Reporting to the Head of Regulatory Compliance, and part of the Legal, Secretariat and Compliance team, this varied role will cover general compliance duties for a private multinational group
These include managing the compliance work with several business units in relation to GDPR and emerging global privacy laws, anti-bribery and corruption, sanctions, and modern slavery requirements, as well as overseeing the compliance team’s input to the vendor due diligence process and the areas of compliance outlined
Responsibility, management and a point of escalation for risks in relation to the following areas:
The provision of ‘front-line’ ad hoc guidance to business stakeholders on all compliance areas with direct responsibility for agreed business divisions and oversight/risk escalation for Compliance Officers
Final review point for responses to customers on access requests and complex enquiries, including those relating to the use of cookies
Management and oversight of the process for due diligence on vendors as part of the contract life cycle; being the point of escalation for risks and determining appropriate mitigations
Identifying where assessments relating to data processing activities must be conducted, for example privacy impact assessments, and reviewing the risks and mitigations identified
Proactively identifying the need for new compliance projects and (with support of the Head of Regulatory Compliance) managing new projects
Supervising and coaching other members of the team to support their development
Assisting with the development of compliance programmes for joint-ventures, including recent and future acquisitions, and managing the integration phase ensuring identified actions are completed
Responding to changes in global laws that will impact the business and managing the compliance work to implement changes, including overseeing the development of new processes and policies
Contributing to papers on data protection risks for the board level Data Governance Council and answering questions from members
Lead the investigation and management of data breaches and security incidents, ensuring appropriate reporting and mitigation measures are in place
Requirements:
This role is suited to a compliance professional with at least 6 years experience and a desire to learn, and who has the ability to multi-task and take a pragmatic approach to compliance in a fast-paced commercial environment
Expertise in global data protection compliance is essential
At least 6 years of experience advising on global data protection and privacy matters
Privacy qualification(s) such as CIPP/E
Expertise of European, US and other global data protection laws - including those relating to marketing and cookies
Knowledge of matters relating to AI, including privacy implications as well as specific AI laws and regulations, such as the EU AI Act
Ability to manage large tasks and projects, including overseeing the work of others in the team
A sound understanding of the principles of risk management and compliance
Experience of working in a general compliance role
Ability to understand regulations and legal principles and their application to the FT Group business, for all of the compliance areas outlined
Proactive, able to work on own initiative, with good organisation and time management skills and happy to work as part of a team
Able to effectively communicate with people internally and externally at all levels
Accurate, with an eye for detail, and able to meet deadlines
Educated to a degree level or equivalent
Benefits:
A range of training courses as well as confidential career coaching and mentoring
Flexibility - working from home, job sharing, compressed weeks, and flexible working hours
Enhanced parental leave, flexible leave allowance and paid volunteer leave
Pension contribution
Local health coverage plans
Gym memberships and healthcare schemes, professional counselling sessions, 24-hour employee wellbeing helpline, weekly meditation classes