2,906 Data Compliance jobs in the United Kingdom

We are partnering with a leading global construction client renowned for delivering complex projects across the built environment.

Overview:

We are seeking an experienced data protection professional to lead and oversee GDPR compliance across the organisation. The role combines strategic leadership, operational management, and expert advisory responsibilities, ensuring the business operates in line with data protection legislation while supporting key commercial objectives.

Key Responsibilities:

• Lead and monitor GDPR compliance plans and track progress through defined KPIs.
• Provide tailored data protection advice for strategic projects and negotiate data protection terms for critical contracts.
• Develop and implement a global data protection framework to support business growth and operational models.
• Draft, review, and manage policies, procedures, and contract documentation in compliance with GDPR and UK data protection law.
• Promote the organisation as a sector leader in data protection.
• Oversee GDPR training programmes, ensuring mandatory compliance across teams.
• Design communication plans to support GDPR initiatives and performance metrics.
• Represent the business at national and international conferences and engage with external practitioners and industry bodies.
• Establish and chair GDPR steering groups to address issues such as data breaches, data ownership, and subject access requests (SARs).
• Serve as the EU Representative to ensure post-Brexit compliance.
• Lead, mentor, and manage the data protection team, fostering a high-performing culture.
• Manage GDPR legal retainers with external counsel in line with strategic and commercial objectives.
• Drive continuous improvement by applying best practices and lessons learned.
• Contribute to organisational strategy, providing expert guidance to senior leadership.
• Support net zero carbon initiatives by monitoring and managing associated emissions during project delivery.

Required Skills & Competencies:

• Strategic thinker with experience delivering GDPR objectives aligned with wider business goals.
• Strong organisational skills, able to manage multiple priorities and meet deadlines.
• Proactive ownership of tasks and commitments, safeguarding organisational reputation.
• Effective leadership skills with the ability to set clear objectives and share knowledge.
• Excellent interpersonal skills and the ability to engage effectively at all levels.

Qualifications & Experience:

• CIPP/E qualified or qualified data protection lawyer.
• Extensive knowledge of GDPR, national data protection laws, and ICO guidance.
• Experience as a Data Protection Officer or senior data protection lead in a commercial setting.
• Proven ability to apply data protection law in commercial contexts.
• Strong IT skills, including proficiency with Adobe and Excel.

“People Group is an equal opportunity employer. We embrace diversity and are committed to promoting an inclusive environment for both our clients and employees.”

We are partnering with a leading global construction client renowned for delivering complex projects across the built environment.

Overview:

We are seeking an experienced data protection professional to lead and oversee GDPR compliance across the organisation. The role combines strategic leadership, operational management, and expert advisory responsibilities, ensuring the business operates in line with data protection legislation while supporting key commercial objectives.

Key Responsibilities:

• Lead and monitor GDPR compliance plans and track progress through defined KPIs.
• Provide tailored data protection advice for strategic projects and negotiate data protection terms for critical contracts.
• Develop and implement a global data protection framework to support business growth and operational models.
• Draft, review, and manage policies, procedures, and contract documentation in compliance with GDPR and UK data protection law.
• Promote the organisation as a sector leader in data protection.
• Oversee GDPR training programmes, ensuring mandatory compliance across teams.
• Design communication plans to support GDPR initiatives and performance metrics.
• Represent the business at national and international conferences and engage with external practitioners and industry bodies.
• Establish and chair GDPR steering groups to address issues such as data breaches, data ownership, and subject access requests (SARs).
• Serve as the EU Representative to ensure post-Brexit compliance.
• Lead, mentor, and manage the data protection team, fostering a high-performing culture.
• Manage GDPR legal retainers with external counsel in line with strategic and commercial objectives.
• Drive continuous improvement by applying best practices and lessons learned.
• Contribute to organisational strategy, providing expert guidance to senior leadership.
• Support net zero carbon initiatives by monitoring and managing associated emissions during project delivery.

Required Skills & Competencies:

• Strategic thinker with experience delivering GDPR objectives aligned with wider business goals.
• Strong organisational skills, able to manage multiple priorities and meet deadlines.
• Proactive ownership of tasks and commitments, safeguarding organisational reputation.
• Effective leadership skills with the ability to set clear objectives and share knowledge.
• Excellent interpersonal skills and the ability to engage effectively at all levels.

Qualifications & Experience:

• CIPP/E qualified or qualified data protection lawyer.
• Extensive knowledge of GDPR, national data protection laws, and ICO guidance.
• Experience as a Data Protection Officer or senior data protection lead in a commercial setting.
• Proven ability to apply data protection law in commercial contexts.
• Strong IT skills, including proficiency with Adobe and Excel.

“People Group is an equal opportunity employer. We embrace diversity and are committed to promoting an inclusive environment for both our clients and employees.”

We are partnering with a leading global construction client renowned for delivering complex projects across the built environment.

