Success! Promotion has been applied.

Data Protection & Information Security Manager

Full-time | £70,000 - £80,000 per annum

Apply Now

As an experienced Data Protection & Information Security Manager joining a fast growing, multi-award winning fintech company, you will be responsible for implementing the strategy, policies, standards, procedures and guidelines, ensuring company compliance and working practices.

The role reports directly to the Legal & Commercial Director.

What you’ll do

  • Lead on security and proper handling, storage, and deletion of our customer data
  • Continually improve how we manage customer data
  • Ensure that the firm’s policies, procedures, and training materials are up to date and well communicated
  • Build and maintain excellent working relationships with key colleagues across the business and our customers, suppliers, and third parties
  • Creating and maintain a schedule of internal audits of our systems, developing and delivering improvement plans
  • Work to achieve and then maintain ISO27001 and best practice in information security
  • Audit existing suppliers on a regular, rolling basis
  • Assess and give recommendations on new supplier data and information security arrangements
  • Respond to employee and customer Data Subject Access Requests (DSARS)
  • Conduct Privacy Impact Assessments for our data sharing arrangements, new software, and new products
  • Lead the management and lessons learned of any breaches/privacy incidents
  • Work with HR to rollout an on-going programme of security awareness and training to engender a culture of security awareness within the organisation
  • Work with the software and development, business operations and delivery functions to guide and ensure security principles/procedures are understood and applied consistently
  • Ensure the proper application of data protection law and reliance on appropriate legal gateways to data processing mindful of the potential risks
  • Mitigate privacy risks and advise on potential solutions and changes to processes / policies proposed to aid both their legal and practical application
  • Be our first point of contact for any BAU questions and privacy related support.

What you’ll have

  • Good understanding and practical experience of the principles/issues involved in Information Security & Technology Risk Management
  • Knowledge and experience of the ISO 27001 framework and best practices
  • Understanding of the principles/issues involved in Data Privacy
  • Thorough and detailed understanding of the UK Data Protection Act & UK GDPR and the practical application of data protection laws around data handling and management.
  • Disciplined, pragmatic approach
  • Analytical skills, including the ability to present ideas clearly to others and to identify and escalate issues of concern to management, as appropriate
  • Ability to work in a pressured environment while prioritising appropriately competing objectives
  • Supportive and reliable team member
  • Self-motivated, demonstrating enjoyment in your work
  • Passion for Information Security and continuous learning
  • Experience of planning and conducting internal audits in relation to quality, information security and data protection, producing clear and actionable findings and supporting business teams to implement these actions.
  • Excellent communication and consultancy skills e.g. solution focused, builds collaborative relationships and communicates/influences credibly and effectively with a wide range of stakeholders, including clients.
  • Ability to deal with quality or data related incidents efficiently and effectively, ensuring issues are managed and appropriately escalated within the business.
  • Professional certification (CISSP/CISM/ISO 27001 Lead implementer or similar)

About the company

Suits Me is an award-winning, ethical, and cutting-edge Fintech business based in a rural setting near Knutsford, Cheshire. We are an award-winning alternative banking solution ideal for the unbanked and underbanked in the UK or those choosing to open a secondary account. We are currently within an exciting period of growth and since 2015, we have onboarded over 125,000 customers. Suits Me operates within both B2B and B2C sectors in the UK and currently working towards European expansion. We offer an alternative to traditional banking accounts with a contactless Mastercard debit card, a full range of banking features and cashback rewards for consumers and for our business partners, a safe and secure portal in order to create new accounts for their unbanked workers quickly and easily.

What we offer

  • Salary: £70,000 – £80,000 per annum
  • Employer Pension contribution of 6%.
  • Death in Service Benefit: 4 x basic annual salary
  • Income Protection: 3 x basic annual salary
  • Critical Illness Cover: 75% of basic annual salary
  • Sick pay
  • Enhanced Maternity/Paternity/Adoption Pay
  • 30 days holiday plus bank holidays
  • Free on-site parking
  • Regular Team Social Events.
  • Work Hard Play Hard Culture.