Principal Regulatory Compliance Analyst
Northrop Grumman
full-time
Posted on:
Location Type: Remote
Location: United Kingdom
Visit company websiteExplore more
Job Level
About the role
- Supporting risk and compliance activities, performing data inventory and data mapping and other privacy tasks in support of the department's goals and objectives
- Support implementing consistent privacy practices in multiple languages across multiple entities and jurisdictions in the EU, ensuring GDPR compliance
- Provide independent Subject Matter Expert counsel, as a key resource and point of contact to business, partner functions, and other key stakeholders, informing and advising of their obligations under the GDPR and other EU data protection regulations to meet legal and regulatory requirements wherever NG does business in the region
- Cultivate a strong compliance ethos
- Foster a data protection culture across Northrop Grumman’s EU/UK entities, making recommendations for initiatives and communications to regularly refresh employee awareness and engagement in data protection
- Conduct data mapping, data flow and record keeping, as well as determine the associated legal basis of processing
- Raise privacy awareness through staff training
- Support and carry out privacy project reviews for global stakeholders
- Supports Works Council reviews
- Conduct Privacy Impact Assessments to identify and mitigate potential privacy risks
- Respond to data subject rights requests in compliance with Company framework
- Manage the maintenance for privacy notices to ensure transparency
- Review and advice on Data Processing Agreements and Cross Border Transfer Mechanisms
- Conduct third party privacy risk assessments, ensuring vendors comply with data protection obligations
- Assist International Privacy Manager with other privacy related projects as they arise
- Work collaboratively with teams globally in a virtual setting
Requirements
- Successful track record of identifying risk and building successful mitigation and management strategies
- Demonstrable experience of developing policies & procedures to meet Data Protection requirements, including GDPR legislation
- Evidenced experience of implementing & managing Data Protection in a global organisation
- IAPP Certification such as CIPP/E Knowledge of UK/European data protection law
- Excellent interpersonal skills, able to engage effectively with a wide range of stakeholders, customers, and cultures at different levels, in different organisations and geographic locations
- Fluent in written and spoken English
- Good analytical skills, adept at trouble-shooting and problem-solving
- Valid UK driving licence
Benefits
- Travel: Yes, 25% of the Time
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
data inventorydata mappingprivacy impact assessmentsdata flow analysisrecord keepingdata processing agreementscross border transfer mechanismsthird party privacy risk assessmentsGDPR compliancedata protection policies
Soft skills
interpersonal skillsstakeholder engagementcommunicationproblem-solvinganalytical skillscollaborationcultural awarenesstraining and awarenessproject managementrisk management
Certifications
IAPP CertificationCIPP/E