KEY RESPONSIBILITIES:
- Inform and advise on all data protection matters and escalate data privacy issues to Data Protection Leader
- Monitor compliance to GDPR and to Sisk’s Privacy Governance Framework
- Conduct data protection and data privacy reviews within the Business
- Lead the Data Protection Impact Assessment process and provide advice and support to the Business in completing DPIA’s
- Support Data Protection Champions across Sisk
- Engagement in all aspects of the Data Subject Access Requests
- Assist in the development, revision and implementation of DP policies and procedures as required with input from key stakeholders across the Company.
- Provide practical and actionable advice on the design and continuous improvement of policies, operational processes, risk assessments, controls, monitoring and governance with input from key stakeholders across the Sisk Group.
- Partner and align with cross functional teams, using privacy subject matter expertise to support and embed data ethics and privacy risk management throughout all functional business programs.
- Provide education, training and awareness to members of staff on the requirements of data privacy legislation and the care and handling of personal data in order to ensure that the relevant business functions are made aware of their legal responsibilities and how to comply with them
- Where data is transferred beyond national borders, ensure appropriate transfer mechanisms are in place to allow the safe processing of personal data
REQUIREMENTS:
Core skill set:
- Experience of wider regulatory pressures with IAPP certification or equivalent recognized professional standard as a data protection professional. The candidate should possess in depth knowledge of General Data Protection Regulation, European Data Protection Board Guidance, Case law as well as other relevant privacy laws, regulations, and industry guidelines.
- Demonstrated expertise in privacy and data issues including engaging with and responding to requests from data subjects and data protection authorities. Experience within the construction industry is desirable but not essential if a relevant data protection qualification is held.
- You will have familiarity with technology and IT security.
- Demonstrated strong analytical skills, including the ability to analyse, assess and advise on risk and impact from a European privacy and data protection perspective.
- Ability to determine possible options for privacy handling of personal data, often in the absence of previous regulatory interpretation or operational examples, being comfortable with ambiguity and frequent change.
- Demonstrated ability to provide pragmatic and actionable advice to business in a fast paced and dynamic environment.
- Experience advising on multiple complex projects in parallel, including prioritizing and working alongside cross-functional teams where you have considered multiple, occasionally differing, commercial requirements.
- Excellent written, oral communication and advocacy skills, with demonstrable experience of prioritising effectively, managing diverse and multiple stakeholders.
- Ability to assess legal, practical and business risks independently, quickly and accurately in a fast-paced environment and make sound judgments.
- Attention to detail and strong drafting ability that can be used in a commercial setting with business stakeholders.