GRC Analyst - Data Protection

GRC Analyst - Data Protection and GDPR ComplianceFixed Term Contract, 12 months - 45k - 50k Location: Hybrid - BirminghamYour new company:I am looking to recruit a GRC Analyst, focusing on Data Protection and GDPR, to join a leader in the hospitality space, with the role focusing on GRC activities, with a strong focus on information security, privacy, and regulatory assurance across the organisation.The role responsibilities:This role focusses on data protection assurance and GDPR compliance, ensuring personal data is processed lawfully, and in line with regulatory and organisational requirements. Key parts of the role:Reviewing how personal data is used across systems, business processes, and technology solutions.Identifying opportunities to reduce, anonymise, or eliminate personal data processing where it is not essential to business needs.Support the review, development, and rollout of information security and data protection policies.Contribute to the management of information security, third party, and privacy risk registers.Assist with internal and external audits, including GDPR assurance, PCI DSS, and financial audits.Track remediation of identified security, privacy, and compliance issues to ensure timely closure.Support incident and breach response activities, including investigation, documentation, and follow up actions.You will need:Strong understanding of GDPR, the UK Data Protection Act, and privacy and security control requirements.Experience working in GRC, ..... full job details .....