Jobs

Skip to main content

INFORMATION PROTECTION MANAGER

2/182
Type: Permanent
Salary: £ 60,000
Location: Weybridge, Surrey.

Benefits

With a fantastic benefits and bonus package to include Car Allowance, ability to buy and sell holidays, 16% Non Contr.  Pension and much more as well as flexible working and plenty of on-site parking.

Job Summary

Information Protection Officer required for Global FMCG Company who are an Award winning leader in their field. Awards include those for Development and learning and commitment to their employees.

 

 

 

The Information Protection Manager is there to protect the confidentiality and integrity of the client’s information assets. Responsibilities include ensuring that the data assets and associated processing are legally and regulatory compliant with data security requirements. Accountable for minimising the risk of data loss or corruption, by conducting risk assessments and making recommendations, ensuring critical /sensitive or confidential data is adequately secured meeting regulatory requirements and that the necessary controls are in place to demonstrate compliance.

Job Description

  • Identify developments in information security/protection laws and regulations that may impact company information security policies and practices
  • Work with project teams to identify the data privacy impact for IT projects, providing guidance and ensuring regulatory compliance
  • Develop an effective and straight forward process for identifying the clients critical and confidential data and roll this process out globally
  • Conduct IT risk assessments based in line with regulations
  • Research technology solutions from existing and new providers to minimise the risk or data loss or corruption of critical data assets
  • Manage the IT data mapping catalogue to ensure that confidential data assets are tracked to support data breach reporting
  • Support the Legal team in the design and implementation a sustainable data breach reporting process to comply with regulations
  • Support the security operation centre during security incident investigations, to recommend remediation actions to minimise reoccurrence of data loss
  • Conducting periodic data privacy audits to verifying the effectiveness of the IT controls

Required Skills

  • Extensive experience within an IT environment
  • Background in Data Privacy Laws/Legal Compliance/Audit
  • Experience of working with established Information Security and Risk Management systems, ideally ISO27001 or NIST
  • CISM, CISSP or similar qualification would be advantageous
  • A strong understanding of the risks associated with data processing activities
  • Carry out risk assessments and develop effective and efficient mitigating controls
  • Experience of working with recognised Governance Risk and Compliance tools
  • Highly confident and clear communicator who can relay complex information in laymen’s terms at all levels, both verbally and in writing
  • Highly developed analytical, decision-making and planning skills
  • The ability to remain calm under pressure, work to tight deadlines
  • Strong attention to detail, whilst also having the ability to keep the bigger picture in mind and be able to take a pragmatic approach to problem solving
  • Effective time management skills and able to prioritise
  • Highly organised and capable of managing multiple projects simultaneously
  • Able to travel to other locations in the UK and abroad when required