POKE
117 jobs - 0 added today
Recruiting? Call us on 01772 639608
Email me jobs relevant to my job search
17 days ago
only 11 days until close

GDPR/PCI Support Officer


Soho House
Location: London
Job type: Permanent
Sector: I.T. Systems
Category: Accounts and Administration Jobs
Apply on company site
Select how you want to share:
View similar
Who we are…

Soho House & Co is a collection of members' clubs, restaurants, hotels, workspaces and cinemas, catering to those in the film, media, fashion and creative industries. The company has unique ventures throughout the UK, USA, Canada, Europe and Asia, with new openings planned globally.

The Mission…

Soho House is a platform for creativity and a space for its diverse membership to have fun, connect, discover and grow. Our passion is people, and we put members and our team at the heart of everything we do. We promote equality, respect and kindness within our walls, and in every community, we create around the world. At Soho House, culture is everything and we believe that our Houses are only as good as the people who work within them.

The Role…

You will be responsible for supporting our privacy compliance programme working closely with the Data Security team. Working at our London Offices but having a global remit, you will liaise with internal teams ensuring they are advised on the latest data protection laws and regulations in support of business wide enquiry concerning GDPR & PCI DSS compliance.

Continuing development of a privacy governance strategy and compliance framework, and policies and procedures for Soho House globally.

You will also have experience of working as part of an in-house team and have advised businesses or clients on risk assessments and mitigation across digital products and new technology and processes concerning the processing of personally identifiable information.

This role will roughly be 40% project focused on GDPR compliance and 40% project focused on PCI compliance, and 20% business as usual/support focused.

The role will be based at the London Support Office and remotely and reports directly to the Group IT Security and Infrastructure Manager with whom they will work with to ensure we keep a high compliance posture throughout all Soho House & Co properties and systems.

GDPR Responsibilities include:

* Support the data compliance program in engaging article.25 Privacy by Design documentation required for the business, working closely with SMEs and often seeking advice from our internal and external Security Team/Consultants
* Supporting Individual’s Rights in response to Data Subject Access Requests
* Supporting the Incident Response Team by collaborating with the information security team, advising on organisational and technical measures required to safeguard data, incident response policies and processes, addressing suspected or actual data privacy and security incidents and advising on the appropriate containment, investigation and remediation of any breaches, notification and regulatory reporting requirements, and communications.
* Supporting data protection related enquiries across the business
* Supporting ad-hoc compliance related tasks
* Manage own workload and be self-motivated
* Assist with PCI DSS compliance gap analysis and formal compliance assessments
* Maintain the PCI DSS asset register
* Maintain compliance metrics and assist with internal and external reporting
* Maintain the group compliance calendar, including scheduling QSA resources
* Be able to travel to different sites to engage with stakeholders and undertake compliance assessments
* Be familiar and stay up to date with PCI DSS
* Be familiar and stay up to date with the payment industry and wider Info Sec risks and threats
* Engage and build relationships with stakeholders, technical, operational, internal and external

PCI Responsibilities include:

* Manage own workload and be self-motivated
* Assist with PCI DSS compliance gap analysis and formal compliance assessments
* Maintain the PCI DSS asset register
* Maintain compliance metrics and assist with internal and external reporting
* Maintain the group compliance calendar, including scheduling QSA resources
* Be able to travel to different sites to engage with stakeholders and undertake compliance assessments
* Be familiar and stay up to date with PCI DSS
* Be familiar and stay up to date with the payment industry and wider Info Sec risks and threats
* Engage and build relationships with stakeholders, technical, operational, internal and external

Requirements

* Solid understanding of applicable European and Global Privacy laws and regulations
* Privacy experience at an in-house team
* Experience advising business partners on privacy risk assessment and mitigation across digital products and new technology
* Passion for and understanding of technology, and data processing activities
* Experience working within a global team
* Experience working collaboratively with cross-functional teams to get the job done
* Able to communicate effectively and credibly
* Ability to assess legal, practical and business risks in a fast-paced environment and provide sound advice under tight deadlines
* Ability to establish the next step, or seek advice to find out
* Ability to interpret complex data analysis and present to the business in support of compliance projects
* Prior experience working with digital technology required
* Experienced in producing and implementing data privacy and compliance governance structures in a global organisation.
* Key strategies for protecting card holder data
* How to build relationships and influence stakeholders
* Awareness of core Info Sec controls in a commercial environment
* Relevant experience and knowledge of ISO27001 and the General Data Protection Regulation (GDPR) and strong knowledge of PCI DSS.

Benefits

Soho House offers competitive compensation packages that feature global benefits and perks. Whether you’re seeking entry-level employment or a new opportunity to expand your profession, we offer training to develop the technical and managerial skills necessary to enhance your career.

* Soho Impact: Empowering the Soho House Community to make positive change, through mentoring, apprenticeship, local outreach and sustainability
* Career Development: Soho House can progress your career domestically or internationally as well as managerially or technically
* Learning & Development: An extensive range of internally and externally run courses are available for all employees.
* Cookhouse & House Tonic: Celebrating our passion for food and drink. Check out our monthly calendars and get involved in trips, training's and events. Available to all.
* Team Events: From fitness sessions to cinema screenings and art classes, each month we hold a series of fun events which you can sign up to.
* Paid Time Off: Full- Time Employees have sick day's + vacation days.
Who we are…

Soho House & Co is a collection of members' clubs, restaurants, hotels, workspaces and cinemas, catering to those in the film, media, fashion and creative industries. The company has unique ventures throughout the UK, USA, Canada, Europe and Asia, with new openings planned globally.

