IT Data Protection and Support officer

Key Responsibilities

• Data Protection & Compliance
• Draft, review, and maintain IT and data protection policies, procedures, and SOPs (e.g., Information Security Policy, Data Retention Policy, Access Control Policy).
• Assist in ensuring compliance with data protection regulations (e.g., GDPR, CCPA, ISO 27001 principles).
• Conduct internal checks to ensure adherence to data privacy and IT governance practices.
• Help maintain the Records of Processing Activities (RoPA) and assist in Data Protection Impact Assessments (DPIAs).
• Client Questionnaires & Documentation
• Review and complete IT security and data protection questionnaires from clients and partners.
• Collaborate with internal stakeholders to gather accurate technical and policy information.
• Maintain a library of standard responses for client security and privacy due diligence requests.
• Support client audits by providing relevant documentation and compliance evidence.
• IT Support & Operations
• Provide Tier 1–2 desktop and application support for internal users (hardware setup, software installation, troubleshooting).
• Manage user access, account provisioning, and permissions in core systems.
• Maintain endpoint protection, patching, and asset management practices.
• Support backup and recovery operations and coordinate with vendors when needed.
• Contribute to IT process improvement and automation initiatives.
• Cross-Functional Collaboration
• Work closely with Information Security, Legal, HR, and Operations teams to ensure IT and data policies are aligned and enforced.
• Assist during audits, assessments, or external reviews.
• Participate in IT awareness and training sessions for staff.
  

Education

• Bachelor’s degree in Information Technology, Computer Science, or related field.
  

Experience

• 5-8 years of experience in IT support, compliance, or data protection.
• Exposure to regulatory or standards frameworks (GDPR, ISO 27001, SOC 2, etc.) is a plus.
• Experience writing and maintaining IT/security policy documents preferred.
• Familiarity with client/vendor due diligence processes.
  

Technical Skills

• Windows/Mac OS administration, endpoint management, and troubleshooting.
• Basic understanding of networks, firewalls, and security best practices.
• Knowledge of Microsoft 365 environments.
• Exposure to ticketing systems and ITSM tools
  

Soft Skills

• Strong written communication and documentation ability.
• Excellent organizational skills and attention to detail.
• Able to manage multiple priorities in a lean, fast-paced team.
• Customer-service oriented and collaborative mindset.
  

Optional Certifications (a Plus)

• CompTIA Security+ or equivalent
• ISO 27001 Foundation / Implementer
• ITIL Foundation
• Microsoft Certified: Modern Desktop Administrator
• Certified Data Protection Officer (CDPO) or CIPP (basic level)