Job Specifications
Save the Children International has an exciting opportunity for a Lead, Data Protection to join our global team.
Team and Role Purpose
The Information Security and Data Protection Services Team safeguards the confidentiality, integrity, and availability of SCI’s information assets. The team identifies, assesses, and manages Information Security and Data Protection risks, and supports the investigation and management of incidents and data breaches.
Role purpose
The Lead, Data Protection supports and drives SCI in meeting its obligations under UK GDPR and other global data protection and privacy legislation. Reporting to the Head of Information Security Services, this role provides leadership, oversight, operational and advisory expertise in data protection and assurance activities, ensuring that sensitive data is managed responsibly and securely.
The Lead will act as the operational lead for global data protection compliance, working in close partnership with the Data Protection Officer (DPO) to ensure regulatory alignment and organisational accountability.
The role contributes to the ongoing maturity and strategic development of the SCI’s data protection framework.
Job Title: Lead, Data Protection
Reports To: Head of Information Security Services
Work Pattern: Hybrid/Remote with flexible working options available
Location: Any approved Save the Children International office location. For a full list of locations that Save the Children International can hire in, please visit: SCI Careers
Required Time Zone: Any
Contract Length: Permanent
Right to Work: The successful candidate must possess the unrestricted right to work in their current or preferred location for the duration of employment
Language Requirements: English
International Travel: up to 5-10%
Remit: Global
Principal Accountabilities
Lead and coordinate the global implementation of data protection and privacy compliance frameworks across SCI and Members, ensuring consistent standards across diverse regulatory environments.
Develop and deliver the Global Data Protection Strategy, plan, risk framework, and governance model.
Maintain, and continuously enhance data protection policies, procedures, and guidance documents.
Design, lead and oversee assurance activities, including audits and reviews of data handling practices, data sharing, and retention.
Oversee monitoring of compliance gaps and provide strategic reporting, escalating issues to the Data Protection Officer as appropriate.
Lead and coordinate responses to personal data breaches, including coordination of incident documentation and follow-up actions.
Oversee and ensure effective management of data subject rights requests, maintaining quality timeliness, and legal compliance.
Lead the design and delivery of training and awareness programmes to embed a culture of privacy and data protection across SCI and Members.
Lead the preparation of reports, dashboards, and materials for the Data Protection Steering Committee.
Act as subject matter expert on regulatory developments, advising on operational impacts and provide leadership and guidance to global teams and country offices ensuring consistent application of data protection standards.
Essential
Experience and Skills
Strong and applied expert knowledge of UK GDPR and other major privacy frameworks.
Demonstrated experience in leading data protection compliance activities, including handling subject rights requests and supporting incident management.
Good understanding of information technology and data management systems.
Strong interpersonal skills with the ability to engage and challenge senior stakeholders constructively.
Experience in drafting policies, procedures, or guidance documents.
Ability to prioritise strategically and manage competing demand in a complex environment.
Excellent written and verbal communication skills.
Ability to identify compliance risks and translate them into practical, and context-specific solutions.
Strong appreciation of effective Data Protection in a multinational humanitarian and development organisation.
Desirable
Familiarity with cybersecurity risks and information security standards.
Experience working in a large, complex, or global organization.
Exposure to project or change management activities.
Essential
Education and Qualifications
Degree or diploma in Law, International Development, Computer Science, Business Technology, Cybersecurity, Information Security, or relevant professional experience.
Recognised privacy qualification e.g. CIPP, ISEB, C-DPO
Desirable
IT security or assurance certification (e.g., ISO27001 Implementer, CISSP, CISM).
Working at Save the Children International
Save the Children is the world's leading organisation for children, employing ~25,000 staff. We save children's lives. We fight for their rights. We help them fulfil their potential. Through our work in 116 countries, we put the most deprived and marginalised children first.
We know that great pe