101 to 125 of 5,773 GDPR Jobs in the UK

Management: Identify and manage risks to information assets and IT systems. Lead enterprise risk assessments and mitigation planning. Compliance & Regulatory: Ensure adherence to global data protection regulations (GDPR, PCI-DSS, etc.), working closely with legal and data protection teams. Leadership & Stakeholder Engagement: Act as the subject matter expert on cybersecurity at the board and executive level. … Demonstrable experience building and scaling a GRC function in a complex environment. Deep knowledge of information security standards (ISO 27001, NIST, CIS), risk frameworks (COSO, FAIR), and regulatory obligations (GDPR, PCI-DSS, SOX). Proven track record of managing enterprise-level security programs, including incident response and business continuity. Excellent stakeholder management skills, with experience reporting at board level. Strong More ❯

Response: Lead cloud security incident investigations, implement remediation strategies, and develop proactive measures to mitigate future risks. Compliance: Ensure cloud environments comply with regulatory standards and organizational policies (e.g., GDPR, ISO 27001, NIST, or SOC 2). Automation & CI / CD: Integrate security tools into CI / CD pipelines to enable automated vulnerability scanning, compliance checks, and secure deployments. Monitoring More ❯

functional teams to design, implement, and maintain security controls and configurations across various systems and platforms. Oversight of compliance for regulatory compliance requirements, such as SOC2, HIPAA, ISO 27001, GDPR etc., and ensure our systems adhere to these standards. Stay updated with the latest industry trends, emerging threats, and security technologies to proactively identify and address potential risks. Conduct security More ❯

and customer feedback. Infrastructure And Security Ensure robust system architecture and IT infrastructure that supports business operations. Oversee cybersecurity measures to protect company and customer data, complying to GDPR requirements. Ensure interworking between on prem, private cloud and public cloud infrastructure to support platforms and products Optimize private and public cloud infrastructure, usage and cost, DevOps pipelines, and technical More ❯

configurations to reduce false positives, improve detection accuracy, and adapt to evolving threat landscapes. Advisory & Compliance: Advise clients on aligning SIEM deployments with security frameworks and compliance requirements, including GDPR, HIPAA, and PCI DSS. Provide guidance on data strategies for security monitoring, such as data persistence and streaming for long-term analysis and real-time detection. Assist clients More ❯

vendors to ensure successful implementation of solutions. - Provide architectural guidance and support to project teams throughout the development lifecycle. - Ensure solutions adhere to relevant legal and regulatory requirements (e.g., GDPR, data privacy). - Contribute to the development of architectural patterns and best practices within the IT department. Stakeholder Management & Communication: - Effectively communicate architectural concepts and solutions to both technical More ❯

e.g., AWS Security, Microsoft SC-200). Experience with security tools and platforms (e.g., SIEM, DLP, vulnerability scanners). Familiarity with regulatory and compliance frameworks (e.g., ISO 27001, NIST, GDPR). Our benefits Boots Retirement Savings Plan Discretionary annual bonus Generous employee discounts Enhanced maternity / paternity / adoption leave pay and gift card for anyone expecting or adopting a More ❯

skills to effectively convey security concepts to technical and non-technical stakeholders. Customer interfacing skills / experience desirable Knowledge and understanding of relevant legal and regulatory requirements, such as GDPR, Sarbanes-Oxley Act (SOX), TISAX, Payment Card Industry / Data Security Standard. Knowledge of common information security management frameworks, such as ISO / IEC 27001, ITIL, and COBIT. Proficiency More ❯

to work effectively in fast-paced, multi-client environments, maintaining professionalism, flexibility, and a delivery mindset. Desired skills Familiarity with UK regulatory frameworks (NIS / NIS2, Ofgem CAF, ECAF, GDPR / DPA18, ISO 27001, or Cyber Essentials Plus). Understanding secure architecture principles, including zero trust, defence-in-depth, and secure-by-design approaches. Exposure to DevSecOps practices, security tooling More ❯

employment status. If you are utilising a work visa this must allow you to work in the UK unrestricted for at least the next 5 years. In accordance with GDPR by applying you give Profile 29 consent to use your data for recruitment purposes only (details of Profile 29s privacy policy can be found at: profile-29 .com / More ❯

employment status. If you are utilising a work visa this must allow you to work in the UK unrestricted for at least the next 5 years. In accordance with GDPR by applying you give Profile 29 consent to use your data for recruitment purposes only (details of Profile 29s privacy policy can be found at: profile-29 .com / More ❯

Smart Energy Code (SEC), Network and Information Systems Directive (NIS), National Cyber Security Centre (NCSC) Cyber Assessment Framework (CAF), ISA / IEC 62443, ISO / IEC 27001 / 27002, GDPR, Cloud Security Alliance (CSA) Star framework, SOC2 Type 2 audits, Information Technology Infrastructure Library (ITIL), Control Objectives for Information and Related Technologies (CoBIT), etc. Proficient in at least one or More ❯

incident response, disaster recovery, and business continuity planning. Oversee and guide client security teams in implementing and managing security controls. Assist clients with compliance requirements related to various regulations (GDPR, CCPA, HIPAA, PCI DSS, etc.) and standards (e.g., ISO 27001, SOC 2). Manage security risk committees to support client cyber risk management practices. Track and manage remediation of security More ❯

MITRE. Proven experience with policy interpretation and security implementation in real-world projects. Preferred Skills Certifications such as CISSP, CCSP, CEH, Microsoft Azure / AWS Security. Working knowledge of GDPR, HIPAA, PCI-DSS. Familiarity with development in .NET, Java, Python, PowerShell, or Bash. Knowledge of tools like SIEM, SOAR, IDS, WAF, vulnerability management platforms. Experience with UI, API, microservices security More ❯

