Data Products Access Governance Manager

Job title:Data Products Access Governance Manager

Location:Leeds, Bristol or Edinburgh

Salary: Pay Group 4E

Hours:Full time

Working Pattern:Our work style is hybrid, which involves spending at least two days per week, or 40% of our time, at one of our office sites.

About this opportunity:

We're looking for a dynamic, motivated, forward-thinking Data Products Access Governance Lead to join the team.

You'll focus on the designing, implementation, and operationalization of user access management (UAM) across cloud-based data products.

Liaising with internal customers to understand their needs to ensure that data is protected in line with regulatory, contractual, and internal policy requirements, while enabling appropriate access for colleagues based on business need, fostering a culture of accountability and continuous improvement.

What you'll be doing:

• Access Governance Design: Develop and embed a scalable, policy-driven access management framework for cloud-hosted data products, aligned with enterprise IAM and data privacy standards.

• Access Control Implementation: Define and enforce role-based and attribute-based access controls (RBAC/ABAC) across data platforms, ensuring least privilege and zero standing access principles are applied.

• Lifecycle Management: Oversee provisioning, modification, and de-provisioning of user access in response to joiner, mover, and leaver events, integrating with enterprise identity systems (e.g. Saviynt).

• Cloud Platform Integration: Collaborate with platform teams to embed access controls into GCP ensuring secure data product delivery and consumption.

• Audit & Compliance: Conduct regular access reviews, recertifications, and audits to ensure compliance with internal policies, GDPR, and other regulatory requirements.

• Partner Engagement: Partner with data product owners, platform leads, and security architects to ensure access requirements are understood, documented, and implemented effectively.

• Training & Awareness: Develop and deliver training materials and guidance to promote awareness of access management responsibilities across the organisation.

What you'll need:

• Proven experience in identity and access management (IAM), preferably in a cloud-first or hybrid environment.

• Understanding of data protection principles, including GDPR, and their application in access governance.

• Familiarity with IAM tools such as Saviynt, CyberArk, Azure AD, or similar.

• Experience working with cloud platforms (e.g. GCP, Azure) and data product architectures.

• Ability to translate complex security requirements into practical, scalable solutions.

• Strong partner management and interpersonal skills.

If you're excited by the thought of becoming part of our team, get in touch. We'd love to hearfrom you!