Data Risk Privacy Manager

We are seeking a highly motivated and experienced Data Risk Manager to join our global team. This is a pivotal role responsible for driving data privacy, risk, and compliance initiatives across multiple jurisdictions, ensuring alignment with evolving regulatory requirements and industry best practices.

• Lead the execution of Data Protection Impact Assessments (DPIAs) using SureCloud, supporting the accelerated review and approval of applications migrating to the Azure cloud environment.
• Design and deliver global privacy principles training and workshops, educating stakeholders across all regions to embed a strong culture of data protection and compliance.
• Develop and implement a global data retention policy, including a comprehensive retention schedule. Ensure the policy is continuously maintained and updated in line with changing jurisdictional regulations, establishing a consistent global standard to meet all legal and regulatory requirements.
• Oversee preparation for ISO 27001 certification review, including the development and execution of a robust remediation plan, ensuring continued accreditation.

• Proven experience in data risk, privacy, or information security within a complex, global organisation (legal or professional services experience preferred).
• Strong working knowledge of data protection regulations (e.g., GDPR and other global frameworks).
• Experience conducting DPIAs and working with risk management platforms (e.g., SureCloud or similar).
• Demonstrated experience in policy development, particularly data retention frameworks.
• Familiarity with ISO 27001 standards and audit preparation.
• Excellent stakeholder engagement, communication, and training delivery skills.
• Ability to manage multiple global initiatives and meet fixed deadlines.