Job Description

You will provide thought leadership on risk and control in a fast-paced technology environment and provide insight to the executive team on the effective running of the business.

• Provide leadership onour approach to governance, risk, and compliance
• Act as Data Protection Officer (DPO) for UK GDPR purposes, providing oversight on all data protection policies, processes, and controls
• Work with subject matter experts within and external to define and implement a scalable risk management process
• Prepare assurance dashboards, reports, and recommendations for the executive team
• Provide pragmatic guidance on effective policy, process, and controls suitable for a rapid growth business
• Maintain up-to-date knowledge of data protection law and practices
• To support programmes of work from inception to ensure that data protection is addressed
• Development of financial and operational processes, identification of risks inherent in the processes, walkthrough, and testing of controls
• Support design of effective controls to mitigate risks in operational processes
• Perform periodic assessments on the Internal Control Plan, Internal Control Framework, or other emergent issues
• Implementation and follow-up of internal control management action plans to mitigate risks and address findings from audits and internal testing
• Ensure that management across the Group understand the Internal Control Framework and their responsibilities within it
• Work closely with key stakeholders across company to ensure an agreed and coordinated approach
• Assist the Head of Quality in developing the Internal Control Plan and the monthly internal control report.

Required Knowledge, Skills, and Abilities

• Degree or equivalent relevant qualification
• A strong background in process risk and controls, data protection, ideally gained in a fast-paced technology environment
• Experience with data protection and information security requirements, ideally gained through experience acting as a DPO
• Familiarity with internal control frameworks such as SOX and COSO
• Thorough knowledge and understanding of all relevant legislation and regulations appropriate for the role
• Technical knowledge and experience of pragmatic control design, implementation, and testing
• Demonstrable experience of working on multiple projects, managing your time effectively to deliver high quality work to tight deadlines
• Strong analytical, problem-solving, and data-driven reporting skills including the creation of dashboards
• Excellent communication skills with the ability to build effective working relationships throughout the business and with external stakeholders