Data Protection Officer - DUAL

Howden Group Holdings
London
2 days ago
Create job alert

Who are we?

Howden is a collective – a group of talented and passionate people all around the world. Together, we have pushed the boundaries of insurance. We are united by a shared passion and no-limits mindset, and our strength lies in our ability to collaborate as a powerful international team comprised of 18,000 employees spanning over 100 countries.

People join Howden for many different reasons, but they stay for the same one: our culture. It’s what sets us apart, and the reason our employees have been turning down headhunters for years. Whatever your priorities – work / life balance, career progression, sustainability, volunteering – you’ll find like-minded people driving change at Howden.

We’re looking for an experiencedData Protection Officer (DPO)to help drive forward, and support, some of our most challenging and interesting Personal Data related projects.

The job holder, reporting directly to the DUAL UK Chief Risk Officer, and with a dotted line to the Group DPO, will be responsible for supporting the business with general BAU matters relating to Data Protection compliance, as well as understanding, assessing and then managing the scope, design, implementation and rollout of a wider Data Protection compliance framework fit for DUAL. This framework sets the bar for required levels of Data Protection compliance and core control standards.

The role involves a detailed understanding of both UK and EU Data Protection Regulations, as well as a general understanding of universal principles that can apply globally.

The role will work alongside the various DUAL operational business units, as well as with its more centralised control functions such as Risk. There will be engagement with core Howden Group central functions such as IT, Legal, HR and Procurement, and the role will also require close engagement with other teams and SMEs within the wider Howden Group businesses.

The role will work closely with Howden’s Group DPO to ensure that activities are aligned to Group privacy strategy, that key risks are identified and remediated, and that there is adequate oversight at a business entity and Group level.

Role responsibilities

  1. Provide timely and considered advice and guidance on a range of data protection matters relating to DUAL’s UK businesses. This will include, but will not be limited to:
  • General Data Protection Compliance, as it applies to both commercial and retail customers
  • Processes and controls to ensure ongoing compliance
  • Personal Data Breach Management
  • Marketing
  • DPIAs
  • Subject Rights
  • Privacy Notices
  • Data Security
  • Supplier management
  1. Enhance and embed a data protection framework to ensure compliance with all applicable Data Protection legislation, for UK based entities.
  2. Work closely with the Howden Group DPO to improve and drive a Data Protection strategy that is aligned to the operating model of the business and helps ensure consistency.
  3. Maintain processes to ensure adequate oversight of compliance posture, including monitoring of compliance with all aspects of the Data Protection Policy.
  4. Raise awareness of Data Protection, and support training staff and internal audits.
  5. Monitor the completion of mandatory training by DUAL colleagues and take action to ensure maximum take-up.
  6. Provide advice on the conducting of and monitoring of data protection impact assessments (DPIAs).
  7. Help develop KRI reporting processes.
  8. Continually improve Data Protection/ Privacy reporting appropriate for senior management and the Boards.
  9. Cooperate with the UK Information Commissioner’s Office (ICO) or relevant supervisory authority.

Key requirements

  • Five years’ experience within a Data Protection compliance field, to include building, implementing and managing data protection programmes within a complex and enterprise-wide organisation.
  • Specific experience in managing Data Protection risks within a retail financial services environment, including advising on and monitoring processes for meeting data subject rights.
  • Professional qualification within the Data Protection space, and experience in driving compliance improvements in a highly driven and agile entity.
  • Experience with supporting marketing initiatives and the PECR regulations.
  • Detailed knowledge of UK and European data protection law.
  • An understanding of technical and organisational measures that should be in place to ensure the security of personal data and familiarity with information technologies and data security.
  • Experience in compliance monitoring and risk management.

What do we offer in return?

A career that you define. At Howden, we value diversity – there is no one Howden type. Instead, we’re looking for individuals who share the same values as us:

  • Our successes have all come from someone brave enough to try something new
  • We support each other in the small everyday moments and the bigger challenges
  • We are determined to make a positive difference at work and beyond

Reasonable adjustments

We're committed to providing reasonable accommodations at Howden to ensure that our positions align well with your needs. Besides the usual adjustments such as software, IT, and office setups, we can also accommodate other changes such as flexible hours* or hybrid working*.

