About the RoleWe are seeking a highly motivated and experienced Data Risk Manager to join our global team. This is a pivotal role responsible for driving data privacy, risk, and compliance initiatives across multiple jurisdictions, ensuring alignment with evolving regulatory requirements and industry best practices.
Key Responsibilities*Lead the execution of Data Protection Impact Assessments (DPIAs) using SureCloud, supporting the accelerated review and approval of applications migrating to the Azure cloud environment.
*Design and deliver global privacy principles training and workshops, educating stakeholders across all regions to embed a strong culture of data protection and compliance.
*Develop and implement a global data retention policy, including a comprehensive retention schedule. Ensure the policy is continuously maintained and updated in line with changing jurisdictional regulations, establishing a consistent global standard to meet all legal and regulatory requirements.
*Oversee preparation for ISO 27001 certification review, including the development and execution of a robust remediation plan, ensuring continued accreditation.
Key Requirements*Proven experience in data risk, privacy, or information security within a complex, global organisation (legal or professional services experience preferred).
*Strong working knowledge of data protection regulations (e.g., GDPR and other global frameworks).
*Experience conducting DPIAs and working with risk management platforms (e.g., SureCloud or similar).
*Demonstrated experience in policy development, particularly data retention frameworks.
*Familiarity with ISO 27001 standards and audit preparation.
*Excellent stakeholder engagement, communication, and training delivery skills.
*Ability to manage multiple global initiatives and meet fixed deadlines.