Data Protection & Information Security Assistant


Leeds, West Yorkshire

Job Description

Pharmacy2U is the UK's first and largest online pharmacy, we're a market leader in the pharmacy world, helping over 500,000 patients in England manage their NHS repeat prescriptions from request through to delivery.

For 20 years, we have used cutting-edge technology alongside our UK-based pharmacists, dispensing specialists and customer care advisers to help improve the lives of patients. Our Leeds and Leicester -based central dispensing facilities are distributing medication to patients at a rate of over 1m+ items per month.

Our sister brand Chemist Direct is part of the Pharmacy2U family. Chemist Direct serves the health and beauty needs of our customers delivering over 600,000 orders per year from over 5000 sku’s at our fulfilment centre in Leicestershire. Chemist Direct is witnessing significant growth of +70% year on year as customers continue to change their buying habits.

Recently we have launched c.20 Covid-19 vaccination centres, and with more to follow we and are playing an important role in the country’s response to the pandemic.

We're an ambitious company with big plans for the future and we're looking for high calibre, experienced and driven individuals to join our team.

Our aim is to further disrupt the industry for the benefit of patients with leadership that is passionate about building the skills and expertise of our teams- “come and join the rocket ship”- CEO Mark Livingstone.

Role Purpose

Reporting to the Head of Privacy/ Data Protection Officer, the Data Protection & Information Security Assistant (DPISA) will be part of the data protection/GDPR team but will also work closely with the IT and development team. The purpose of your role is to promote data protection and GDPR compliance across Pharmacy2u and to support the Data Protection Officer for Pharmacy2u and ChemistDirect, and to support the IT and development team to specify and design security requirements that encompass all areas of IT to protect the infrastructure and systems from attacks and threats to ensure any risk to IT services is mitigated.

Essence of Role – Key Accountabilities

Based at our head office in Leeds, the DPISA will be the initial contact point for customer and staff who may have data protection queries. They’ll provide first-time resolution for cybersecurity and data requests. They’ll troubleshoot, diagnose and resolve problems either themself or escalating to either the technical team or data protection officer as required.

They’ll provide practical advice to colleagues around day-to-day information management tasks to ensure that they are aware of their obligations under the UK GDPR & Data Protection Act 2018.

They will assist with vulnerability assessments and penetration testing for specific applications, services, networks and servers as required to help ensure the systems and services are protected and with the creation of concise and relevant reports on security.

Working within a service model, The DPISA will triage, process and resolve support tickets as part of the wider support service. They’ll maintain a log of common query types and work with system leads to ensure that user guidance and training materials are created to proactively address these.

They’ll support the technology lifecycle by maintaining accurate records within the systems and provide insightful feedback to the Head of IT where opportunities for improvement may be identified.

Main Responsibilities:

Knowledge, skills and experience required for role


· Attention to detail and accuracy

· Strong interpersonal skills with the ability to communicate with people at all levels

· Organisational skills

· Project management

· Excellent IT skills and an understanding of standards and processes to ensure organisations security compliance

· Self-motivation with an ability to work independently

· Ability to handle confidential information in a discreet manner

· A proactive approach to work and ability to prioritise and coordinate tasks

· Ability to think critically and analytically in a pressured environment


· Experience working on a service desk and providing customer support.

· An understanding or experience of the data protection/governance landscape is desirable, but not a requirement as full training will be provided.


· Computer Science, Computer Engineering, Information Systems, IT, Cyber Security, Business or related degree or can show passion for cybersecurity and knowledge in IT through experience.


· Critical thinker with a natural problem-solving attitude

· Investigative mindset and excellent analytical skills

· Comfortable working in teams and individually with the ability to remain calm and professional when working under pressure

· Ability to produce clear and concise documentation.


· Passionate - The only way to do great work is to love what we do

· Ambitious -Healthy ambition fires us up without burning others

· Trusted - Trust grows from our endless pursuit of the very highest clinical standards

· Innovative - If there’s a way to do it better, we find it

· Excellent - Excellence is the gradual result of always striving to do better

· Nurturing - Be a brain to pick, an ear to listen, a push in the right direction

· Team-focused - It is amazing what we can accomplish if we do not care who gets the credit


  • Hours – 40 hours a week full time. Mon to Fri
  • 25 days annual leave increasing with service plus bank holidays
  • Brand new head office at The Springs, first class office environment
  • Brand new facility in Bardon, with state of the art automation
  • Recently re-furbished pharmacy facility in Leeds, 14
  • Contributory pension (discounted insurance Aviva*)
  • Employee discount site (access to a great range of discounts on holiday bookings, high street vouchers, gift cards, cinema tickets, days out, leisure activities and your day to day spending)
  • 25% Discount on staff health and beauty purchases
  • Social events throughout the year
  • Park Life Membership (exclusive offers and discounts for The Springs, Leeds)
  • Free onsite parking and refreshments
  • Cycle to work scheme
  • Long service bonus
  • Employee Assistance Programme
  • Online Health and Wellbeing Resource
  • Discounted Gyms

Salary £DOE

Job Types: Full-time, Permanent