Location: Hybrid - 3 days office based (Andover) and 2 days home based, with flexibility to attend the office when required, and travel to other Pure locations. Hours: 37.5 hours per week The Opportunity We're the Pure Group, and we're looking for a genuine Data Protection Officer - not a box-ticking compliance manager. This is a senior, high-impact role with the independence, visibility, and authority to shape how data protection operates across our Group. You'll work closely with senior leadership, challenge constructively, and help embed practical, commercially focused privacy thinking into a fast-moving regulated business. This is an opportunity to lead from the front, influence decision-making at every level, and build a data protection culture that supports both our customers and our continued growth. About Us The Pure Group was founded to disrupt the market - and we've done exactly that. Today, we're the UK's leading provider of later-life and end-of-life planning services, including funeral plans, insurance products, and cremation services. We are FCA regulated, customer-focused, and proud to have earned more 5-star Trustpilot reviews than any competitor in our sector. Our values shape how we work every day - Care Deeply, Take Accountability, Never Settle. The Role As our statutory Data Protection Officer, you'll lead and develop the Group's data protection framework, ensuring it remains robust, proportionate, and fit for a growing regulated business. You will: Act as the Group's statutory DPO and lead UK GDPR compliance Provide independent oversight and constructive challenge across the business Develop and deliver the Group's data protection strategy and roadmap Maintain effective policies, controls, governance frameworks, and risk management processes Advise on FCA-related regulatory considerations, including Consumer Duty, ICOBS, and FPCOB Lead data incidents, breach management, complaints, and ICO engagement Advise on privacy considerations relating to AI, marketing activity, and PECR compliance Manage and oversee Subject Access Requests and wider data rights requests Partner with teams across Marketing, Customer Experience, Compliance, IT, and Operations Deliver engaging training and awareness initiatives across the workforce Build strong relationships across the Group and maintain a visible, approachable presence What Success Looks Like Data protection embedded into day-to-day business operations Clear, effective, and proportionate governance frameworks A workforce that understands its data protection responsibilities Trusted, credible advice that enables good decision-making Strong stakeholder relationships across all levels of the business High visibility across the business - every knows the DPO A pragmatic approach that balances compliance with commercial reality About You Proven experience operating as a Data Protection Officer within a regulated environment Strong working knowledge of UK GDPR and wider privacy legislation Proven track record advising on FCA-regulated activities Good understanding of ICO guidance relating to AI and data protectionStrong knowledge of PECR and data rights management Proven track record - building and improving data protection frameworks and controls Confidence influencing and challenging senior stakeholders Ability to operate effectively in a fast paced, evolving business Proven track record - delivering training and improving organisational awareness And just as importantly, you are: Emotionally intelligent, you influence, not just instruct Credible and resilient, you hold your ground when it matters Pragmatic, balancing compliance with commercial reality A strong communicator, effective from operational teams to Board level You are resilient and thrive under pressure and meet deadlines. What We Offer Life Assurance 4 x basic salary Company or SMART pension Family-friendly benefits Employee Assistance Programme (24/7 support) Discounted gym membership & Cycle to Work scheme Free on site parking Please note, we may need to undertake a vetting process through the Disclosure and Barring Service (DBS) or Disclosure Scotland on new employees, dependent on requirement. All gaps in your CV must be disclosed. We reserve the right to close this advertisement early if we receive a high volume of suitable applications. Equal Opportunity Employer The Pure Group strives to be an equal opportunity employer. We welcome applications from all backgrounds - regardless of age, gender, ethnicity, sexual orientation, disability, religion or belief. We celebrate difference because we believe it enriches our work and strengthens the way we support one another. If you need any additional support or adjustments during the recruitment process, please let us know.
