Connecting Talent to opportunity

Connecting Talent to opportunity

Data Protection Manager


Job Description:

Data Protection Manager x 4

Posts available in the following locations: Liverpool, Manchester, Bristol, Cardiff, Newcastle and Croydon (Please note National salary is £40,175, London salary is £43,432)

Application closing date: 27th October 2021

  Summary At HMRC we are committed to creating a great place to work for all our colleagues; an inclusive and respectful environment that reflects the diversity of the society we serve.

We want to maximise the potential of everyone who chooses to work for us and we offer a range of flexible working patterns and support to make a fulfilling career at HMRC accessible to you.

Diverse perspectives and experiences are critical to our success and we welcome applications from all people from all backgrounds with the experience and skills needed to perform this role.


The HMRC office of the Data Protection Office (oDPO) sits within HMRC’s Chief Data Office (CDO). CDO supports key business objectives across one of the largest customer bases and most sophisticated IT estates in the UK.

We own the biggest digital operation in Government, providing digital services for 45 million individuals and 4.9 million business customers.
We have an exciting opportunity to become involved in HMRC’s ambitious initiative to ensure its comprehensive data holdings are processed in a way that is fully aligned with data protection laws.

The Team:

The Office of the Data Protection Officer perform a vital role to:

• Inform and advise HMRC and its employees on their obligations under Data Protection laws;
• Monitor compliance GDPR and other data protection laws;
• Help to raise awareness of data protection risks and requirements; and
• Be the first point of contact for supervisory authorities and members of the public and departmental staff.

We focus on our people, with clearly defined career pathways that are rewarding, fulfilling and achievable. We have flexible ways of working to help everyone handle their own work/life balance. And we’re creating an authentically diverse and inclusive work environment where everyone feels able to bring their whole self to work. Job description The Role:

One of the exciting things about this role are that NO two days are the same! One day you could be reviewing privacy risks relating to HMRC’s law enforcement capability and the next you could be getting to grips with another country’s data protection regime for a potential international data transfer.

Working within the Advice, Policy and International Team you will be responsible for the provision of a large swathe of data protection advice, including policy direction, assisting with the data protection aspects of security incidents, customer complaints, international law, supplier processing and law enforcement processing.

You will be encouraged to become fully conversant with the main principles of data protection legislation and can translate and confidently communicate that understanding to support others.

Responsibilities • Offer input to appropriate HMRC boards, internal committees and governance structures.
• Provide responses to Parliamentary Questions, FOIs and senior leader briefings in relation to data protection.
• Work strategically to ensure HMRC is consistent with and represented in, the development of wider UK data protection policies now we have left the EU.
• Undertake research independently and as part of a wider team, analysing complex or novel business scenarios.
• Identify data protection and information management issues/risks and make recommendations for change.
• Provide independent advice to HMRC staff on complex data protection queries, including documentation such as Data Protection Impact Assessments.
• Inform the business on privacy risks relating to UK GDPR and DPA 2018, Part 3.
• Undertake impartial reviews of other countries data protection regimes.
• A willingness to apply data protection expertise flexibly depending on the needs of the team at any one time.
• There may be a need to manage a team of data protection advisors.

You will need to demonstrate within your application:

You will already have:
• A strong interest and relevant professional qualification or equivalent experience in data protection and / or information governance.
• The ability to interpret, analyse and translate legal data protection provisions in a simple way.
• Experience providing business and strategic context to data protection matters and practical solutions to compliance problems.
• An understanding of the customer/ business viewpoint and provide an independent DPO response to complex complaints or enquiries.
• Confidence in the way you communicate with an ability to engage with colleagues across teams and organisational boundaries to deliver outcomes.
• The ability to work effectively as a team, acting efficiently on direction, but also demonstrating proactivity in the ability to suggest innovative ways of working.
• Excellent interpersonal skills and the ability to deliver outcomes through others.
• Resilience during busy periods and the ability to cope with ambiguity.

Desirable Criteria for all posts:

Ideally you will also have Experience or Qualifications in

• Risk Management
• Data protection (or related subject areas)
• Managing relationships with diverse partners with different needs and expectations
• An aptitude for using Microsoft Office & O365 Tools