Principal Regulatory Compliance Analyst

UK CITIZENSHIP REQUIRED FOR THIS POSITION:
Yes RELOCATION ASSISTANCE:
No relocation assistance available CLEARANCE TYPE: UK-Security Check (SC) TRAVEL:
Yes, 25% of the Time

This is a highly visible position that actively leads and engages with multiple internal and external stakeholders to provide subject matter expertise, advice, and monitoring for Northrop Grumman's Privacy team, including EU/UK data processing and data control activities.

• Supporting risk and compliance activities, performing data inventory and data mapping and other privacy tasks in support of the department's goals and objectives
• Support implementing consistent privacy practices in multiple languages across multiple entities and jurisdictions in the EU, ensuring GDPR compliance
• Provide independent Subject Matter Expert counsel, as a key resource and point of contact to business, partner functions, and other key stakeholders, informing and advising of their obligations under the GDPR and other EU data protection regulations to meet legal and regulatory requirements wherever NG does business in the region
• Cultivate a strong compliance ethos
• Foster a data protection culture across Northrop Grumman’s EU/UK entities, making recommendations for initiatives and communications to regularly refresh employee awareness and engagement in data protection
• Conduct data mapping, data flow and record keeping, as well as determine the associated legal basis of processing
• Raise privacy awareness through staff training
• Support and carry out privacy project reviews for global stakeholders
• Supports Works Council reviews
• Conduct Privacy Impact Assessments to identify and mitigate potential privacy risks.
• Respond to data subject rights requests in compliance with Company framework
• Manage the maintenance for privacy notices to ensure transparency
• Review and advise on Data Processing Agreements and Cross Border Transfer Mechanisms.
• Conduct third party privacy risk assessments, ensuring vendors comply with data protection obligations. Assist International Privacy Manager with other privacy related projects as they arise
• Work collaboratively with teams globally in a virtual setting

• Successful track record of identifying risk and building successful mitigation and management strategies
• Demonstrable experience of developing policies & procedures to meet Data Protection requirements, including GDPR legislation
• Evidenced experience of implementing & managing Data Protection in a global organisation

• IAPP Certification such as CIPP/E
• Knowledge of UK/European data protection law
• Adaptability in a changing environment
• Highly-organised and proficient at multi-tasking, working with and resolving competing priorities
• Excellent interpersonal skills, able to engage effectively with a wide range of stakeholders, customers, and cultures at different levels, in different organisations and geographic locations
• Fluent in written and spoken English
• An engaging 'can do' attitude
• Innovative and creative approach, able to think outside the box
• Self-motivated, able to work autonomously and as part of a wider, virtual team
• Good analytical skills, adept at trouble-shooting and problem-solving
• Flexible and responsive attitude
• Strong customer orientation
• Excellent attention to detail
• Travel requirements:
  Frequent travel, both in the UK and overseas, particularly Europe to attend meetings and conferences and undertake project activities
• Valid UK driving licence
• Clearance requirements:
  The post-holder must be a UK citizen able to hold and maintain UK Government clearances

Northrop Grumman is committed to hiring and retaining a diverse workforce, and encourages individuals from all backgrounds and all abilities to apply and consider becoming a part of our diverse and inclusive workforce.