investigating security breaches and supporter complaints relating to Data Protection compliance which will include monitoring remedial actions
Managing the organisational response to information requests from members of the public and official bodies (e.g. the police).
Providing timely expert, practical advice and guidance on the use, storage, and security of personal data across the charity within agreed SLA's.
Mapping Personal Data flows and undertaking risk assessments of personal data processing.
Collaborating with delivery teams to ensure that new projects (e.g. supplier and partner agreements) meet compliance requirements and undertake Data Protection Impact Assessments.
Liaising with Legal and Information Security colleagues to ensure contracts comply with Data Protection Laws.
Developing and delivering Data Protection training for all employees and promoting awareness and understanding of the Data Protection policies, guidance, and procedures.
Undertaking research, horizon scanning, and keeping the Head of Data Governance & Information Security informed of any potential or planned changes in the external environment (including but not limited to legal or regulatory requirement changes for data protection or information management that may affect the charity).
Mentoring and supporting other members of the Information Security & Privacy team.

What skills are you looking for?

An experienced Data Privacy professional with an indepth knowledge and understanding of the General Data Protection Regulations, Data Protection Act 2018, and Privacy and Electronic Communication Regulations.
Demonstrable history advising on compliance in line with the General Data Protection Regulations and Data Protection Act.
Comfortable operating in a fastpaced, innovative environment.
Able to clearly explain complex data privacy concepts to technical and nontechnical stakeholders with experience gaining stakeholder buyin to relevant policies, procedures, and guidance.

Desirable:

Worked within a Fundraising or Marketing environment/ teams that use Adtech and realtime bidding platforms with an understanding of their data privacy requirements and implications (this is desirable rather than essential meaning we will consider applicants without this background who meet the above criteria)

What will I gain?

Each and every one of our employees contributes to our progress and is supporting our work to beat cancer. We think that's impressive.

In return, we make sure you are supported by a generous benefits package, a wide rang