Data Protection Officer

£28.00 - £33.00 per hour

Job description

Morgan Hunt are currently working with a Healthcare Membership Body, in their search for a temporary Data Protection Officer to lead on data privacy and protection across the organisation.

You will be reporting into the CEO and responsible for providing advice relating to Data Protection and Information Governance across the organisation. You will ensure the organisation has appropriate policies in place to ensure compliance with data regulation and that these are effective in practice and enabled by appropriate control frameworks. You will provide advice in balancing business objectives and the requirements of data regulation, identifying solutions that enable potentially competing aims to be achieved

The role would be perfect for someone with strong experience as a Data Protection Officer (ideally within the Regulatory, Membership or NFP sectors). You will have expert knowledge around Data Protection Legislation, the ability to provide advice to Senior Stakeholders, review and develop policies and procedures as well as working with Business Owners to ensure continuous improvement in data management.

The organisation is looking for someone to start immediately in January, so you must be a confident self-starter, with strong communication skills and a proactive attitude. You may be required to attend the London Office.

Job Title: Data Protection Officer

Location: Hybrid (Remote & London Office)

Hourly Rate: £28.00 - £33.00 (PAYE)

Job Type: Temporary (2-3 months)

Hours: Full-time (35 hours per week or more)

Start Date: ASAP (January 2022)

Key Responsibilities

  • Ensure compliance with the Data Protection Act 2018 and the UK General Data Protection Regulation (GDPR) - monitoring continuous compliance and reviewing internal data activities (including data retention)
  • Advise on cyber security threats and how these are appropriately mitigated
  • Accountable for leading data protection culture and how compliance is managed in practice and in accordance with data protection laws & legislation and to promote a continual education programme to achieve this
  • Accountable for the Data Protection Policy, Privacy Policy and Cookies Policy, ensuring these remain fit for purpose through periodic review
  • Develop and deliver a programme of planned compliance reviews and ensure any gaps are addressed
  • Advise, support and monitor the business in conducting data protection impact assessments
  • Collate and report on operational complaints handling across the college
  • Advise Assistant Director Governance on the use of internal audit to support data protection activity and report data protection risk to Audit Committee and Trustees.
  • Advise and manage responses to data breaches or external challenge on the handling of personal data and including Subject Access Requests; liaising with the ICO as required.
  • Investigate suspected and actual security incidents, acting as a point of escalation and communication and reporting to Chief Operating Officer on outcomes with recommendations for remedial action
  • Advise the Chief Operating Officer on matters relating to data protection and information security and balancing business and regulatory requirements
  • Support Business Owners and their teams to make informed decisions regarding data, including managing risk and continuous improvement in data management
  • Implement and maintain appropriate records of processing operations for the organisation

Personal Specification

  • Substantial experience in data protection programme management (ideally within the Regulatory, Membership or NFP sectors)
  • Familiarity with privacy and security risk assessment and best practices, privacy certifications/seals, and information security standards certifications
  • Sound understanding of Information Security, governance and risk management
  • Sufficient understanding of the processing operations carried out, as well as the information systems and data security and data protection needs of the organisation
  • Excellent interpersonal skills with the ability to deal sensitively in a highly political environment and with a wide range of internal stakeholders
  • Demonstrable leadership and project management experience.
  • Able to work in a high pressure, complex multi-project/initiative environment.
  • Adequate self-awareness and confidence to acknowledge knowledge gaps and seek to fill them from reliable sources
  • Expertise in national data protection laws and practices and an in-depth understanding of the UK GDPR
  • Understanding of applicable Information Security standards including ISO27001 Information Security Management Standard, Cyber Essentials and PCI-DSS compliance
  • Understanding of the operations of an international membership organisation/not for profit sector organisation

Please contact to find out more information regarding this fantastic opportunity for a Data Protection Officer.

Morgan Hunt is a multi-award-winning recruitment Business for interim, contract and temporary recruitment and acts as an Employment Agency in relation to temporary vacancies. Morgan Hunt is an equal opportunities employer, job suitability are assessed on merit in accordance with their skills, qualifications and abilities to perform the relevant duties required in a particular role.


Alfie Robinson
Senior Consultant - Governance & Legal
Charity Team / Professional Services Team
Get notifications for similar jobs