IT and Data Compliance Manager
Manchester - Hybrid working 3 days a week in the office / 2 days remote
Position Summary
Our client is a multinational professional services business based in central Manchester looking to hire an IT and Data Compliance Manager. The IT and Data Compliance Manager is responsible for ensuring that the organisation’s IT systems, data handling practices, and digital operations comply with applicable legal, regulatory, and internal governance requirements. This role oversees the development, implementation, and monitoring of policies and procedures to safeguard sensitive data, mitigate compliance risks, and support a culture of security and accountability across the business.
What We Offer
- Between £55-70k plus benefits depending on experience
- Opportunity to shape the organisation’s IT and data compliance strategy.
- Professional development, certifications, and training support.
- Collaborative environment with cross-functional exposure across IT, Legal, and Risk functions.
Key Responsibilities
Regulatory Compliance
- Monitor and interpret data protection and IT-related regulations (e.g., GDPR, CCPA, HIPAA, ISO 27001, SOC 2) to ensure organisational compliance.
- Develop and maintain compliance frameworks, standards, and policies aligned with regulatory obligations and industry best practices.
- Act as the main point of contact for regulatory bodies, auditors, and internal stakeholders on IT and data compliance matters.
Governance, Risk, and Controls
- Lead compliance risk assessments for IT systems, data storage, and third-party providers.
- Implement and oversee risk mitigation strategies to address gaps or vulnerabilities.
- Develop monitoring and reporting mechanisms to track compliance performance and incidents.
Policy and Procedure Management
- Draft, review, and update IT security, privacy, and compliance policies.
- Ensure proper employee awareness, communication, and training programs are delivered on data protection and compliance obligations.
Data Management & Security
- Oversee practices for secure collection, storage, transfer, and disposal of data.
- Support IT and security teams in incident response, including data breaches, ensuring compliance with notification obligations.
- Partner with data owners, IT, and business units to ensure consistent enforcement of compliance measures.
Audit & Reporting
- Coordinate and support internal and external audits related to IT and data governance.
- Prepare compliance reports for senior leadership and recommend improvements where required.
Qualifications & Skills
- Bachelor’s degree in Information Technology, Computer Science, Law, or related field (Master’s or certifications a plus).
- Professional certifications such as CISM, CISA, CISSP, CIPM, or equivalent preferred.
- Strong knowledge of global data protection laws (e.g., GDPR, CCPA) and IT compliance frameworks (e.g., ISO 27001, SOC 2, NIST).
- Proven experience in IT compliance, risk management, or data governance roles.
- Excellent understanding of IT infrastructure, cybersecurity principles, and data lifecycle management.
- Strong communication and stakeholder management skills, with the ability to translate technical requirements into business context.
- Analytical mindset with strong problem-solving skills and attention to detail.