National AI Awards 2025Discover AI's trailblazers! Join us to celebrate innovation and nominate industry leaders.

Nominate & Attend

Data Protection Officer

Mourant Group
London
2 weeks ago
Create job alert

Data Protection Officer

Department:Risk & Compliance

Employment Type:Permanent - Full Time

Location:London


Description

Join our global Risk and Compliance and General Counsel (GC) team as a Data Protection Officer, where you will act as the designated global Data Protection Officer (DPO) for all Mourant entities or where a local one is appointed, to support and oversee their activities.

You will foster a culture of compliance across Mourant by leading training initiatives, ensuring policy adherence, advising on effective data risk management and embedding data protection into day-today operations.

If you would like to join an award winning and forward thinking firm whoseinclusive cultureandvaluesrecognise that its people are fundamental to its success, we would love to hear from you!


About the role

Data Protection Strategy
  • To be the primary R&C contact for internal and external stakeholders on data protection (DP) issues across both the regulated and supervised businesses.
  • Provide advice to the General Counsel Team on queries relating to data protection issues in supplier contracts, client engagement terms, client questionnaires and other matters.
  • To advise senior leadership and staff on data protection obligations, linked to Mourant's data protection policy and be responsible for handling all requests related to data subject rights that Mourant receives.
  • Continuously review and update the data protection framework (being all policies, privacy notices, template documents and clauses) to align with evolving regulations and best practices, in consultation with relevant stakeholders.
  • As part of DP oversight, monitor and audit data protection policies and procedures with best practice and guidance issued from the relevant regulator, to ensure compliance.
Compliance and Risk Management
  • To maintain and enhance Mourant's data processing protocols including internal cross border data transfer agreements and maintain our DP registrations.
  • Conduct regular internal risk assessments) and support internal completion of data protection impact assessments (DPIAs) to identify potential risks related to data processing activities.
  • To establish, maintain and regularly update the Record of Processing Activities (RoPA) in accordance with Article 30 of the GDPR, ensuring it accurately reflects Mourant's data processing operations and is available for inspection by supervisory authorities upon request. This includes liaising with all departments to ensure new or changing processing activities are recorded and assessed for compliance with data protection principles.
  • Develop and carry out regular compliance monitoring reviews to assess adherence to data protection requirements as set out in Mourant's internal policies, procedures and operational controls, and identify areas for improvement.
Training and Awareness
  • Accountability for editing and releasing induction and refresher online DP training modules for Mourant staff.
  • In conjunction with the GC teams and relevant fee earners, develop and deliver ad hoc and supplemental training programs for partners, shareholders and employees to ensure a thorough understanding of DP requirements and data protection best practices.
  • Promote a culture of data protection awareness throughout the organisation.
Collaboration and Communication
  • Develop strong relationships within Mourant and work closely with GC, IT, Project Management, Marketing and HR teams to ensure cohesive and comprehensive data protection measures in both our internal operations and agreements with third parties.
  • Act as the primary point of contact for data protection authorities and regulatory bodies.


About you

  • Significant experience working in a compliance, legal, risk or operational control function focusing on DP within a law firm or regulated corporate services business is required.
  • Experience drafting and delivery of training and Board/senior management presentations is strongly preferred.
  • Experience in assessing and developing DP compliance framework commensurate with the size and complexity of a regulated professional services firm is required.
  • Knowledge of developing, conducting and reporting on a DP compliance monitoring program is required.
  • Prior policy and report writing experience strongly preferred.
Technical Knowledge
  • Strong knowledge of DP laws and regulations in the UK (including but not limited to DPA 2018, PECR, UK and EU GDPR), in the Channel Islands and wider EU is required. Knowledge of DP laws and regulations in at least one of Mourant's other operating jurisdictions is beneficial.
  • Experience in delivering commercial and operational pragmatism for effective DP risk management.
  • Ability to conduct and analyse legal and regulatory horizon scanning is required, and having regard to other relevant jurisdictions and international developments that impact on Mourant's DP position is essential.
  • Data driven approach to compliance monitoring and reporting.
  • Effective and confident communication skills, both verbally and written to convey to senior leaders a pragmatic risk-based approach, understanding the balance with client service.


#J-18808-Ljbffr

Related Jobs

View all jobs

Data Protection Officer

Data Protection Officer

Data Protection Officer

Data Protection Officer

Data Protection Officer

Data Protection Officer

National AI Awards 2025

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

How to Present Cyber Security Solutions to Non-Technical Audiences: A Public Speaking Guide for Job Seekers

Cyber security is no longer just an IT issue—it’s a board-level priority. Whether you’re applying for a role in penetration testing, security operations, risk management, or compliance, your ability to clearly explain cyber threats and solutions to non-technical stakeholders is vital. This guide will help cyber security job seekers develop one of the most in-demand soft skills in the industry: public speaking. You’ll learn how to simplify complex concepts, structure effective presentations, use storytelling and analogies, and handle common stakeholder questions with confidence.

Cyber Security Jobs Employer Hotlist 2025: 50 UK Companies Actively Hiring Right Now

Bookmark this guide—refreshed every quarter—so you always know who’s really expanding their cyber security teams. Ransomware payouts broke records in 2024, the UK’s new Cyber Security Bill imposed mandatory breach disclosure, and the National Cyber Force’s move to Samlesbury has super‑charged the northern skills market. Result? Demand for security architects, SOC analysts, penetration testers, cloud‑security engineers, threat hunters & GRC specialists is at an all‑time high in 2025. Below you’ll find 50 organisations that have posted UK‑based cyber security vacancies or announced head‑count growth during the past eight weeks. They’re organised into five quick‑scan categories. For every employer you’ll see: Main UK hub Example live or recent vacancy Why it’s worth a look (tech stack, culture, mission) Search any company on CyberSecurityJobs.tech to view current ads, or set a free alert so fresh openings land straight in your inbox.

Return-to-Work Pathways: Relaunch Your Cyber Security Career with Returnships, Flexible & Hybrid Roles

Re-entering the workforce after a career break can feel especially challenging in a fast-moving field like cyber security. Whether you stepped away for parenting, caregiving or another life chapter, the UK’s cyber security sector now offers a range of return-to-work pathways—from structured returnships to flexible and hybrid roles. These programmes value the transferable skills and resilience you’ve developed during your break, pairing you with mentorship, upskilling opportunities and supportive networks to ease your transition back into cyber security. In this article, tailored for parents and carers, you’ll discover how to: Understand the growing demand for cyber security talent in the UK Translate your organisational, communication and problem-solving skills into cyber security roles Tackle common re-entry challenges with practical solutions Refresh your technical knowledge through targeted learning Access returnship and re-entry programmes specific to cyber security Find roles that accommodate family commitments—whether hybrid, flexible or full-time Balance your career relaunch with caring responsibilities Master applications, interviews and networking in cyber security Draw inspiration from real returner success stories Whether you aim to return as an analyst, penetration tester, security engineer or compliance specialist, this guide will equip you with the steps and resources to reignite your cyber security career.