• Profile

Senior EU Privacy Analyst and Data Protection Official

Job Description

Are you a motivated individual with experience engaging and liaising with various levels of stakeholders?

Are you a subject matter expert in your field who enjoys data control and processing activities?

As an organisation, we demand constant innovation, and have an immediate opportunity for an experienced Privacy Analyst and Data Protection Official to report directly to our Chief Executive of the UK and Europe, as well as our companies Global Corporate Privacy Executive.

Different thinking for a Different world

Northrop Grumman is a leading global security company providing innovative systems, products and solutions in autonomous systems, cyber, C4ISR, strike, and logistics and modernisation to customers worldwide. In Europe, we are among the leading defence and security suppliers with 2,500 employees and long-established businesses in the UK, France, Germany, Italy, and Netherlands.

We are involved in a range of future game-changing programmes. Whether this is as a partner in the F-35 Lightning II providing the aircraft with its situational awareness and communications, as a specialist in cyber and intelligence datasets, as the pre-eminent provider of High Altitude Long Endurance unmanned aircraft, or as the ‘go to’ provider for open system architectures for battlespace networks, communications, and command and control, our reputation as an innovator is unparalleled.

How you will make a difference
As our Senior Privacy Analyst and Data Protection Official (“DPO”), you will be leading a highly visible an independent role where you will have the opportunity to actively lead and engage with multiple internal and external stakeholders.
You will provide leadership, subject matter expertise, advice, and monitoring for Northrop Grumman's EU data processing and data control activities to meet legal and regulatory requirements of the EU General Data Protection Regulation (GDPR) and other EU data protection regulations where Northrop Grumman does business.
Your position will report findings, analysis and recommendations directly to our UK and EU Chief Executive as well as our Global Corporate Privacy Executive and Global Privacy Manager in the US.
This opportunity plays a key role in fostering a data protection culture across Northrop Grumman’s EU entities and additionally, you will be responsible for stakeholder management across the enterprise. As Senior Analyst, you will own the EU privacy portfolio, lead risk and compliance activities, perform data inventory and data mapping, and other privacy tasks in support of the department's goals and objectives. 

Please find a list of your key responsibilities:

  • Provide leadership and independent subject matter expertise as a key resource and point of contact to business, partner functions, and other key stakeholders to inform and advise operations of their obligations under the GDPR and other EU data protection regulations.
  • Responsible for developing and implementing consistent privacy practices in multiple languages across multiple entities and jurisdictions in the EU.
  • Cultivate and influence senior management to ensure a strong compliance ethos.
  • Ability to problem solve and analyze complex legal requirements and translate them into implementable practical solutions across the EU landscape.   
  • Self-starter with decision making ability and wide latitude to perform duties as a Senior Privacy Analyst and Data Protection Officer (DPO) under the General Data Protection Regulation [GDPR/Regulation] or local law:
    • Conduct data mapping, data flow and record keeping, as well as determine the associated legal basis of processing;
    • Raise privacy awareness through committee participation, staff training, and run a monthly Privacy Working Group;
    • Lead privacy project reviews for global stakeholders;
    • Determine collectorship and processor status for EU entities;
    • Supports Works Council reviews;
    • Conduct DPO assessments, and manage engagement with DPOs from Germany;
    • Conduct Data Protection Impact Assessments and related audits;
    • Act as the contact point for the Supervisory Authorities on issues related to the processing of personal data, company registrations, data subject inquiries, and assist in support of breach reporting;
    • Respond to data subject inquiries and complaints;
    • Manage the creation and maintenance for privacy notices to ensure transparency;
    • Support customer engagement;
    • Manage the creation and maintenance of Standard Contractual Clauses;
  • Coordinate annual certification under EU-US and Swiss-US Privacy Shield.
  • Collaborate with Procurement to accomplish contract reviews and remediate gaps in contracts.
  • Maintain current knowledge of applicable EU privacy and accreditation standards.
  • Develop, design and manage portfolio, privacy metrics, dashboards and performance measurements.
  • Assist Global Privacy Manager with other privacy related projects as they arise.
  • Travel to other office locations as required and collaborate with teams globally in a virtual setting.

Key criteria required...

  • Expertise in national and European data protection laws and global practices including an in-depth understanding of the GDPR.
  • Ability to maintain adequate independence to perform DPO function while supporting other organizational tasks.
  • Demonstrable negotiation skills to interface successfully with data subjects, Works Councils and DPAs.
  • Demonstrable communication skills to speak with a wide-ranging audience, from the board of directors to data subjects, controllers, processors and lawyers.
  • Ability to work largely autonomously with limited direct supervision.  

Also, we’d love it if you have...

  • Bachelor’s degree (2.1 or first class) with relevant experience or relevant experience with a Master’s degree.
  • Demonstrable experience in ability to protect the brand and reputation of the firm in terms of privacy and data protection.

If you can do all this and more, you’ll enjoy a growing career as we work hard to continuously innovate the world of engineering and cyber security.

Additional information for your consideration...

You will need to be able to hold and maintain UK Government clearances

Being a part of Northrop Grumman gives you the opportunity to use your skills to make a difference in our mission of enabling global security. Our company grows because of our employees' dedication and commitment to achieving our mission, something we always remember. In return for working for us you will have access to a benefits package that provides you with flexibility to balance your professional career with your personal life, health & well-being benefits, discount schemes, pension benefits and investment in your future development.

We are committed to equality and diversity in our workplace. Northrop Grumman provides equal employment opportunities to all employees and applicants without regard to an individual’s protected status, including race, ethnic origin, colour, nationality, national origin, ancestry, sex/gender, gender identity/expression, gender reassignment, sexual orientation, marriage/civil partnership, pregnancy/maternity, religion or belief, creed, age, disability, genetic information, or any other protected status or characteristic.