The Mission…

Soho House is a platform for creativity and a space for its diverse membership to have fun, connect, discover and grow. Our passion is people, and we put members and our team at the heart of everything we do. We promote equality, respect and kindness within our walls, and in every community, we create around the world. At Soho House, culture is everything and we believe that our Houses are only as good as the people who work within them.

The Role…

You will be responsible for supporting our privacy compliance programme working closely with the Data Security team. Working at our London Offices but having a global remit, you will liaise with internal teams ensuring they are advised on the latest data protection laws and regulations in support of business wide enquiry concerning GDPR & PCI DSS compliance.

Continuing development of a privacy governance strategy and compliance framework, and policies and procedures for Soho House globally.

You will also have experience of working as part of an in-house team and have advised businesses or clients on risk assessments and mitigation across digital products and new technology and processes concerning the processing of personally identifiable information.

This role will roughly be 40% project focused on GDPR compliance and 40% project focused on PCI compliance, and 20% business as usual/support focused.

The role will be based at the London Support Office and remotely and reports directly to the Group IT Security and Infrastructure Manager with whom they will work with to ensure we keep a high compliance posture throughout all Soho House & Co properties and systems.

GDPR Responsibilities include:

* Support the data compliance program in engaging article.25 Privacy by Design documentation required for the business, working closely with SMEs and often seeking advice from our internal and external Security Team/Consultants
* Supporting Individual’s Rights in response to Data Subject Access Requests
* Supporting the Incident Response Team by collaborating with the information security team, advising on organisational and technical measures required to safeguard data, incident response policies and processes, addressing suspected or actual data privacy and security incidents and advising on the appropriate containment, investigation and remediation of any breaches, notification and regulatory reporting requirements, and communications.
* Supporting data protection related enquiries across the business
* Supporting ad-hoc compliance related tasks
* Manage own workload and be self-motivated
* Assist with PCI DSS compliance gap analysis and formal compliance assessments
* Maintain the PCI DSS asset register
* Maintain compliance metrics and assist with internal and external reporting
* Maintain the group compliance calendar, including scheduling QSA resources
* Be able to travel to different sites to engage with stakeholders and undertake compliance assessments
* Be familiar and stay up to date with PCI DSS
* Be familiar and stay up to date with the payment industry and wider Info Sec risks and threats
* Engage and build relationships with stakeholders, technical, operational, internal and external

PCI Responsibilities include:

* Manage own workload and be self-motivated
* Assist with PCI DSS compliance gap analysis and formal compliance assessments
* Maintain the PCI DSS asset register
* Maintain compliance metrics and assist with internal and external reporting
* Maintain the group compliance calendar, including scheduling QSA resources
* Be able to travel to different sites to engage with stakeholders and undertake compliance assessments
* Be familiar and stay up to date with PCI DSS
* Be familiar and stay up to date with the payment industry and wider Info Sec risks and threats
* Engage and build relationships with stakeholders, technical, operational, internal and external

Requirements

* Solid understanding of applicable European and Global Privacy laws and regulations
* Privacy experience at an in-house team
* Experience advising business partners on privacy risk assessment and mitigation across digital products and new technology
* Passion for and understanding of technology, and data processing activities
* Experience working within a global team
* Experience working collaboratively with cross-functional teams to get the job done
* Able to communicate effectively and credibly
* Ability to assess legal, practical and business risks in a fast-paced environment and provide sound advice under tight deadlines
* Ability to establish the next step, or seek advice to find out
* Ability to interpret complex data analysis and present to the business in support of compliance projects
* Prior experience working with digital technology required
* Experienced in producing and implementing data privacy and compliance governance structures in a global organisation.
* Key strategies for protecting card holder data
* How to build relationships and influence stakeholders
* Awareness of core Info Sec controls in a commercial environment
* Relevant experience and knowledge of ISO27001 and the General Data Protection Regulation (GDPR) and strong knowledge of PCI DSS.

Benefits

Soho House offers competitive compensation packages that feature global benefits and perks. Whether you’re seeking entry-level employment or a new opportunity to expand your profession, we offer training to develop the technical and managerial skills necessary to enhance your career.

* Soho Impact: Empowering the Soho House Community to make positive change, through mentoring, apprenticeship, local outreach and sustainability
* Career Development: Soho House can progress your career domestically or internationally as well as managerially or technically
* Learning & Development: An extensive range of internally and externally run courses are available for all employees.
* Cookhouse & House Tonic: Celebrating our passion for food and drink. Check out our monthly calendars and get involved in trips, training's and events. Available to all.
* Team Events: From fitness sessions to cinema screenings and art classes, each month we hold a series of fun events which you can sign up to.
* Paid Time Off: Full- Time Employees have sick day's + vacation days.
Apply on company site

Email me jobs relevant to my job search

  Back to the top