HMRC gears up for GDPR with search for data protection officer

HMRC offering up to £90k for a candidate that has an in-depth understanding of GDPR

HMRC is gearing up for the EU's General Data Protection Regulations (GDPR) by hiring a data protection officer (DPO).

The organisation is offering up to £90,000 for the right candidate, who will be based at 100 Parliament Street, London.

The role will sit within the Cyber Security and Information Risks (CSIR) directorate, but will report directly and independently to HMRC's executive committee.

With GDPR coming into force in May 2018, the government has decided that UK organisations must adhere to the regulations even after Brexit, albeit with slightly different requirements under the new Data Protection Bill, which is awaiting parliamentary approval.

One of the mandates of GDPR is for organisations to have a DPO.

HMRC has said that its new DPO will represent the organisation in all interactions with the Information Commissioner's Office (ICO), while providing assurance on HMRC's implementation of, and compliance with, GDPR.

"This is a demanding role with significant leadership and assurance responsibilities across the whole span of data protection and data privacy issues; and a requirement is that it functions independently within the organisation and has a line of access to the most senior level," said Jon Ashton, director of cyber security and information risks, and head of profession for government security.

"I am looking for an inspirational leader who is up for the challenge of building and leading a new team to support the execution of HMRC's GDPR obligations, drawing on resources from across the organisation and working with other DPOs in the public and private sector."

Applications for the role close on October 2nd.