23/05/2026
Full time
Location: Hybrid - 3 days office based (Andover) and 2 days home based, with flexibility to attend the office when required, and travel to other Pure locations. Hours: 37.5 hours per week The Opportunity We're the Pure Group, and we're looking for a genuine Data Protection Officer - not a box-ticking compliance manager. This is a senior, high-impact role with the independence, visibility, and authority to shape how data protection operates across our Group. You'll work closely with senior leadership, challenge constructively, and help embed practical, commercially focused privacy thinking into a fast-moving regulated business. This is an opportunity to lead from the front, influence decision-making at every level, and build a data protection culture that supports both our customers and our continued growth. About Us The Pure Group was founded to disrupt the market - and we've done exactly that. Today, we're the UK's leading provider of later-life and end-of-life planning services, including funeral plans, insurance products, and cremation services. We are FCA regulated, customer-focused, and proud to have earned more 5-star Trustpilot reviews than any competitor in our sector. Our values shape how we work every day - Care Deeply, Take Accountability, Never Settle. The Role As our statutory Data Protection Officer, you'll lead and develop the Group's data protection framework, ensuring it remains robust, proportionate, and fit for a growing regulated business. You will: Act as the Group's statutory DPO and lead UK GDPR compliance Provide independent oversight and constructive challenge across the business Develop and deliver the Group's data protection strategy and roadmap Maintain effective policies, controls, governance frameworks, and risk management processes Advise on FCA-related regulatory considerations, including Consumer Duty, ICOBS, and FPCOB Lead data incidents, breach management, complaints, and ICO engagement Advise on privacy considerations relating to AI, marketing activity, and PECR compliance Manage and oversee Subject Access Requests and wider data rights requests Partner with teams across Marketing, Customer Experience, Compliance, IT, and Operations Deliver engaging training and awareness initiatives across the workforce Build strong relationships across the Group and maintain a visible, approachable presence What Success Looks Like Data protection embedded into day-to-day business operations Clear, effective, and proportionate governance frameworks A workforce that understands its data protection responsibilities Trusted, credible advice that enables good decision-making Strong stakeholder relationships across all levels of the business High visibility across the business - every knows the DPO A pragmatic approach that balances compliance with commercial reality About You Proven experience operating as a Data Protection Officer within a regulated environment Strong working knowledge of UK GDPR and wider privacy legislation Proven track record advising on FCA-regulated activities Good understanding of ICO guidance relating to AI and data protectionStrong knowledge of PECR and data rights management Proven track record - building and improving data protection frameworks and controls Confidence influencing and challenging senior stakeholders Ability to operate effectively in a fast paced, evolving business Proven track record - delivering training and improving organisational awareness And just as importantly, you are: Emotionally intelligent, you influence, not just instruct Credible and resilient, you hold your ground when it matters Pragmatic, balancing compliance with commercial reality A strong communicator, effective from operational teams to Board level You are resilient and thrive under pressure and meet deadlines. What We Offer Life Assurance 4 x basic salary Company or SMART pension Family-friendly benefits Employee Assistance Programme (24/7 support) Discounted gym membership & Cycle to Work scheme Free on site parking Please note, we may need to undertake a vetting process through the Disclosure and Barring Service (DBS) or Disclosure Scotland on new employees, dependent on requirement. All gaps in your CV must be disclosed. We reserve the right to close this advertisement early if we receive a high volume of suitable applications. Equal Opportunity Employer The Pure Group strives to be an equal opportunity employer. We welcome applications from all backgrounds - regardless of age, gender, ethnicity, sexual orientation, disability, religion or belief. We celebrate difference because we believe it enriches our work and strengthens the way we support one another. If you need any additional support or adjustments during the recruitment process, please let us know.