If you're excited by this role but have some doubts about whether it’s the right fit for you, send us your application – if your profile fits the role’s criteria, we will be in touch to assist in helping to get you set up with any reasonable adjustments you may require.

*Not all positions can accommodate changes to working hours or locations. Reach out to your Recruitment Partner if you want to know more.

#J-18808-Ljbffr

Related Jobs

View all jobs

Data Protection Officer

Data Protection Officer

Data Protection Officer - DUAL

Global Data Protection Officer

Software Security Architect

Regional Information Security Officer

Get the latest insights and jobs direct. Sign up for our newsletter.

By subscribing you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Portfolio Projects That Get You Hired for Cyber Security Jobs (With Real GitHub Examples)

With rising cyber threats and increasingly sophisticated attacks, cyber security has become a critical priority for organisations worldwide. From penetration testers (pentesters) and SOC analysts to cloud security engineers and threat intelligence specialists, the demand for skilled cyber security professionals continues to surge. But how do you stand out in a growing field? Alongside your CV, an impressive cyber security portfolio can be the distinguishing factor that convinces employers you’re the right fit. In this comprehensive guide, you’ll discover: Why a cyber security portfolio is essential for job seekers in this domain. How to align portfolio projects with different cyber security career paths. Real GitHub examples that demonstrate best practices in security-focused projects. Actionable project ideas you can start today, from penetration testing labs to blue-team detection pipelines. Best practices for organising your repos and presenting your work so hiring managers can instantly see your impact. When you’re ready to pursue your next opportunity, remember to upload your CV on CyberSecurityJobs.tech. Our specialised platform connects talented security professionals with employers who need your expertise—exactly what your portfolio will showcase.

Cyber Security Job Interview Warm‑Up: 30 Real Coding & System‑Design Questions

The need for skilled cyber security professionals has never been greater. As organisations rapidly digitise their operations and store increasing amounts of sensitive data online, cyber threats loom large—ranging from sophisticated ransomware attacks to insider threats and state‑sponsored espionage. Against this backdrop, cyber security jobs remain some of the most in‑demand and mission‑critical roles on the market. If you’re preparing for a cyber security interview, expect to be tested on a broad spectrum of topics—from secure coding and incident response to network security architecture and compliance standards. In many cases, companies also include problem‑solving exercises and system design scenarios to gauge how well you can apply theoretical knowledge to real‑world threats. To help you ace these assessments, we’ve compiled 30 real coding & system‑design questions you might encounter. Each reflects a key area of cyber security—whether it’s encryption and key management, threat modelling, or designing a zero‑trust network. Along the way, we’ll offer insights and best practices so you can stand out from the crowd. If you’re on the lookout for exciting cyber security roles in the UK, head to www.cybersecurityjobs.tech. There, you’ll discover a range of positions—covering everything from penetration testing and threat intelligence to compliance management and security operations. Let’s dive into the essentials of interview readiness.

Negotiating Your Cybersecurity Job Offer: Equity, Bonuses & Perks Explained

How to Secure Compensation That Reflects Your Value in the UK’s High-Stakes Cybersecurity Sector Introduction As cyber threats grow more sophisticated and frequent, cybersecurity professionals have never been more in demand. From thwarting ransomware attacks to architecting secure cloud infrastructures, mid‑senior cybersecurity experts play a critical role in safeguarding a company’s data and reputation. Thanks to this growing reliance on cybersecurity, employers in the UK are going above and beyond simple salary offers to attract the top echelon of talent. Although base salary remains a key component of any job offer, the broader package—encompassing equity, bonuses, and perks—can often surpass what you’d gain from a small bump in monthly pay. For cybersecurity specialists working in areas such as threat intelligence, incident response, penetration testing, or compliance, the complexity and risk mitigation you bring to the table is massive. Knowing how to negotiate the entire package ensures you are duly rewarded for keeping an organisation’s data, assets, and operations safe. In this guide, we’ll delve into every aspect of negotiating a cybersecurity job offer. Whether you’re pivoting to a mid‑senior role or cementing your expertise at an established security consultancy, understanding the full range of compensation elements will help you secure an offer that acknowledges the criticality of what you do. Let’s explore equity options, performance bonuses, and the perks that matter most, so you can come out of your next job negotiation confident that you’re getting more than just a salary.