Privacy And Information Management Incident And Control Manager
CurrentResponsible for providing subject matter policy advice and guidance to the business. A particular focus on EU GDPR, Data Protection Act, Privacy & Electronic Communication Regulations, e-Privacy Directive, international data protection guidance and associated matters Provide support for ensuring that the Information Management and Data Privacy Minimum Standards remain current and in line with all other Information policies. Support leadership in maintaining, developing and producing privacy metrics. Supporting the development, implementation and continuous improvement of the Risk and Controls framework across DLG Identifying control weaknesses and influence process owners to implement agreed changes in a timely and effective manner where needed Designing and delivering suitable control management reporting which enables the Privacy team to understand the Privacy risk profile across the group. Highlighting inconsistencies, gaps and plans for remediation Develop best practice processes and procedures across DLG to optimize adherence to group minimum standards; working with other areas of the business to identify improvement initiatives and supporting these to completion. Conduct face to face privacy briefings with front line areas to increase knowledge and awareness of Data Privacy and the requirements of the Data Protection Act 2018. Work with and support the Data Protection Officer in managing the groups privacy risk domain. Working knowledge of the Data Protection Act 2018; qualifications include Pc. DP Analyse and interpret data and qualitative information to identify and assess the inherent and residual risk exposure. Develop and disseminate management information to deliver accurate and meaningful risk reporting.