drjobs Data and Security Compliance Manager - Fixed Term
  1. Home
  2. Jobs In UK
  3. Jobs In Bristol
  4. Data and Security Compliance Manager - Fixed Term

Data and Security Compliance Manager - Fixed Term

State
Posted on : 07-04-2025

Employer Active

1 Vacancy
drjobs

Job Alert

You will be updated with latest job alerts via email
Valid email field required
Send jobs
drjobs
Register to Apply Apply Now
Send me jobs like this
drjobs

Job Alert

You will be updated with latest job alerts via email

Valid email field required
Send jobs
Job Location drjobs

Bristol - UK

Monthly Salary drjobs

Not Disclosed

drjobs

Salary Not Disclosed

Vacancy

1 Vacancy

Posted on : 07-04-2025

Job Description

We are looking for an experienced Data and Security Compliance Manager to lead and maintain our compliance with ISO 9001 IS0 14001 ISO 27001 Cyber Essentials Plus MODlevel SAQs FSQS and GDPR regulations. The role is crucial in ensuring our agency adheres to best practices and legislation in data protection information security quality management environmental compliance and industryspecific security standards.

The ideal candidate will have experience in compliance management risk assessment audits security frameworks and policy implementation. They will need to work across teams such as IT Operations Finance Delivery and Engineering to ensure robust governance risk management and compliance strategies are in place supporting both operational efficiency and regulatory requirements.

Key responsibilities

Compliance and certification management

  • Ensure we have the processes and infrastructure in place to maintain and oversee compliance with:
    • ISOand 27001
    • Cyber Essentials Plus certification
    • MODlevel SAQs
    • FSQS (Financial Services Qualification System)
    • GDPR and UK Data Protection Law
    • PCIDSS compliance
    • New requirements as applicable
  • Manage our internal and external audits certifications and compliance renewals
  • Ensure continuous monitoring and improvement of compliance frameworks
  • Review client and supplier contracts/master service agreements and Statements of Work from a compliance perspective and act as the conduit between contracts and project teams to ensure we are meeting our commitments
  • Supplier/vendor management including vendor specific assessments and flow down policy control and compliance

Information security and Cyber Essentials Plus

  • Oversee Cyber Essentials Plus compliance ensuring security controls are in place
  • Work closely with the IT team to assess vulnerabilities manage risk and implement cyber security policies
  • Work with the Head of IT to manage incident response planning and ensure security incidents are managed in line with best practices

Data protection and GDPR compliance

  • Working closely with our DPO to ensure adherence to GDPR UK Data Protection Act and other relevant privacy regulations
  • Create and maintain any Records of Processing Activities (RoPA) and conduct Data Protection Impact Assessments (DPIAs)
  • Implement processes around Data Subject Access Requests (DSARs) and breach management
  • Ensure compliance with any client and thirdparty data processing agreements (DPAs) and data retention rules

Risk management and policy development

  • Review update maintain and enforce policies and procedures related to:
    • Information security
    • Data protection
    • Environmental sustainability
    • Business continuity
    • Incident response
    • Supplier security assessment
  • Maintain a risk register identifying compliance risks and implementing mitigation strategies
  • Conduct internal security audits and ensure corrective actions are taken

FSQS and MOD compliance JOSCAR SOC and standard DevSecOps requirements

  • Manage FSQS accreditation ensuring all necessary documentation is up to date
  • Support MOD SAQ (Supplier Assurance Questionnaire) compliance working with internal teams to meet security requirements such as MOD Security Policy JSP440
  • Ensure adherence to government and financial sector security regulations across the agency

Internal training

  • Delivery compliance training to staff on GDPR security awareness and best practices and ISO requirements
  • Ensure teams are aware of best practices in cyber security data protection and quality management
  • Foster a culture of compliance and continuous improvement across the business

Skills and experience

Essential:

  • Experience managing compliance frameworks include ISO27001 Cyber Essentials Plus GDPR and PCIDSS compliance
  • Strong understanding of information security cyber security frameworks and risk management
  • Experience with internal and external audits certification renewals and policy development
  • Proven knowledge of data protection laws
  • Ability to develop and deliver compliance training
  • Excellent project management and stakeholder engagement skills

Desirable:

  • Knowledge of cloud security frameworks (AWS Azure SaaS security)
  • Experience in business continuity and disaster recovery planning
  • Understanding of government and other regulatory body security frameworks (MOD FSQS NSCS)

Required Experience:

Manager

Employment Type

Contract

Company Industry

Key Skills

Register to Apply
Apply Now

About Company

State
Report This Job
Disclaimer: Drjobpro.com is only a platform that connects job seekers and employers. Applicants are advised to conduct their own independent research into the credentials of the prospective employer.We always make certain that our clients do not endorse any request for money payments, thus we advise against sharing any personal or bank-related information with any third party. If you suspect fraud or malpractice, please contact us via contact us page.
Start Now

Dr.Job AutoApply

3X your job search with AutoApply's AI for faster dream job results.

Similar Jobs

Market Data Manager - Leading Trading Company

Avanda Group - Budapest

Relief Security Officer

Anchor Group Services - Newcastle upon Tyne

Security Shift Leader

Anchor Group Services - Bolton

Software Sales and Account Manager

Netforemost, Inc - Managua

Cyber Security Analyst (Consultant)

Flintex Consulting Pte Ltd - Singapore

Cyber Security Analyst ( Associate)

Flintex Consulting Pte Ltd - Singapore

Data Center Technician

Flintex Consulting Pte Ltd - Singapore

Cloud Data Engineer

Red Pico - Toronto
  1. Home
  2. Jobs In UK
  3. Jobs In Bristol
  4. Data and Security Compliance Manager - Fixed Term
About Drjobpro.com

Dr. Job is an online platform that connects employers with skilled job seekers, facilitating the search for job opportunities and top talent. Established in 2015. Dr. Job Pro has emerged as the world premier job portal, attracting thousands of job seekers every day from all over the world.

Follow Dr.Job

LinkedIn Drjobpro Facebook Drjobpro Twitter Drjobpro Instagram Drjobpro Youtube Drjobpro Tiktok Drjobpro SnapChat Drjobpro
Payment accepted icon

Dr Job FZ LLC. 2025 © All Rights Reserved

Terms of Use Privacy Policy Cookie Policy

Company

About

How it Works

SiteMap

Contact Us

Blog

Popular Searches

Popular jobs in worldwide

Employer

Post Job Free

CV Search

ATS Partners

Job seeker

Job Seeker Login

Job Seeker Register

Search Jobs

AI Job interview

AutoApply

Companies by Location

Jobs by Countries

Jobs In Saudi Arabia

Jobs In Kuwait

Jobs In Qatar

Jobs In Bahrain

Jobs In Egypt

Jobs In Jordan

Jobs in USA

Jobs in UK

Jobs in India

Change Country