Sisk is seeking a Data Protection Manager to lead our data protection programme and ensure compliance with global data protection laws and regulations. Reporting to senior leadership, this role is responsible for developing and implementing policies, overseeing compliance, and acting as the key point of contact on privacy matters. The successful candidate will provide guidance across business units, manage risk, and ensure personal data is safeguarded in line with GDPR, the EU AI Act and international standards.

• Develop, implement and oversee Group-wide data protection policies, procedures and compliance frameworks

• Act as the main contact for regulators, supervisory authorities and internal stakeholders on all data protection matters

• Manage and respond to Data Subject Rights requests including access, rectification and erasure

• Lead Data Protection Impact Assessments (DPIAs), Legitimate Interest Assessments (LIAs) and ensure privacy is integrated into projects by design and default

• Maintain and update the Record of Processing Activities (ROPA), ensuring accuracy of data flows and inventories

• Oversee data breach management, including investigation, reporting and communication with regulators as required

• Deliver training and awareness programmes to employees at all levels to promote a strong culture of data protection and accountability

• Monitor emerging data protection and AI regulatory developments and advise the business on compliance requirements

• Collaborate with IT, HR, Legal, Compliance and other stakeholders to embed data protection across operations

• Significant experience in data protection, privacy, compliance or governance roles with responsibility for policy development and oversight

• Proven experience advising senior leaders and boards on data protection issues

• Strong knowledge of GDPR, the EU AI Act, UK Data Protection Act, US privacy laws and other international frameworks

• Experience in managing complex projects across multiple jurisdictions

• Demonstrated ability to balance regulatory requirements with practical business needs

• Track record of managing sensitive information with confidentiality and integrity

• Professional certifications such as CIPP/E, CIPM or CIPT are highly desirable

• Degree in law, business, IT, compliance or related field preferred

• Strong leadership, stakeholder management and communication skills

• Excellent analytical and organisational ability with high attention to detail

• Experience delivering training and awareness programmes on compliance or data protection

• Familiarity with IT security and risk management frameworks such as ISO 27001 or NIST is advantageous

At Sisk we are committed to ensuring the highest standards of data protection. We offer competitive salary and benefits, flexible and hybrid working arrangements, structured professional development and a collaborative environment that values trust, accountability and respect.

We are an equal opportunities employer. All applicants will be considered without regard to age, disability, gender, gender identity, marital or civil partnership status, pregnancy or maternity, race, religion or belief, sexual orientation or socio-economic background. Our recruitment practices are aligned with the EU Pay Transparency Directive, GDPR, the EU AI Act, UK equality legislation, US EEOC requirements and international best practice.