We're 1st Central, a market-leading insurance company utilising smart data and technology at pace. Rapid growth has been based on giving our 1.4 million customers exactly what they want: great value insurance with an excellent service. And that's the same for our colleagues too; we won Insurance Employer of the Year at the British Insurance Awards 2024 and our Glassdoor score is pretty mega too! At 1st Central, data sits at the heart of everything we do, so protecting it is both a legal obligation and a core responsibility. We're looking for a Group Head of Data Protection (DPO) who's passionate about privacy, someone who's curious, commercially aware, and ready to shape the future of data protection across our Group. You'll be our senior voice on all things data protection - advising the Executive, Boards and senior leaders, and setting the strategic direction for privacy across the Group. You'll lead a high performing Privacy team and make sure we're not just compliant, but confident in how we manage and protect data. We're looking for someone who has: Significant experience as a DPO or from a similar compliance role Expert knowledge of data privacy legislation including GDPR Expert knowledge of cybersecurity risks and other information security standards, such as ISO27001 The ability to make good judgements regarding data privacy risks and to prioritise resources and activity around managing those risks What's involved: To be responsible for the development of a high performing Privacy team creating a clear vision whilst building strong relationships inside and outside the Group, in order to collaborate with and influence the executive and senior management across the Group and externally with corporate partners, including data subjects, regulators, suppliers and professional bodies To have an excellent understanding of the key regulatory and statutory rules, regulations, principles and codes of practice incumbent upon Group companies and the jurisdictions in which they are domiciled in so far as they are relevant to the delivery of appropriate Data Protection compliance requirements, and to keep such awareness up to date To define with the Executive, Boards and other senior stakeholders, and implement the Group's Data Protection Strategy To define, scope, gain Audit Committee approval for, and deliver the Group's data privacy programme To report to the Group's Risk Committees on the compliance position highlighting key risks, incidents and matters requiring decisions by the relevant Board or senior management To act as Data Protection Officer for all Group entities where the role is required, and be owner of the Group Data Protection Policy To take overall responsibility for the oversight of Data Protection compliance and related Regulatory matters across the Group Inform and advise Senior Management on data protection laws and policies Monitor compliance with data protection laws and policies, and report on this to the Executive, SICL Management Committee, FCIM Management Committee and Group Audit committees. Oversee the maintenance of records required to demonstrate data protection compliance Supervise the Privacy Team's completion of data protection impact assessments and develop and execute relevant project plans Manage a program of awareness-raising and training to deliver compliance and to foster a data privacy culture within the company Review Data Protection clauses in client terms and supplier contracts Define, implement, and lead a data incident response and data breach notification procedure as well as provide incident management response where applicable Be the contact point with and co-operate with the relevant Data Protection Authorities and to data subjects when exercising their individual data rights as well as supervise and advise on the response to such requests Being the focal point for all activity relating to data protection Promote a culture of awareness of data security throughout the company Comply with the requirements, and act in accordance with, the Group Code of Conduct and Fitness and Propriety policies at all times Responsibility for maintaining department risk registers, providing evidence and commentary for controls, updates for Mitigation Actions and maintaining control matrices and attestations. Also, to ensure that your employees are aware of their responsibility to identify and report risk. Ensure compliance with Company Policies, Values and guidelines and other relevant standards/ regulations at all times, including compliance with the Senior Managers Certification Regime (SMCR) Conduct Rules Job-specific Competencies Experience & Knowledge Knowledge of FCA requirements (including individual responsibilities in relation to Consumer Duty) Significant experience as a DPO or from a similar compliance role Proven track record in leading data protection issues at a senior level Project management experience Experience of interfacing with data protection regulators Experience in designing and implementing a data protection strategy Experience leading a department Educated to degree level IAPP CIPP/E or CIPM or equivalent data privacy qualification Qualified Lawyer Very familiar with UK, Gibraltarian, Guernsey and European data protection laws and practices, including (but not limited to) the Data Protection Act 2018, Privacy & Electronic Communications Regulations 2003 and the General Data Protection Regulation A knowledge of best practice in information security, risk management, legal or audit Expert knowledge of data privacy legislation including GDPR Expert knowledge of cybersecurity risks and other information security standards, such as ISO27001 Skills Ability to make good judgements regarding data privacy risks and to prioritise resources and activity around managing those risks Excellent time management and organisation skills Ability to conduct the role independently and with integrity Ability to plan, organise and prioritise tasks and projects Strong analytical skills Extremely strong communication, influencing and stakeholder management skills Behaviours Proven ability to establish and maintain a high degree of confidentiality, respect, trust and credibility at all levels Strong team player and proven ability to lead and manage a team Enthusiastic and positive The ability to remain calm, controlled and resilient Self motivated and enthusiastic An organised and proactive approach Strives to drive business improvements to contribute to the success of the business If you're ready to lead, influence and make a real impact, we'd love to hear from you. What can we do for you? People first. Always. We're passionate about our colleagues and know the best people deserve an extraordinary working environment. We owe it to them so that's what we offer. Our workplaces are energetic, inspirational, supportive. To get a taste of the advantages you'll enjoy, take a look at all our perks in full here. Intrigued? Our Talent team can tell you everything you need to know about what we want and what we're offering, so feel free to get in touch.
