Data Protection Manager

London | Ref: BBBH32076


Data Protection Manager

UK coverage

Competitive Salary + Car + Bonus

Role Profile

Cast UK are delighted to be recruiting a Data Protection Manager for Bunzl UK & Ireland which is part of Bunzl PLC, a multinational distribution and outsourcing company headquartered in London and active in 30 countries.

Bunzl UK & Ireland is headquartered in Epsom and the Data Protection Manager must but able to travel readily and easily throughout the UK & Ireland so a central or Midlands location would be ideal. In total there are 5 Divisions and 25 operating companies.

The Data Protection Manager is responsible for driving compliance against Bunzl's Information Security and Data Privacy Policies and Standards to support information asset owners and holding them accountable for the mitigation of identified security and privacy risks. This involves leading and managing risk assessments against the Bunzl's Security and Data Privacy Policies as well as detailed asset-based security assessments.

Key Responsibilities

  • Supporting the operational Information security and Data Privacy compliance activities, including building assurance against areas of the polices, and compliance measurement
  • Providing input into Data Privacy Impact Assessments and other privacy risk assessments
  • Execute process assessment, which assesses, records, and mitigates information security and data privacy risks
  • Identify, assess and support the business with the management of information security risks
  • Undertake Third-party supplier risk assessment/due diligence activities
  • Monitor and report on compliance with security policies and controls on a regular basis
  • Day to day coordination and management of subject requests and GDPR queries
  • Providing support and training to internal stakeholders and colleagues
  • Management of Cookies and Privacy notices on our web sites
  • Undertake Data Protection Impact assessments and report to Privacy Champions
  • Maintaining a Record of Processing Activities and associated Data Mapping and documentation
  • Maintain the information risk register and support continuous improvement of information security risk management practices
  • Managing and maintaining Third-party supplier risk assessment/due diligence
  • Assist with PCI-DSS and Cyber Essentials certification

Skills & Experience Required

  • Minimum requirements of GDPR Foundation Certificate, ideally CIPP/E
  • ISO 27001:2013 experience
  • Methodical and numerate
  • Proactive - Ability to lead on new initiatives to help implement new services and recommend and suggest improvements to service

About Cast UK

Cast UK is a leading executive consultancy, providing national recruitment solutions to both clients and candidates. Specialising in, HR, Procurement, Buying, Supply Chain, and Logistics, each member of our specialist team has a professional background specific to their recruiting sector. With this unique insight and knowledge, our consultants are able to place individuals from trainee through to main board. For more information on Cast UK and a complete list of all of our current vacancies, please visit

We're here to help

Please note that all telephone calls are recorded for training & monitoring purposes