IT and Data Compliance Manager

The IT and Data Compliance Manager is responsible for ensuring that the organisation's IT systems, data handling practices, and digital operations comply with applicable legal, regulatory, and internal governance requirements. This role oversees the development, implementation, and monitoring of policies and procedures to safeguard sensitive data, mitigate compliance risks, and support a culture of security and accountability across the business.

Key Responsibilities

  • Regulatory Compliance
    • Monitor and interpret data protection and IT-related regulations (e.g., GDPR, CCPA, HIPAA, ISO 27001, SOC 2) to ensure organisational compliance.
    • Develop and maintain compliance frameworks, standards, and policies aligned with regulatory obligations and industry best practices.
    • Act as the main point of contact for regulatory bodies, auditors, and internal stakeholders on IT and data compliance matters.
  • Governance, Risk, and Controls
    • Lead compliance risk assessments for IT systems, data storage, and third-party providers.
    • Implement and oversee risk mitigation strategies to address gaps or vulnerabilities.
    • Develop monitoring and reporting mechanisms to track compliance performance and incidents.
  • Policy and Procedure Management
    • Draft, review, and update IT security, privacy, and compliance policies.
    • Ensure proper employee awareness, communication, and training programs are delivered on data protection and compliance obligations.
  • Data Management & Security
    • Oversee practices for secure collection, storage, transfer, and disposal of data.
    • Support IT and security teams in incident response, including data breaches, ensuring compliance with notification obligations.
    • Partner with data owners, IT, and business units to ensure consistent enforcement of compliance measures.
  • Audit & Reporting
    • Coordinate and support internal and external audits related to IT and data governance.
    • Prepare compliance reports for senior leadership and recommend improvements where required.

Qualifications & Skills

  • Bachelor's degree in Information Technology, Computer Science, Law, or related field (Master's or certifications a plus).
  • Professional certifications such as CISM, CISA, CISSP, CIPM, or equivalent preferred.
  • Strong knowledge of global data protection laws (e.g., GDPR, CCPA) and IT compliance frameworks (e.g., ISO 27001, SOC 2, NIST).
  • Proven experience in IT compliance, risk management, or data governance roles.
  • Excellent understanding of IT infrastructure, cyber security principles, and data life-cycle management.
  • Strong communication and stakeholder management skills, with the ability to translate technical requirements into business context.
  • Analytical mindset with strong problem-solving skills and attention to detail.

What We Offer

  • Competitive salary and benefits package.
  • Opportunity to shape the organisation's IT and data compliance strategy.
  • Professional development, certifications, and training support.
  • Collaborative environment with cross-functional exposure across IT, Legal, and Risk functions.
Apply Now
Apply Now

Job Details

Company
Oliver James
Location
Manchester, Lancashire, England, United Kingdom
Employment Type
Full-Time
Salary
£70,000 - £75,000 per annum
Posted