22/05/2026
Full time
We're 1st Central, a market-leading insurance company utilising smart data and technology at pace. Rapid growth has been based on giving our 1.4 million customers exactly what they want: great value insurance with an excellent service. And that's the same for our colleagues too; we won Insurance Employer of the Year at the British Insurance Awards 2024 and our Glassdoor score is pretty mega too! At 1st Central, data sits at the heart of everything we do, so protecting it is both a legal obligation and a core responsibility. We're looking for a Group Head of Data Protection (DPO) who's passionate about privacy, someone who's curious, commercially aware, and ready to shape the future of data protection across our Group. You'll be our senior voice on all things data protection - advising the Executive, Boards and senior leaders, and setting the strategic direction for privacy across the Group. You'll lead a high performing Privacy team and make sure we're not just compliant, but confident in how we manage and protect data. We're looking for someone who has: Significant experience as a DPO or from a similar compliance role Expert knowledge of data privacy legislation including GDPR Expert knowledge of cybersecurity risks and other information security standards, such as ISO27001 The ability to make good judgements regarding data privacy risks and to prioritise resources and activity around managing those risks What's involved: To be responsible for the development of a high performing Privacy team creating a clear vision whilst building strong relationships inside and outside the Group, in order to collaborate with and influence the executive and senior management across the Group and externally with corporate partners, including data subjects, regulators, suppliers and professional bodies To have an excellent understanding of the key regulatory and statutory rules, regulations, principles and codes of practice incumbent upon Group companies and the jurisdictions in which they are domiciled in so far as they are relevant to the delivery of appropriate Data Protection compliance requirements, and to keep such awareness up to date To define with the Executive, Boards and other senior stakeholders, and implement the Group's Data Protection Strategy To define, scope, gain Audit Committee approval for, and deliver the Group's data privacy programme To report to the Group's Risk Committees on the compliance position highlighting key risks, incidents and matters requiring decisions by the relevant Board or senior management To act as Data Protection Officer for all Group entities where the role is required, and be owner of the Group Data Protection Policy To take overall responsibility for the oversight of Data Protection compliance and related Regulatory matters across the Group Inform and advise Senior Management on data protection laws and policies Monitor compliance with data protection laws and policies, and report on this to the Executive, SICL Management Committee, FCIM Management Committee and Group Audit committees. Oversee the maintenance of records required to demonstrate data protection compliance Supervise the Privacy Team's completion of data protection impact assessments and develop and execute relevant project plans Manage a program of awareness-raising and training to deliver compliance and to foster a data privacy culture within the company Review Data Protection clauses in client terms and supplier contracts Define, implement, and lead a data incident response and data breach notification procedure as well as provide incident management response where applicable Be the contact point with and co-operate with the relevant Data Protection Authorities and to data subjects when exercising their individual data rights as well as supervise and advise on the response to such requests Being the focal point for all activity relating to data protection Promote a culture of awareness of data security throughout the company Comply with the requirements, and act in accordance with, the Group Code of Conduct and Fitness and Propriety policies at all times Responsibility for maintaining department risk registers, providing evidence and commentary for controls, updates for Mitigation Actions and maintaining control matrices and attestations. Also, to ensure that your employees are aware of their responsibility to identify and report risk. Ensure compliance with Company Policies, Values and guidelines and other relevant standards/ regulations at all times, including compliance with the Senior Managers Certification Regime (SMCR) Conduct Rules Job-specific Competencies Experience & Knowledge Knowledge of FCA requirements (including individual responsibilities in relation to Consumer Duty) Significant experience as a DPO or from a similar compliance role Proven track record in leading data protection issues at a senior level Project management experience Experience of interfacing with data protection regulators Experience in designing and implementing a data