Overview:

We are seeking an experienced data protection professional to lead and oversee GDPR compliance across the organisation. The role combines strategic leadership, operational management, and expert advisory responsibilities, ensuring the business operates in line with data protection legislation while supporting key commercial objectives.

Key Responsibilities:

• Lead and monitor GDPR compliance plans and track progress through defined KPIs.
• Provide tailored data protection advice for strategic projects and negotiate data protection terms for critical contracts.
• Develop and implement a global data protection framework to support business growth and operational models.
• Draft, review, and manage policies, procedures, and contract documentation in compliance with GDPR and UK data protection law.
• Promote the organisation as a sector leader in data protection.
• Oversee GDPR training programmes, ensuring mandatory compliance across teams.
• Design communication plans to support GDPR initiatives and performance metrics.
• Represent the business at national and international conferences and engage with external practitioners and industry bodies.
• Establish and chair GDPR steering groups to address issues such as data breaches, data ownership, and subject access requests (SARs).
• Serve as the EU Representative to ensure post-Brexit compliance.
• Lead, mentor, and manage the data protection team, fostering a high-performing culture.
• Manage GDPR legal retainers with external counsel in line with strategic and commercial objectives.
• Drive continuous improvement by applying best practices and lessons learned.
• Contribute to organisational strategy, providing expert guidance to senior leadership.
• Support net zero carbon initiatives by monitoring and managing associated emissions during project delivery.

Required Skills & Competencies:

• Strategic thinker with experience delivering GDPR objectives aligned with wider business goals.
• Strong organisational skills, able to manage multiple priorities and meet deadlines.
• Proactive ownership of tasks and commitments, safeguarding organisational reputation.
• Effective leadership skills with the ability to set clear objectives and share knowledge.
• Excellent interpersonal skills and the ability to engage effectively at all levels.

Qualifications & Experience:

• CIPP/E qualified or qualified data protection lawyer.
• Extensive knowledge of GDPR, national data protection laws, and ICO guidance.
• Experience as a Data Protection Officer or senior data protection lead in a commercial setting.
• Proven ability to apply data protection law in commercial contexts.
• Strong IT skills, including proficiency with Adobe and Excel.

“People Group is an equal opportunity employer. We embrace diversity and are committed to promoting an inclusive environment for both our clients and employees.”

We are partnering with a leading global construction client renowned for delivering complex projects across the built environment.

Overview:

We are seeking an experienced data protection professional to lead and oversee GDPR compliance across the organisation. The role combines strategic leadership, operational management, and expert advisory responsibilities, ensuring the business operates in line with data protection legislation while supporting key commercial objectives.

Key Responsibilities:

• Lead and monitor GDPR compliance plans and track progress through defined KPIs.
• Provide tailored data protection advice for strategic projects and negotiate data protection terms for critical contracts.
• Develop and implement a global data protection framework to support business growth and operational models.
• Draft, review, and manage policies, procedures, and contract documentation in compliance with GDPR and UK data protection law.
• Promote the organisation as a sector leader in data protection.
• Oversee GDPR training programmes, ensuring mandatory compliance across teams.
• Design communication plans to support GDPR initiatives and performance metrics.
• Represent the business at national and international conferences and engage with external practitioners and industry bodies.
• Establish and chair GDPR steering groups to address issues such as data breaches, data ownership, and subject access requests (SARs).
• Serve as the EU Representative to ensure post-Brexit compliance.
• Lead, mentor, and manage the data protection team, fostering a high-performing culture.
• Manage GDPR legal retainers with external counsel in line with strategic and commercial objectives.
• Drive continuous improvement by applying best practices and lessons learned.
• Contribute to organisational strategy, providing expert guidance to senior leadership.
• Support net zero carbon initiatives by monitoring and managing associated emissions during project delivery.

Required Skills & Competencies:

• Strategic thinker with experience delivering GDPR objectives aligned with wider business goals.
• Strong organisational skills, able to manage multiple priorities and meet deadlines.
• Proactive ownership of tasks and commitments, safeguarding organisational reputation.
• Effective leadership skills with the ability to set clear objectives and share knowledge.
• Excellent interpersonal skills and the ability to engage effectively at all levels.

Qualifications & Experience:

• CIPP/E qualified or qualified data protection lawyer.
• Extensive knowledge of GDPR, national data protection laws, and ICO guidance.
• Experience as a Data Protection Officer or senior data protection lead in a commercial setting.
• Proven ability to apply data protection law in commercial contexts.
• Strong IT skills, including proficiency with Adobe and Excel.

“People Group is an equal opportunity employer. We embrace diversity and are committed to promoting an inclusive environment for both our clients and employees.”

Information Security Analyst | Security+, Microsoft Purview, Defender | Global Trading Platform

• £60–70k base + 10% bonus
• Hybrid in Coventry with monthly travel to London
• Security certification support & career development built-in

Join a growing InfoSec team at the heart of a global financial institution’s expansion. As an Analyst, you’ll work hands-on with data governance, security tooling, and access management — helping to shape how a modern SME approaches cybersecurity. You’ll bring technical curiosity, the ability to interrogate data, and the confidence to advise IT teams on the practical steps that keep the business secure.