MITRE. Proven experience with policy interpretation and security implementation in real-world projects. Preferred Skills Certifications such as CISSP, CCSP, CEH, Microsoft Azure / AWS Security. Working knowledge of GDPR, HIPAA, PCI-DSS. Familiarity with development in .NET, Java, Python, PowerShell, or Bash. Knowledge of tools like SIEM, SOAR, IDS, WAF, vulnerability management platforms. Experience with UI, API, microservices security More ❯

CISM, CISA, or equivalent. Experience: 10+ years of information security experience. Financial / Fintech services / payments desirable. Deep knowledge of security frameworks (PCI, ISO 27001, NIST) and regulations (GDPR, CCPA). Experience with PCI DSS compliance and implementation. Proven success in managing external auditors to achieve positive outcomes. Expert in information security with strong communication and stakeholder management skills. More ❯

Smart Energy Code (SEC), Network and Information Systems Directive (NIS), National Cyber Security Centre (NCSC) Cyber Assessment Framework (CAF), ISA / IEC 62443, ISO / IEC 27001 / 27002, GDPR, Cloud Security Alliance (CSA) Star framework, SOC2 Type 2 audits, Information Technology Infrastructure Library (ITIL), Control Objectives for Information and Related Technologies (CoBIT), etc. . click apply for full job More ❯

If you need support in completing the application or if you require a different format of this document, please get in touch with at UKI.recruitment@tcs.com or call TCS London Office number 02031552100 with the subject line: “Application Support Request More ❯

skills & knowledge: Broad knowledge of cyber security concepts including cryptography, authentication and authorization, access control, secure architectures, threat modeling, vulnerabilities and software security. Strong knowledge of regulatory requirements (e.g. GDPR, ISO27001, PCI-DSS) and experience in regulatory reporting. 3-5 years of experience in GRC, risk management, or compliance. A bachelor’s degree in computer science, Cyber Security or similar More ❯

monitoring tools for real-time threat detection. Cloud Security Assessments & Compliance Conduct cloud security assessments, penetration testing, and risk analysis . Ensure compliance with ISO 27001, NIST, CIS Benchmarks, GDPR , and other security standards. Collaborate with DevOps teams to integrate security into CI / CD pipelines. Security Automation & Infrastructure as Code (IaC) Automate security policies and compliance enforcement using Python More ❯

Management tools, data governance software, and data modeling. Subject Matter Expert in key Data Protection regulations (General Data Protection Regulation (GDPR), Health Insurance Portability and Accountability Act (HIPAA), California Consumer Privacy Act (CCPA), Digital Operational Resilience Act (DORA)) and industry standards and best practices. Awareness of emerging trends in Data More ❯

data privacy inquiries and ensure contractual and regulatory obligations are met. 2. Privacy Governance & Compliance Develop, implement, and maintain a comprehensive privacy framework to support compliance with UK GDPR, POPIA, and other applicable global regulations. Oversee the completion and management of Data Protection Impact Assessments (DPIAs), Due Diligence assessments, and Records of Processing Activities (ROPAs). Manage … Business, or a related field. 5+ years of experience in data privacy, information security, or data protection. Strong knowledge of global data protection regulations (e.g., GDPR, CCPA, HIPAA). Familiarity with privacy technologies like OneTrust, TrustArc, or similar tools. Strong understanding of privacy-by-design and default principles. Experience in incident management and breach response. Excellent … skills. Responsible for providing support and guidance to Data Privacy team. Driving several Data Privacy and Protection projects consecutively. In depth knowledge of relevant legislation including GDPR, privacy and information security industry standards and best practice and practical experience of their implementation in a business context Relevant professional / project management qualification is desirable Self-starter, able More ❯

data privacy inquiries and ensure contractual and regulatory obligations are met. 2. Privacy Governance & Compliance Develop, implement, and maintain a comprehensive privacy framework to support compliance with UK GDPR, POPIA, and other applicable global regulations. Oversee the completion and management of Data Protection Impact Assessments (DPIAs), Due Diligence assessments, and Records of Processing Activities (ROPAs). Manage … Business, or a related field. 5+ years of experience in data privacy, information security, or data protection. Strong knowledge of global data protection regulations (e.g., GDPR, CCPA, HIPAA). Familiarity with privacy technologies like OneTrust, TrustArc, or similar tools. Strong understanding of privacy-by-design and default principles. Experience in incident management and breach response. Excellent … skills. Responsible for providing support and guidance to Data Privacy team. Driving several Data Privacy and Protection projects consecutively. In depth knowledge of relevant legislation including GDPR, privacy and information security industry standards and best practice and practical experience of their implementation in a business context Relevant professional / project management qualification is desirable Self-starter, able More ❯

including policies, standards and procedures, prioritisation CAFM data (Assets, Contracts and Planned Maintenance) Work closely with the global team and ensure compliance with relevant laws and regulations, including GDPR and the UK Data Protection Act, and regularly report on compliance to senior management. Work closely with the key business leaders within the organisation around data quality More ❯

AWS Glue Familiarity with CI / CD , version control (Git), and DevOps practices Knowledge of cloud platforms (Azure, AWS, or GCP) Basic understanding of data governance , security, and GDPR compliance Qualifications : Bachelor’s or Master’s degree in Computer Science, Information Systems, Engineering, or a related field 3+ years of hands-on experience in data engineering roles Strong More ❯