AI Data Protection Specialist

If you’re someone who enjoys solving complex problems and cares about building things that last, Standard Life could be the place for you. We’re looking for an AI Data Protection Specialist to join our IT Risk, Data and AI Governance team.  

Job Type:  Full time  

Location: Hybrid working - Birmingham, Edinburgh, Telford, London

Flexible working: All roles are open to part-time, job-share and other types of flexibility. We will discuss what is important to you and balancing this with business requirements during the recruitment process. You can read more about flexible working here.

Closing Date: 05/05/2026

Salary and benefits: £60,000 - £80,000 plus an indicative bonus range of 16-32% bonus range, private medical cover, 38 days annual leave, excellent pension, 12x salary life assurance, career breaks, income protection, 3x volunteering days and much more.

Who are we?

We’re Standard Life, a retirement specialist focused entirely on retirement savings and income. We champion the belief that everyone’s journey to and through retirement can be better, and for more than 200 years, we’ve been helping our customers plan and prepare for their financial futures.

Life today is increasingly complicated, uncertain and unpredictable. People move through different careers, face unexpected moments and navigate important choices. We offer our colleagues flexibility, trust and benefits that work for whatever life brings. In return we expect curiosity, connection, accountability and high standards. We make room for what matters - so you can bring your best, every day.

The role  

The AI Data Protection Specialist will play a key role in supporting the safe, lawful and responsible use of artificial intelligence across Standard Life. The role will focus on ensuring data protection requirements are appropriately considered, embedded and evidenced as AI use cases are designed, approved and operated under the AI Governance Framework.

Working closely with technology, data, legal, privacy, risk and business teams, the role will provide expert advice and challenge on data protection risks associated with AI, including the use of personal data, automated decision‑making, transparency, fairness and accountability. The role will support the business to implement proportionate controls that enable innovation while meeting regulatory and ethical expectations.

Key responsibilities will include advising on data protection considerations for AI use cases, supporting DPIAs and related assessments, contributing to AI use case reviews through the AI Review Board and other governance forums, and maintaining relevant data protection governance artefacts, registers and guidance aligned to AI activity.

The role will also support the ongoing development of AI‑specific data protection guidance and awareness, helping colleagues understand their responsibilities and promoting consistent, compliant practices across the organisation.

What are we looking for?

• Experience working in an AI governance or risk, compliance or oversight role within a regulated environment, for example technology risk, data governance, model risk, operational risk, or information security.
• Familiarity with external AI frameworks or regulatory guidance such as ISO42001, NIST AI RMF, EU AI Act, industry standards or ethics principles relating to technology, data or AI.
• Knowledge of artificial intelligence concepts and risks, for example model risk, bias, transparency, data usage or automation, gained through governance, risk or oversight work rather than technical development.
• Strong understanding of data protection principles and requirements, including UK GDPR, Data Protection Act, and concepts such as lawful basis, data minimisation, transparency, accountability and individual rights.
• Experience advising on data protection risks in change initiatives, technology delivery or complex data use cases, with the ability to provide clear, practical guidance.
• Experience producing clear written outputs such as DPIAs, governance papers, guidance or management information.

Desirable skills and experience

• Ability to assess, challenge and document data protection risks and controls in a structured and proportionate way, particularly in evolving or ambiguous contexts.
• Strong stakeholder engagement skills, including working with technology, data, legal and business teams, and the ability to explain complex requirements in plain language.
• Experience working within financial services or another highly regulated sector.

We want to hire the whole version of you.

We are committed to ensuring that everyone feels accepted and welcome applicants from all backgrounds. If your experience looks different from what we’ve advertised and you believe that you can bring value to the role, we’d love to hear from you.  

If you require any adjustments to the recruitment process, please let us know so we can help you to be at your best.  

We’re reviewing applications as they come in, so apply early to avoid missing out.

Find out more about working at Standard Life #LI-GJ1

Guide for Candidates: standardlifeplc.pagetiger.com/guideforcandidates

Find or get answers from our colleagues: www.standardlifeplc.com/careers/talk-to-us