What you’ll bring:

• 3+ years’ experience in an InfoSec, IT security, or analyst role
• Security certifications: Security+ and ideally Microsoft security certifications (e.g. SC-200/SC-400)
• Experience with security tools (Microsoft Defender, web proxy, email security, CrowdStrike or equivalents)
• Knowledge of single sign-on and zero trust networks (beyond just segregation)
• Exposure to data management / governance tools (e.g. Microsoft Purview, or similar)
• Strong communicator: able to translate technical concepts into practical advice for IT and stakeholders

What you’ll be doing:

• Recertification of accounts : Pulling and interrogating data through bespoke platforms
• Security tooling : Working with Defender, web proxy, CrowdStrike-equivalent tools
• Data management : Supporting data labelling & retention projects using Purview or similar
• Governance support : Involved in data loss prevention, labelling, and stakeholder engagement (including DPO)
• Practical incident response input : Advising IT on immediate steps during incidents, converting theory into quick, actionable responses
• Ongoing InfoSec operations : Metrics, monitoring, and security projects across applications and users

Tech & tools you’ll use:

• Microsoft Purview – Data governance and policy enforcement
• Microsoft Defender – Endpoint & email protection
• CrowdStrike / equivalents – Endpoint detection & response
• Web proxy & email security tools
• Azure (beneficial) – IAM, monitoring, and security logging

Why this role?

• Be central to shaping data governance and security operations in a dynamic SME environment
• Hands-on exposure to a wide range of security tools and concepts (not siloed to audit work)
• Opportunity to advise and influence IT directly on practical security decisions
• Work alongside experienced InfoSec leadership who value mentoring and professional growth

If this sounds like something you would be interested in, please apply!

Information Security Analyst | Security+, Microsoft Purview, Defender | Global Trading Platform

Information Security Consultant - Virtual CISO (vCISO)

Up to £80,000 | Fully Remote (with occasional client travel)

My client is seeking an experienced cyber security professional to step into a Virtual CISO (vCISO) role, acting as a trusted advisor to a diverse portfolio of organisations. This is an opportunity to directly influence and shape cyber security strategies at board level while embedding yourself as a valued extension of your clients’ security teams.

Key Responsibilities

• Serve as a strategic security partner, helping clients to define, develop, and mature their cyber security roadmap.
• Build strong, long-term relationships with stakeholders and establish yourself as a core member of their security function.
• Take ownership of client-specific Security Improvement Plans, ensuring risks are reduced and resilience is increased.
• Lead governance and oversight activities, including risk reviews, board-level reporting, and mentoring client teams.
• Carry out security reviews across cloud, hybrid, and on-premises environments, identifying vulnerabilities and improvement areas.
• Work closely with SOC teams to review threat hunting outcomes and ensure remediation of poor practices.
• Provide guidance on compliance and frameworks such as ISO 27001, Cyber Assessment Framework (CAF), and Cyber Essentials.
• Contribute to incident readiness and response as part of the Cyber Security Incident Response Team (CSIRT).
• Actively contribute to the internal growth and knowledge-sharing within the wider team, suggesting improvements and supporting colleagues.
• Ensure compliance with internal security and governance standards.

About You:

• Proven experience as a CISO, vCISO, or senior cyber security advisor.
• Strong knowledge of security frameworks, governance, risk management, and compliance.
• Excellent communication and stakeholder engagement skills, with the ability to influence at board level.
• Hands-on experience with cloud and hybrid architectures, audits, and security assessments.
• Incident response and crisis management experience is a plus.
• Holding CISSP/CISM
• ISO27001 Lead implementer

What’s on Offer

• Salary up to £80,000
• Fully remote role with flexibility to travel to client sites when required
• Opportunity to work across varied industries, influencing security at the highest levels

If you’re looking for a role where you can combine strategic influence with hands-on expertise, and you thrive on building trusted client relationships, this could be your next career move.

Information Security Specialist – UK remote - £50,000 - £55,000 + Benefits

We are recruiting on behalf of a client for an experienced Information Security Specialist to drive and refine their information security framework. This role is ideal for someone with strong ISO27001 experience and IT infrastructure experience, in addition to a hands-on approach to hardware and systems.

Key Responsibilities

• Lead the improvement of ISO27001 across the organisation for Audit.
• Prepare for and support the upcoming audit.
• Manage and secure IT hardware including PCs, laptops, and related infrastructure.
• Collaborate with garage teams and operational staff to ensure compliance and integration.
• Work closely with the IT Director and wider IT team to align security practices with business needs.

Ideal Candidate

• Proven experience implementing ISO27001 in an IT heavy environment.
• Strong understanding of IT infrastructure and hardware.
• Ability to multitask and communicate effectively with technical and non-technical teams.