Conduct targeted thematic analysis to assess how data practices translate into real privacy and customer outcomes
Interrogate code, data pipelines and models to understand:
o The level of intrusion in processing
o Impact on automated decision-making and customer outcomes
o Alignment with principles of proportionality and data minimisation
Identify where controls are ineffective in practice, providing clear, evidence-based challenge
Produce concise, high-impact insight that drives tangible improvement in business practices
Data Lifecycle, Architecture & DPIA Review
Assess how data is collected, structured, transformed and retained within real systems and architectures
Play a key role in reviewing Data Privacy Impact Assessments (DPIAs) by:
o Interrogating the underlying data architecture, code and processing logic
o Testing whether risks and controls reflect actual system behaviour
Conduct structured quality assurance of DPIAs, identifying gaps between documented intent and technical reality
Develop and implement automation of repeat oversight activities, including scalable QA routines
Risk Insight & Practical Challenge
Deliver focused, technically grounded challenge on data privacy risks, based on how systems and data operate in practice
Translate technical findings into clear, outcome-driven risk insights for business stakeholders
Support incident and issue analysis, focusing on root cause and control effectiveness
Collaboration & Influence
Work closely across CCOR, Legal, Engineering and Data teams to ensure oversight is credible, practical and well-evidenced
Influence stakeholders through clarity of insight rather than process ownership
Why Lloyds Banking Group
If you think all banks are the same, you'd be wrong. We're an innovative, fast-changing business that's shaping finance as a force for good. A bank that's empowering its people to innovate, explore possibilities and grow with purpose.
Requirements
Technical Data Expertise (Essential)
Hands-on understanding of how data is structured, processed and controlled across the lifecycle
Experience working with data pipelines, models and architectures in production environments
Ability to read and challenge code (e.g. SQL, Python) and assess how logic translates into outcomes
Strong understanding of data structures, metadata and how data is organised for analytics and data products
Familiarity with AI/ML concepts and how they influence data usage and control design
Applying Technical Expertise to Oversight
Ability to assess how technical design decisions (code, models, structure) impact privacy and customer outcomes
Experience interrogating systems to understand how data is actually used, not just how it is described
Comfortable reviewing artefacts such as DPIAs from a technical and data architecture perspec
Benefits
Flexible schedule
Additional Information
End Date
Saturday 27 June 2026
Salary Range
£67,023 - £74,470
We support flexible working - click here for more information on flexible working options
Flexible Working Options
Hybrid Working, Job Share
Job Description Summary
.
Job Description
JOB TITLE: Data Privacy & Risk Manager
SALARY: £67,023 - £74,470
LOCATION(S): Bristol & Leeds
HOURS: Full time
WORKING PATTERN: Our work style is hybrid, which involves spending at least two days per week, or 40% of our time, at one of our office sites.
About this opportunity
We're looking for a technically strong data specialist to advance how we deliver high-impact, insight-driven oversight within the Data Privacy, Retention & Records Management Risk team.
This is not a traditional privacy or programme delivery role. It is suited to someone who understands how data is structured, processed and controlled in real systems, and can use that expertise to assess how data use translates into real privacy and customer outcomes.
You'll operate at the forefront of how we evolve oversight-bringing deeper technical interrogation, clearer insight, and stronger evidence of how risks manifest in practice. This includes assessing:
- How intrusive data processing is within real implementations
- How code and models influence automated decision-making (ADM) and customer outcomes
- Whether data structures and architecture support proportionate, non-invasive processing
Working with Senior Managers and the Head of Function, you'll apply and continuously improve analytical methods, tooling and repeatable routines that increase the quality, consistency and impact of oversight.
A strong understanding of the end-to-end data lifecycle is essential. Prior privacy experience is not required - your value comes from translating technical data behaviour into clear, actionable risk insight that drives improvement.
This role does not focus on delivering privacy programmes or producing management reporting; it focuses on interrogating data, systems and code to evidence how privacy risks manifest in practice.
Lloyds Banking · Bristol, UK