protection strategy Experience leading a department Educated to degree level IAPP CIPP/E or CIPM or equivalent data privacy qualification Qualified Lawyer Very familiar with UK, Gibraltarian, Guernsey and European data protection laws and practices, including (but not limited to) the Data Protection Act 2018, Privacy & Electronic Communications Regulations 2003 and the General Data Protection Regulation A knowledge of best practice in information security, risk management, legal or audit Expert knowledge of data privacy legislation including GDPR Expert knowledge of cybersecurity risks and other information security standards, such as ISO27001 Skills Ability to make good judgements regarding data privacy risks and to prioritise resources and activity around managing those risks Excellent time management and organisation skills Ability to conduct the role independently and with integrity Ability to plan, organise and prioritise tasks and projects Strong analytical skills Extremely strong communication, influencing and stakeholder management skills Behaviours Proven ability to establish and maintain a high degree of confidentiality, respect, trust and credibility at all levels Strong team player and proven ability to lead and manage a team Enthusiastic and positive The ability to remain calm, controlled and resilient Self motivated and enthusiastic An organised and proactive approach Strives to drive business improvements to contribute to the success of the business If you're ready to lead, influence and make a real impact, we'd love to hear from you. What can we do for you? People first. Always. We're passionate about our colleagues and know the best people deserve an extraordinary working environment. We owe it to them so that's what we offer. Our workplaces are energetic, inspirational, supportive. To get a taste of the advantages you'll enjoy, take a look at all our perks in full here. Intrigued? Our Talent team can tell you everything you need to know about what we want and what we're offering, so feel free to get in touch.
Global Data Protection Officer Location: Cambridge, UK / Macclesfield, UK / Gothenburg, SWE Competitive salary and benefits package The Global Data Protection Officer functions at an advanced level of complexity spanning data processing activities across the enterprise. The role reports to the Head of Operations and Innovation for Global Compliance and has a dotted-line into the Deputy Chief Compliance Officer to ensure direct access to both Senior Management and the Audit Committee of the Board of Directors with respect to data privacy matters. The GDPO serves as the Data Protection Officer for AZ in jurisdictions in which a DPO is a central role to privacy governance, including, but not limited to the EU, UK, Brazil, etc. The GDPO will be the central point of contact for data subjects and supervisory authorities. In addition to EU/UK data protection officer responsibilities, this role is also responsible for global horizon scanning and providing advice and oversight based upon strong subject matter expertise and guidance across the elements of an effective compliance program with respect to data privacy. The GDPO works closely with the rest of the Data Privacy Office and broader compliance organisation to enhance privacy risk management and compliance while embedding and fostering a privacy mindset across AZ. Typical Accountabilities Company representative for data subjects and supervisory authorities: Point of contact for supervisory authorities related to AZ data processing activities and data subjects Maintain required licenses, registrations and other local regulatory requirements to enable compliant processing and transfer of personal data within the AZ Group and among AZ partners/vendors (e.g., Binding Corporate Rules) Oversight of responses to subject access requests Consult with members of the Global Privacy Office when required on data protection impact assessments and serve as contact to authorities as required on data protection impact assessments and other privacy impact assessments Reporting of significant and/or serious breaches (whether requiring external notice or otherwise), including advice on remediation measure, related oversight and trend analysis All Deputy Data Privacy Officers will have a dotted-line to the GDPO to ensure he/she is able to effectively communicate with data subjects and cooperate with supervisory authorities as needed Partner with the Global Assurance team within Global Compliance, Internal Audit and independent auditing resources (where necessary) to monitor compliance with applicable data protection and privacy laws and broader data privacy requirements and provide assurance on effectiveness of our global compliance program with respect to data privacy risk Advisor (in consultation with Global Privacy Officer Leadership, legal, outside counsel and local resources as necessary) for members of the Privacy Office and other Global Compliance personnel in their support of the business and evolution of the global