Data Protection & Information Security Manager

60000.00 - 65000.00 GBP Annual
28 Mar 2024
25 Apr 2024
Job Type
Data Protection
Employer Sector
Technology, IT & Telecoms
Contract Type
Full Time

Data Protection & Information Security Manager

As a purpose–driven organisation, we're all about the 'why'. Babington is committed to developing better futures: for individuals, organisations, and society. For us that means developing skills and creating opportunity for individuals and organisations to perform at their very best.

We are looking for an Data Protection & Information Security Manager who can join our Business Enablement department and work at a fast pace, overseeing all data protection and information security governance.

If you have knowledge and experience with Data Protection & Information Security and the determination to be part of our journey of Developing Better Futures, then we want to hear from you!

Summary of role

You will be responsible for the safeguarding of personal and sensitive information handled by Babington. Devising, Implementing and Managing an Information Security Management System (ISMS) across the company, along with conducting the duties of the Data Protection Officer for the business.

Brief summary of principle accountabilities

  • Develop and maintain comprehensive Data Protection and Information Security Policies, Procedures, and guidelines.
  • Ensure a robust and compliant strategy is in place to manage physical security – CCTV, Access Control
  • Introduction of process, policy, and procedures to minimise unstructured data exposure risks.
  • Ensure a robust and compliant strategy is developed and implemented to manage Data Retention and Records Management throughout the business.
  • Monitor changes in legislation and accreditation standards that affect information security and data protection and recommend any relevant change requirements to the organisation's policies, procedures, and ways of working.
  • Lead on the management and investigation of Data Breaches, ensuring any lessons learnt are feedback to the appropriate Senior Executive Board member(s). Advise on, and monitor the business's Data Protection Impact Assessments (DPIAs)
  • Develop and deliver training programs to raise awareness about data protection and information security among employees.
  • Foster a culture of security consciousness throughout the organisation.
  • Collaborate with procurement to ensure contractual agreements include appropriate security provisions.
  • Review and where deemed appropriate, implement/ assist in the introduction of security applications and features as required.

Brief person specification

Qualifications (E – Essential; D – Desirable)

  • Grade A–C GCSE in English and Maths or equivalent (E)
  • ISO27001 Lead Implementer (D)
  • ISO27001 Lead Auditor (D)
  • Certified Data Protection Officer (CDPO) (E)
  • Certified Information Privacy Professional (CIPPE/E) (D)

Skills and experience

  • Experience in engaging with a range of stakeholders to deliver advice and guidance and raise awareness
  • Experience in managing data protection processes, including responding to Subject Access Requests, Right to Erasure, Incident Management and Breach Reporting
  • Proven experience dealing with outsourced third–party suppliers
  • Significant demonstrable experience in a similar position and size company
  • Ability to analyse key data, management information, systems and processes
  • Ability to deliver to agreed targets.
  • Ability to establish and maintain rapport with a wide variety of people.
  • Ability to manage critical priorities effectively to ensure deadlines are met.

Babington Benefits

  • Babington Engage
  • Bupa Healthcare – Cash plan
  • 25 Days annual leave plus Bank holidays
  • Additional annual leave purchase scheme
  • Employer Pension contribution

We'll be conducting interviews on a continuous basis and reserve the right to take down the advert when we have found the right candidate.

Babington is committed to safeguarding and promoting the welfare of all learners and employees associated with our business. We, therefore, expect all employees to share this commitment and demonstrate our values within all aspects of their work. All offers of employment are subject to relevant vetting checks, including successful completion of an appropriate check through the Disclosure & Barring Service.

We are innovators in Education so why not apply now and join us in Developing Better Futures!