×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Data Security Information Security Cybersecurity

Compliance Officer, IT​/Tech

Job in Greater London, London, Greater London, W1B, England, UK
Listing for: CF
Full Time position
Listed on 2026-06-20
Job specializations:
  • IT/Tech
    Data Security, Information Security, Cybersecurity
Salary/Wage Range or Industry Benchmark: 40000 - 60000 GBP Yearly GBP 40000.00 60000.00 YEAR
Job Description & How to Apply Below
Location: Greater London

About us

We are a leading consultancy with a purpose to make an enduring impact on health and healthcare. We work with leaders and frontline teams to improve health, transform healthcare, drive adoption of innovation and create value through investment.

Our consultancy serves the entire healthcare sector, from payors and providers of care, to life science companies, health tech and sector suppliers and health investors. We provide end-to-end services, from strategy through implementation, accelerated by data, digital and AI.

We shape opinion through evidence-based thought leadership on key issues affecting health. With unmatched ability to access and use health data, our consultants are a driving force for delivering positive and meaningful change.

About the role

The Compliance Officer sits within the Data Operations team and reports directly to the Director of Data, Analytics and Intelligence. This operational coordinator role is responsible for information governance (IG), data protection, and regulatory compliance across CF. The Compliance Officer provides day-to-day coverage of the Data Protection Officer responsibilities and will undertake recognised DPO training and certification, acting as the primary point of contact for all compliance-related queries across the business.

The role spans three interconnected business functions— IT, People, and Data Operations— with additional support to the wider corporate team as needed. The Compliance Officer is responsible for reducing regulatory risk, maintaining audit readiness, and providing structured assurance to the Board and Executive Committee. Responsibilities include information governance and data protection, ISO certification coordination, data breach compliance and incident response, people and employment compliance, regulatory monitoring, and legal and IP query management across the UK, Middle East and Europe.

This is an excellent opportunity for a graduate with a legal background—or someone early in their compliance career—to develop a broad and substantive compliance portfolio within a dynamic, data-rich healthcare consultancy. Full training and professional development support will be provided.

Responsibilities Policy Development and Maintenance
  • Develop, maintain and regularly review internal compliance policies to ensure staff are equipped to meet regulatory obligations.
  • Data protection and privacy policies, including employee and candidate privacy notices.
  • Employment contracts.
  • Associate agreements and Statements of Work (SoWs).
  • Anti-bribery and conflicts of interest policies.
  • Information security policies aligned to ISO 27001.
  • Identify and flag compliance issues, deviations from standard terms, or matters with wider legal or commercial implications, escalating to the People team and legal advisors as appropriate.
  • Own the annual policy review cycle, coordinating with relevant function leads to ensure policies remain current and fit for purpose.
  • Develop accessible plain‑English guidance and FAQs to support staff understanding and day‑to‑day compliance.
Data Protection Officer
  • Act as the operational Data Protection Officer and primary internal contact handling day‑to‑day data protection queries, escalating to the Director of Data, Analytics and Intelligence as required.
  • UK GDPR compliance queries.
  • CF technical products (e.g. Health Strata).
  • Maintain and update Records of Processing Activities (ROPAs) across the business.
  • Maintain the Information Asset Register (IAR) across CF.
  • Review and advise on Data Protection Impact Assessments (DPIAs) and Data Sharing Agreements (DSAs) for new projects, client engagement and internal systems.
Data Breach Compliance and Incident Response
  • Ensure CF’s data breach policy and incident response process is embedded across the business and adhered to consistently.
  • Act as the first point of contact for suspected or confirmed data breaches, leading the internal response and coordinating with relevant function leads.
  • Maintain a data incident and breach register, ensuring all incidents are documented with appropriate detail for regulatory audit purposes.
  • Conduct post‑incident reviews to identify root causes and drive remediation,…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search