Kraken is the technology tentacle of the Octopus Energy Group.
Our Global Platform Engineering department is responsible for architecting, developing, and maintaining the robust and scalable infrastructure, tooling, and services that power and support our platform. As a key member of a newly-formed Data Privacy and Protection team within the Platform department, you'll be central in enhancing our commitment to safeguarding data. Your expertise in privacy regulations and data protection measures will guide our strategies, ensuring both compliance and maximum value for our brands and clients.
Joining our team gives you a unique opportunity to work on a diverse range of new Data Privacy and Protection initiatives. Keeping up-to-date with the latest developments in data protection laws and best practices will be essential. Your analytical skills and attention to detail will be invaluable as you identify areas for improvement, ensure proper data handling, and generally bolster our Data Privacy and Protection efforts.
You’ll report into the Privacy Lead.
\n- Support the team in providing data protection and privacy expertise
- Collaborate with product, engineering, and legal teams to ensure our platform’s features and services meet data privacy and protection regulations and best practices
- Support the team in providing authoritative counsel to teams across the organisation on implementing and maintaining data privacy and protection best practices
- Work closely with the Information Security team to align security measures with data protection goals
- Engage with the internal developer community to advocate for the importance of data privacy and protection in software development
- Define and document data handling policies and procedures that meet global compliance regulations and internal standards, including ROPAs
- Assist development teams in understanding when DPIAs are required, and assist in completing Privacy Impact Assessments and Data Protection Impact Assessments for new and existing features
- Support in the development of training programs for internal teams on global privacy regulations, industry best practices, and internal company policies
- Support in data privacy incidents, investigations and reporting to supervisory authorities where necessary
- Regularly update key stakeholders about the state of data privacy and protection on our platform, emerging risks, and strategies being taken to mitigate them
- A minimum of 2 years experience in a Privacy Analyst role
- Understanding and application of the majority (if not all) Articles of the General Data Protection Regulation, UK DPA 2018, including Privacy by Design and Privacy by Default
- Excellent attention to detail and record keeping
- Excellent verbal and written communication skills, particularly the ability to translate complex regulatory requirements into actionable tasks for different departments
- Strong problem-solving and analytical capabilities
- Proven experience in working closely with technical teams, including software development and information security
- Knowledge of Information Security policies and measures in large organisations, and how data protection and privacy ties into them
- Experience creating records of processing activities, including identifying activities, defining the purpose and lawful basis, identifying subjects, categorising data, and defining realistic and compliant retention periods
- Very well organised; able to meet deadlines under pressure; prioritise effectively
- A self-starter, taking the initiative to help drive the team’s initiatives forward
- A keen interest in staying up-to-date with the fast-moving landscape of data protection regulations and technologies, including international legislation that will impact our global clients
- Working knowledge of Google Suite
- Privacy certifications such as CIPP or CIPM will be an advantage
- LLB Law Degree
- Familiarity with utility sector regulations
- Experience working for a ‘processor’ and a ‘controller’
- Wondering what the salary for this role is? Just ask us! On a call with one of our recruiters it's something we always cover as we genuinely want to match your experience with the correct salary. The reason why we don't advertise is because we honestly have a degree of flexibility and would never want salary to be a reason why someone doesn't apply to Octopus - what's more important to us is finding the right octofit!
- Octopus Energy is a unique culture. An organisation where people learn, decide, and build quicker. Where people work with autonomy, alongside a wide range of amazing co-owners, on projects that break new ground. We want your hard work to be rewarded with perks you actually care about! We won best company to work for in 2022, on Glassdoor we we're voted 50 best places to work in 2022 and our Group CEO, Greg has recorded a podcast about our culture and how we empower our people
- Visit our perks hub - Octopus Employee Benefits
We’re looking for someone who thrives on solving tough problems. Someone who can challenge those around them, and be challenged, while delivering delightful experiences for our internal and external customers.
If this sounds like a great opportunity but you are based outside of London, we are also open to remote working 🏠
If this sounds like you then we'd love to hear from you.
Studies have shown that some groups of people, like women, are less likely to apply to a role unless they meet 100% of the job requirements. Whoever you are, if you like one of our jobs, we encourage you to apply as you might just be the candidate we hire. Across Octopus, we're looking for genuinely decent people who are honest and empathetic. Our people are our strongest asset and the unique skills and perspectives people bring to the team are the driving force of our success. As an equal opportunity employer, we do not discriminate on the basis of any protected attribute. Our commitment is to provide equal opportunities, an inclusive work environment, and fairness for everyone.