privacy program with respect to: Company policy and implementation Data protection impact assessments Ongoing monitoring and enhancing risk assurance capabilities Evolving expectations of supervisory authorities Remediation and continuous improvement activities Unique, novel or high risk business activities or projects as needed As the leader of AZ Privacy Risk and Assurance function, manage horizon scanning for key jurisdictions globally related to regulatory developments, proposed legislations, expectations of supervisory authorities and best practices (in consultation with legal, external counsel and local resources as needed) Collaborating with the members of the Privacy Office, Data Privacy Forums/DDPOs and broader Global Compliance committee, as well as key stakeholders from IT, HR, and the business, to fulfil his/her responsibilities and to foster a global privacy mindset across AZ. Education, Qualifications, Skills and Experience Essential: Legal degree or qualifications with extensive experience in privacy law and/or Data Privacy Programs. In-depth knowledge of GDPR, EU/EEA local data protection legislation, UK Privacy Act and UK GDPR, familiarity with US, China and other local data privacy regulations Significant experience and knowledge of privacy program elements and best practices/tools Substantial experience working in a multi-national and multi-regional organization in a highly regulated sector Familiarity with data processing operations in the Global Bio- pharmaceutical sector Significant experience in pharmaceuticals or a related industry; corporate governance, health care regulations, laws and standards Excellent analytical, written and oral communications skills Strong collaborative, partnering, and interpersonal skills, ability to influence across different levels and sectors of the organisation Strong experience speaking to and working with senior leaders, including Board members and executive team members Demonstrated ability to work independently High ethical standards, trustworthy, operating with absolute discretion Demonstrated ability to remain independent and objective while collaborating effectively with stakeholders Desirable In-depth knowledge of US federal and state privacy regulations and China privacy/cyber-security regulations IAPP certifications (e.g., CIPP/US, CIPT, CIPM) CIPP certification High degree of digital literacy, familiarity with use of AI, machine learning and automation in across different business applications (e.g., marketing, business services and processes, research and drug development activities) Familiarity with computer security frameworks and technologies Experience interacting with regulatory authorities, auditors, inspectors, and other third external assurance stakeholders Why AstraZeneca? At AstraZeneca we're dedicated to being a Great Place to Work. Where you are empowered to push the boundaries of science and unleash your entrepreneurial spirit. There's no better place to make a difference to medicine, patients and society. An inclusive culture that champions diversity and collaboration, and always committed to lifelong learning, growth and development. We're on an exciting journey to pioneer the future of healthcare. So, what's next? Are you already imagining yourself joining our team? Good, because we can't wait to hear from you! Where can I find out more? Our Social Media, Follow AstraZeneca on LinkedIn Follow AstraZeneca on Facebook Follow AstraZeneca on Instagram r Job open date: 09/09/2022 Job closing date: 30/09/2022
23/09/2022
Full time
Global Data Protection Officer Location: Cambridge, UK / Macclesfield, UK / Gothenburg, SWE Competitive salary and benefits package The Global Data Protection Officer functions at an advanced level of complexity spanning data processing activities across the enterprise. The role reports to the Head of Operations and Innovation for Global Compliance and has a dotted-line into the Deputy Chief Compliance Officer to ensure direct access to both Senior Management and the Audit Committee of the Board of Directors with respect to data privacy matters. The GDPO serves as the Data Protection Officer for AZ in jurisdictions in which a DPO is a central role to privacy governance, including, but not limited to the EU, UK, Brazil, etc. The GDPO will be the central point of contact for data subjects and supervisory authorities. In addition to EU/UK data protection officer responsibilities, this role is also responsible for global horizon scanning and providing advice and oversight based upon strong subject matter expertise and guidance across the elements of an effective compliance program with respect to data privacy. The GDPO works closely with the rest of the Data Privacy Office and broader compliance organisation to enhance privacy risk management and compliance while embedding and fostering a privacy mindset across AZ. Typical Accountabilities Company representative for data subjects and supervisory authorities: Point of contact for supervisory authorities related to AZ data