Compliance and Data Privacy Manager

At Lifebit, we carve our own path. Trusted by Governments and world-leading pharma institutions and funded with over $60m, we are on a mission to harness the power of connected data and bring precision medicine to life globally. The key to saving human lives is providing researchers across the globe with the right data to develop more precise drugs faster.

Generating large amounts of biomedical data has become relatively straightforward. The challenge now is finding, accessing and analysing this sensitive data stored across thousands of disconnected locations. It is frustrating and painfully difficult for researchers.

Lifebit has created a patented, federated technology that brings analysis and computation to where data resides. This enables researchers to run analyses on multiple, distributed datasets in-situ, avoiding the risky movement of highly-sensitive data.

Lifebit powers pioneers in national precision medicine such as Genomics England (UK Government) and guides them on how to make their valuable data usable securely. Biotech and pharma leaders like Boehringer Ingelheim turn to Lifebit to connect them to this otherwise locked up data to obtain novel therapeutic insights.

Our technology is unmatched and momentum is on our side - but we need an exceptionally strong team to help boost Lifebit to incredible new heights.

Lifebit is seeking a highly motivated and experienced Compliance and Data Privacy Manager to join our team. The successful candidate will be responsible for executing and managing our compliance and data privacy initiatives, ensuring that our operations adhere to relevant regulations, industry standards, and best practices. This role requires strong leadership, attention to detail, and a proactive approach to managing compliance risks.

Requirements

Qualifications:

• Education in information technology and post-graduate legal qualification required or Law degree
• 3-5 years of experience in compliance, data privacy, or related fields
• In-depth knowledge of data protection regulations (e.g., GDPR, CCPA) and compliance frameworks (e.g., ISO 27001, SOC 2)
• Strong understanding of software as a platform and as a service as well as knowledge on modern cloud computing systems
• Relevant certifications (e.g., Certified Information Privacy Professional (CIPP), Certified Information Systems Auditor (CISA), etc.) preferred
• Experience in the healthcare, biotech, or life sciences industries is a plus

Skills:

• Attention to detail and extremely well organized
• Ability to make judgment calls and diffuse difficult situations
• Strong problem-solving skills and ability to manage priorities effectively
• Process and solution-oriented mindset
• Excellent verbal and written communication skills
• Ability to deliver training and communicate complex concepts effectively
• Strong interpersonal skills and ability to collaborate across teams
• Works well under pressure, comfortable in working within time restrictions and deadlines

Responsibilities:

• Work cross-functionally with internal teams to ensure compliance and data privacy requirements are integrated into our products and services.
• Identify process gaps and implement improvements to enhance compliance operations across the organization.
• Review and interpret data protection regulations, develop compliance plans, and prepare documentation for regulatory agencies.
• Act as a resource for internal staff on compliance and data privacy matters, providing guidance and solutions as necessary.
• Perform compliance audits to assess adherence to established protocols and identify areas for improvement.
• Maintain up-to-date documentation and policies related to compliance and data privacy activities.
• Design, implement, and manage an effective compliance program, including policies, procedures, and training.
• Monitor regulatory changes and communicate updates to relevant stakeholders to ensure ongoing compliance.
• Conduct regular risk assessments to identify and mitigate compliance risks.
• Manage compliance-related incidents, investigations, and reporting, ensuring appropriate corrective actions are taken.
• Collaborate with external auditors, regulators, and stakeholders to obtain necessary certifications and approvals.
• Provide guidance and training to employees on compliance and data privacy matters, fostering a culture of compliance within the organization.
• Conduct due diligence on third parties, suppliers, and vendors to ensure compliance with regulations and standards.
• Assist in the development and deployment of training programs for legal compliance policies and external regulatory rules.
• Collaborate with internal stakeholders to develop and implement corporate policies and enterprise risk management strategies.
• Provide guidance and support to business units on compliance and risk management matters, including contract negotiations and operational issues.
• Collaborate with the Information Technology department to ensure that the company's technology systems and processes are secure and comply with relevant regulations.
• Conduct internal audits to ensure compliance with policies and procedures.
• Identify basic process gaps to improve quality and timeliness for compliance operations across the organization
• Ability to write policies, review laws and standards, and devise policy and contract language.

Benefits

• Competitive salary
• 25 days of annual leave plus the usual public holidays
• Monthly team activities
• £1,000 per year personal budget for professional development ie Conferences, events, and training resources
• An international and diverse team
• Exposure to problems and applications in the cloud, data analysis, ML, life sciences, and big data fields
• Flexible working during summer