Corporate Services Risk And Data Protection Manager

Data Protection & Risk and Control Manager

Howden Group Services (HGS) is a central division of the Howden Group that provides a wide range of central services to the organisation worldwide – these services include:

• Information Technology (IT)
• Human Resources (HR)
• Finance
• Corporate Services
• Company Secretarial
• Risk & Compliance
• Data Management & AI

Corporate Services is a function sitting within HGS, providing services such as Facilities Management, Procurement, Business Continuity and Health & Safety.

Given the current growth of the business, and its divisions/functions, as well as its ongoing journey to improve its Risk & Control maturity, we are looking for a Data Protection & Risk and Controls Manager to join an exciting a dynamic company to help support and drive forward our Risk & Compliance agenda.

The role will be responsible & accountable for Data Protection compliance for the HGS division, it will sit within and report to the Corporate Services function and will support that function with developing and embedding its Risk & Control framework.

The role holder will be responsible for managing general Data Protection & Risk matters in line with the Group's strategy and in accordance with applicable policies and procedures.

The role holder will be required to liaise regularly with Risk & Compliance leads across the organisation as well as updating the Group Risk and Group DPO functions.

The role holder will assist with more general BAU matters relating to risk management and data protection compliance such as new projects, contract reviews, DPIA's, & DSAR's and support the Business and Corporate Services teams as they embed their control framework.

The role requires a confident, self-starter, who can engage and interact well with our colleagues from across the organisation, and who can apply a risk-based and proportionate approach to these areas of Risk & Compliance.

Key responsibilities include:

• Data Protection
• Manage Data Protection compliance generally across all of HGS, with support and direction from the Group DP Office.
• Establish processes to ensure adequate oversight of compliance posture.
• Feed into the group reporting structure and attend key committees.
• Help to continually raise awareness of risk management, data protection, and support training staff and internal audits.
• Assist with BAU matters such as risk assessments, ROPA development, contract reviews, DSAR's, vendor due diligence, breach management, ICO registrations, data security, AI, Data Analytics & develop the current 'champions' network.
• Assist with change activities such as the roll-out of central data processing platforms particularly in relation to Group IT, Group Data and Group HR.
• Collaborate with other business Data Protection SME's to share best practice and support the wider Howden group with its strategic initiatives.
• Other activities as necessary.
• Risk & Controls
• Lead and assist the Corporate Services function with assessing its compliance with Group Controls & lead and guide on remediation.
• Work & collaborate with the Group Risk function to identify, develop & embed an appropriate ERM control framework.
• Work closely with the Group Risk Team and the Business and Corporate Services leadership teams to develop an Internal Control Framework for each of the core functions.

Skills and abilities needed to perform role include:

• Ability to interact well and influence others, especially in a highly agile environment.
• Ability to provide risk-based advice.
• Leadership skills achieving stated objectives involving a diverse set of stakeholders and managing varied projects.
• Negotiation skills to interface successfully with key internal and external stakeholder.
• Communication skills to speak with a wide-ranging audience
• Self-starter with ability to gain required knowledge in dynamic environments.

Knowledge and Experience:

• Experience within a Data Protection compliance field, to include supporting a data protection program within a complex and enterprise-wide organisation.
• Experience developing and managing an Internal Controls framework, within a complex and enterprise-wide organisation
• Detailed knowledge of UK and European data protection law, and knowledge of data protection law in other jurisdictions would be advantageous.
• Knowledge of SOX would be advantageous.
• Insurance or Financial Services experience preferred.

What Do We Offer In Return?

A career that you define. At Howden, we value diversity – there is no one Howden type. Instead, we're looking for individuals who share the same values as us:

• Our successes have all come from someone brave enough to try something new
• We support each other in the small everyday moments and the bigger challenges
• We are determined to make a positive difference at work and beyond

Reasonable Adjustments

We're committed to providing reasonable accommodations at Howden to ensure that our positions align well with your needs. Besides the usual adjustments such as software, IT, and office setups, we can also accommodate other changes such as flexible hours* or hybrid working*.

If you're excited by this role but have some doubts about whether it's the right fit for you, send us your application – if your profile fits the role's criteria, we will be in touch to assist in helping to get you set up with any reasonable adjustments you may require.

*Not all positions can accommodate changes to working hours or locations. Reach out to your Recruitment Partner if you want to know more.

Permanent