processing activities and data subjects Maintain required licenses, registrations and other local regulatory requirements to enable compliant processing and transfer of personal data within the AZ Group and among AZ partners/vendors (e.g., Binding Corporate Rules) Oversight of responses to subject access requests Consult with members of the Global Privacy Office when required on data protection impact assessments and serve as contact to authorities as required on data protection impact assessments and other privacy impact assessments Reporting of significant and/or serious breaches (whether requiring external notice or otherwise), including advice on remediation measure, related oversight and trend analysis All Deputy Data Privacy Officers will have a dotted-line to the GDPO to ensure he/she is able to effectively communicate with data subjects and cooperate with supervisory authorities as needed Partner with the Global Assurance team within Global Compliance, Internal Audit and independent auditing resources (where necessary) to monitor compliance with applicable data protection and privacy laws and broader data privacy requirements and provide assurance on effectiveness of our global compliance program with respect to data privacy risk Advisor (in consultation with Global Privacy Officer Leadership, legal, outside counsel and local resources as necessary) for members of the Privacy Office and other Global Compliance personnel in their support of the business and evolution of the global privacy program with respect to: Company policy and implementation Data protection impact assessments Ongoing monitoring and enhancing risk assurance capabilities Evolving expectations of supervisory authorities Remediation and continuous improvement activities Unique, novel or high risk business activities or projects as needed As the leader of AZ Privacy Risk and Assurance function, manage horizon scanning for key jurisdictions globally related to regulatory developments, proposed legislations, expectations of supervisory authorities and best practices (in consultation with legal, external counsel and local resources as needed) Collaborating with the members of the Privacy Office, Data Privacy Forums/DDPOs and broader Global Compliance committee, as well as key stakeholders from IT, HR, and the business, to fulfil his/her responsibilities and to foster a global privacy mindset across AZ. Education, Qualifications, Skills and Experience Essential: Legal degree or qualifications with extensive experience in privacy law and/or Data Privacy Programs. In-depth knowledge of GDPR, EU/EEA local data protection legislation, UK Privacy Act and UK GDPR, familiarity with US, China and other local data privacy regulations Significant experience and knowledge of privacy program elements and best practices/tools Substantial experience working in a multi-national and multi-regional organization in a highly regulated sector Familiarity with data processing operations in the Global Bio- pharmaceutical sector Significant experience in pharmaceuticals or a related industry; corporate governance, health care regulations, laws and standards Excellent analytical, written and oral communications skills Strong collaborative, partnering, and interpersonal skills, ability to influence across different levels and sectors of the organisation Strong experience speaking to and working with senior leaders, including Board members and executive team members Demonstrated ability to work independently High ethical standards, trustworthy, operating with absolute discretion Demonstrated ability to remain independent and objective while collaborating effectively with stakeholders Desirable In-depth knowledge of US federal and state privacy regulations and China privacy/cyber-security regulations IAPP certifications (e.g., CIPP/US, CIPT, CIPM) CIPP certification High degree of digital literacy, familiarity with use of AI, machine learning and automation in across different business applications (e.g., marketing, business services and processes, research and drug development activities) Familiarity with computer security frameworks and technologies Experience interacting with regulatory authorities, auditors, inspectors, and other third external assurance stakeholders Why AstraZeneca? At AstraZeneca we're dedicated to being a Great Place to Work. Where you are empowered to push the boundaries of science and unleash your entrepreneurial spirit. There's no better place to make a difference to medicine, patients and society. An inclusive culture that champions diversity and collaboration, and always committed to lifelong learning, growth and development. We're on an exciting journey to pioneer the future of healthcare. So, what's next? Are you already imagining yourself joining our team? Good, because we can't wait to hear from you! Where can I find out more? Our Social Media, Follow AstraZeneca on LinkedIn Follow AstraZeneca on Facebook Follow AstraZeneca on Instagram r Job open date: 09/09/2022 Job closing date: 30/09/2022
