Specialist, Data Protection​

Save the Children International has an exciting opportunity for a Specialist, Data Protection to join our global team.

Team and Job Purpose

The Cyber Security and Information Assurance Team is responsible for safeguarding the confidentiality, integrity, and availability of SCI’s information assets, including data and systems. The team identifies, assesses, and manages information security and data protection risks across SCI and supports the continuous improvement of SCI’s information security and data protection framework, policies, and practices.

Role purpose

The Data Protection Specialist is required to provide practical data protection and privacy support across the organization, ensuring day-to-day compliance with applicable data protection laws and internal policies, including sensitive personal data relating to children, beneficiaries, and vulnerable populations across diverse legal and operational contexts.

The role requires working closely with business teams to embed data protection into operational processes, systems, and projects, including advice on data handling, records management, and privacy-by-design controls.

The Data Protection Specialist will manage and support personal data incidents and breaches, including investigation, risk assessment, mitigation actions, and required reporting.

The role requires collaboration with Information Security to align data protection and security controls, maintain documentation, and support audits, training, and ongoing improvements to data protection practices.

Job Title: Specialist, Data Protection

Reports To: Head of Information Security Services

Work Pattern: Hybrid/Remote with flexible working options available 

Contract Length: Permanent

Location: Any approved Save the Children International office location. For a full list of locations that Save the Children International can hire in, please visit: SCI Careers

Time Zone (that the role holder must be available to work in): Any

Right to Work: The successful candidate must possess the unrestricted right to work in their current or preferred location for the duration of employment. 

Language Requirements: English

International Travel Requirements: up to 5-10% 

Principal Accountabilities

• Provide day-to-day data protection and privacy advice to business teams to support compliance with applicable legislation, regulatory requirements, and internal policies.
• Supporting country offices with compliance, including maturity assessments and Country Office Action Plans.
• Develop and deliver training and support awareness campaigns
• Perform and support Data Protection Impact Assessments (DPIAs) and privacy risk assessments for new and existing systems, processes, and projects.
• Manage and coordinate Data Subject Access Requests (DSARs) and other data subject rights requests in line with statutory timelines and internal procedures. 
• Lead and support the management of personal data incidents and breaches, including investigation, risk assessment, mitigation actions, and required notifications.
• Maintain and update the global data protection framework, data protection documentation, including policies, procedures, records of processing, DPIAs, and audit evidence.
• Work closely with Information Security and other key stakeholders to align data protection requirements with security controls, operational processes, and risk management activities.
• Review data sharing agreements and support supplier due diligence, risk assessment activities to identify and prioritize potential data protection and privacy threats. Support the development of appropriate risk management processes where not in place.
• Stay informed about the latest trends and best practices in data protection and privacy management (including changes in global legislation); recommend improvements to data protection strategies based on industry developments and organizational needs.

Experience and Skills

Essential

1. Experience working on cybersecurity, information security or data protection requirements within a global organization or related role (e.g. compliance or internal audit).
2. Experience with sensitive or vulnerable-population data
3. Good knowledge of GDPR and other international data protection and privacy legislation.
4. Good understanding of IT infrastructure including cloud, networks and information systems. 
5. Capability to convey technical information effectively to technical and non-technical stakeholders in a clear and comprehensive manner.
6. Capacity to build and maintain excellent relations and to work effectively in a multicultural and multi-ethnic environment respecting diversity.
7. Strong personal, organisational and self-management skills. 
8. Strong communication skills, in English.
9. Commitment to Save the Children mission and values

Desirable

• Knowledge of ISO/IEC 27001; NIST Cybersecurity Framework (CSF) or other Data Protection and Privacy Frameworks
• Experience of ‘field operations’ and the data protection related risks associated with working in remote, inhospitable and insecure environments
• Strong understanding of/willingness to learn key trends in international and humanitarian development and how technology can and is being utilised to support these developments
• Experience in NGOs, humanitarian, or public sector
• Experience with data governance or privacy programmes

Education and Qualifications

Essential

• Degree or equivalent experience in Law, Information Security, Computer Science, Public Policy, or related discipline.

Desirable

• Data Protection certification/s (e.g. CIPP)

Working at Save the Children International

Save the Children is the world's leading organisation for children, employing ~25,000 staff. We save children's lives. We fight for their rights. We help them fulfil their potential. Through our work in 116 countries, we put the most deprived and marginalised children first.

We know that great people make a great organisation, and that our employees play a crucial role in helping us achieve our ambitions for children. We value our people and offer a meaningful and rewarding career, along with a collaborative and inclusive environment where ambition, creativity, and integrity are highly valued.

The work here is challenging but is also immensely rewarding. At Save the Children, you will be in good company, working with talented, like-minded individuals who are determined to ensure that all children survive, learn, and are protected. Your contribution will help ensure children's voices are heard at the highest levels, and that we achieve our global strategy, Ambition for Children 2030, and reach every last child.

Diversity, Equity and Inclusion and Equal Opportunities

DEI is core to our vision, values and global strategy. Save the Children is committed to creating a truly diverse, equitable and inclusive organisation, and one which will support us in our vision to ensure every child attains the right to survival, protection, development, and participation.

We are committed to equal employment opportunities, regardless of gender, sexual orientation, race, colour, ethnic origin, nationality, disability, marital or civil partnership status, gender reassignment, pregnancy and maternity, caring or parental responsibilities, age, or beliefs and religion. We are committed to diversifying our staff to better represent the communities we serve and actively welcome underrepresented groups to apply.

Reasonable adjustments will be made should any candidate invited to interview require this.

Application Information

Please attach a copy of your CV and cover letter with your application. A full copy of the role profile can be found here via the job listing. It is recommended that you save a copy of the role profile as it will no longer be available after the advert closes.

Applications will be reviewed on a rolling basis and the job advert may be closed earlier than advertised subject to the volume of suitable applicants. Please submit your application at your earliest convenience to avoid disappointment.

Due to the high volume of applications we receive, only shortlisted candidates will be contacted. Candidates who are successfully shortlisted should expect to hear from us within 2 weeks of the advert deadline.

Our recruitment process:

1. Application review by our recruiting team based on your CV and cover letter
2. Two-stage competency-based interviews with the hiring team
3. Some recruitment may include an additional assessment or case study stage, or a third stage interview
4. If successful, you will receive a conditional offer of employment, followed by your contract subject to passing background checks

We need to keep children and adults safe so our selection process includes rigorous background checks and reflects our commitment to the protection of children and adults from abuse. All employees are expected to carry out their duties in accordance with our Code of Conduct and all policies and procedures relating to Anti-harassment, Health and Safety, Safeguarding, and DEI and Equal Opportunities.

Save the Children does not charge a fee at any stage of the recruitment process.