Job Description

Internal Auditor & Data Protection Officer Support


Salary banding: 35,000 to 40,000


Location: Itec House, Cardiff


Contract: Full-time, permanent


Hours of work: Monday to Friday 09:00am to 16:30pm


About Us


At Itec, we put our employees at the heart of everything we do. As an employee-owned organisation, every team member plays a crucial role in shaping the future of our business. We foster a culture where each voice is heard, and every contribution is valued. We take pride in empowering individuals and businesses to thrive. Join us and become part of a company that is dedicated to your growth, well-being, and success.


About the role


As an Internal Auditor & Data Protection Officer Support you will be responsible for planning, conducting, and reporting on internal audits in line with ISO 9001 (Quality Management) and ISO 27001 (Information Security Management) standards. Supports the Data Protection Officer in maintaining compliance with UK GDPR and related data protection laws, with a particular focus on Data Protection Impact Assessments and information governance. Ensures the organisations management systems are robust, effective, and continually improving


Your impact


Lead and deliver internal audits (ISO 9001, ISO 27001, contracts, and regulatory compliance).
Identify risks, nonconformities, and improvement opportunities; ensure corrective actions are implemented.
Support external audits, certifications, and management reviews.
Assist the DPO with policies, DPIAs, breach management, and data protection compliance.
Manage data subject requests and maintain records for regulatory readiness.
Draft and review Information Sharing and Data Processing Agreements.
Maintain compliance registers, monitor KPIs, and provide specialist governance advice.
Promote awareness and training on information security, governance, and data protection.


What are we looking for?


Essential


Experienced in internal auditing (ISO 9001 & ISO 27001), compliance, and risk management.
Strong knowledge of UK GDPR, Data Protection Act 2018, and privacy best practice.
Skilled in supporting DPO activities, including DPIAs, breach management, and data subject requests.
Internal audit qualification (e.g., ISO 9001/27001 Lead Auditor) or equivalent.
Excellent organisation, communication, and stakeholder engagement skills.
Analytical thinker with proven ability to deliver clear reports and recommendations.
Confident, adaptable, and resilient with a positive, solutions-focused mindset.


Whats in it for you?


At Itec, our employees have access to several great benefits, including 30 days of annual leave (rising with length of service), a health care scheme, a 35-hour work week, discounts for retail and gym membership, a profit-sharing scheme, life insurance, employee of the month awards, length of service recognition, and much more.


Itec operates as an equal opportunitys employer, we welcome applicants from all backgrounds and ensure equal opportunities inclusive of gender, ethnicity, disability, or other protected characteristics.


Apply early, as we may close the vacancy once we have enough suitable applicants. We encourage applicants to disclose any needs for reasonable adjustments during the recruitment process or in their role to help create an inclusive workplace.


Should you not hear from us 2 weeks after application, please assume that your application was not successful on this occasion.


If you're passionate about developing others and making a difference, wed love to hear from you!





Find out more about working with Itec


Our Employee Ownership


Got Questions? Contact Us


Diddordeb darllen yn y Gymraeg?


Hysbyseb Swydd