Support the Compliance and Legal function in the delivery of their organisational objectives.
Support the Data Protection Officer in the delivery of Data Protection initiatives and ongoing compliance with Data Protection laws and regulations governing the use of personal data.
Support the Data Governance Board in the delivery of Information Governance initiatives.
Maintain effective Data Protection and Information Governance policies and processes in support of operational and statutory requirements.
Support International Operations in the delivery of Operational Resilience initiatives.
Help ensure data protection risk is managed at an acceptable level when acquiring new services or when performing change to existing services.
Responsible for the continued development of WSI’s Data Protection training programme.
Contribute to Data Governance training initiatives.
Form effective working relationships with peer operational functions.
Accountabilities:
Develop and maintain WSI’s Privacy Notices, Accountability Framework, Record of Processing, Information Asset Register, Data Protection Impact Assessment, Legitimate Interest Assessment and Individual Rights policies, processes and supporting work practices.
Ensure WSI meets statutory data minimisation requirements by maintaining effective Data Discovery and Record Retention capabilities and work practices.
Maintain WSI’s privacy notice register.
Perform data mapping across all personal data processing activities.
Respond to and/or oversee the management of Individual Rights Requests.
Maintain an effective risk screening process to help identify data protection, information governance and operational resilience risk issues within newly proposed services or when performing significant change to existing services.
Provide performance-based MI on the management of data protection, information governance and operational resilience risks.
Qualifications & Experience:
Educated to degree level or equivalent
Appropriate professional post-graduate qualification (legal, insurance industry etc.)
Minimum 2 years’ experience of working within a regulatory and financial services environment
Understanding of regulatory data protection requirements
Understanding of UK, UAE and EU data protection laws
