Data & Risk Officer - (2037-DRO)

Our client in the investment sector is seeking to recruit a dynamic Data & Risk Officer who will report to the Head of Legal and Regulatory Affairs.

Main Responsibilities:

DATA

• Devise data management procedures witihin the company and provide advice and instructions on how to conduct Data Protection Impact Assessments (DPIAs).
• Provide support for ensuring appropriate Data Protection/GDPR arrangements are in place and relevant legislation is compiled with.
• Maintaining records of all data processing activities conducted by the company.
• Take ownership of GDPR Requirements, assessing and implementing improvements in current practice across the business.

RISK

• Develop a risk management strategy to reinforce a culture of risk awareness, mitigation and management at all levels in the organisation.
• Define policies and process for risk processes.
• Monitor and maintain the company risk register and draft a business continuity plan.
• Identify risk, prepare and interpret reports and formulate risk reduction and performance-enhancing options.
• Ensure regular interactions with the company internal audit and other control functions.
• Conduct an annual risk assessment ensuring that remedial action is taken on any areas that need improvement.
• Escalate the most significant risks to the business to the board of directors; ensure business heads understand the risks that might affect their departments; ensure individuals understand their own accountability for individual risks.
• Maintaining records of insurance policies and claims.
• And any other related duties which may be required by the Head of Legal and Regulatory affairs.

Profile:

• Legal qualification (LLB or LLM) from a reputable/recognised institution.
• At least 5 years' experience within a regulated, legal, risk, compliance or law enforcement environment ideally within financial services.
• Good spoken and written communication skiills.
• Strong analytical skills and clear thought process abilities.
• Ability to interpret complex regulatory documents and communicate clearly.
• Excellent organisation and time management skills.
• Sound understanding of risk management and of data protection principles.
• Previous experience in data protection and risk position.