Quorum Software
Privacy & AI Governance Specialist (Hybrid Work Model)

How your CV stacks up
Upload your CV to see how well it fits this job role
?%
Privacy & AI Governance Specialist
Location: London, England
Are you excited by challenges? Do you enjoy working in a fast-paced, international and dynamic environment? Then now is the time to join Quorum Software, a rapidly growing company and industry leader in oil & gas transformation.
Quorum Software is the world's largest provider of digital technology focused solely on business workflows that empower the next evolution of energy. From emerging companies to supermajors, throughout every region of the globe, customers rely on Quorum's proven innovation and unmatched global expertise to streamline business operations and make data-driven decisions that optimize profitability and growth. Our industry-leading solutions are transforming energy companies across the entire value chain, helping visionary leaders evolve their organizations into modern energy companies.
Overview
We are currently seeking a Privacy & AI Governance Specialist to join our Information Security, Privacy & Compliance team.
As a Privacy & AI Governance Specialist, you will report to our Data Protection Officer. In this role, you will support the continued maturity of Quorum's global privacy, data protection, and AI governance programs while helping the business navigate evolving regulatory requirements across multiple jurisdictions. You will collaborate with cross-functional stakeholders to embed privacy-by-design and responsible AI practices into business processes, products, and services while supporting compliance, innovation, and operational excellence. You will also contribute to vendor management, customer assurance activities, and the continuous improvement of Quorum's governance framework.
Responsibilities
- Support the design, implementation, and continuous improvement of Quorum's global privacy, data protection, and AI governance programs.
- Maintain privacy documentation, including policies, procedures, templates, playbooks, Records of Processing Activities (RoPA), data maps, and DPIA/PIA materials.
- Advise internal stakeholders on privacy, data protection, vendor reviews, data subject rights, cross-border data transfers, AI use cases, and privacy-by-design principles.
- Conduct and support Data Protection Impact Assessments (DPIAs), Privacy Impact Assessments (PIAs), Transfer Impact Assessments (TIAs), AI risk assessments, and privacy reviews for products, vendors, systems, and business initiatives.
- Review customer and vendor agreements, including Data Processing Agreements (DPAs), Standard Contractual Clauses (SCCs), security schedules, and AI/data use provisions.
- Support vendor management activities, customer audits, pre-sales security questionnaires, compliance reporting, privacy incidents, and breach response activities.
- Maintain privacy and AI governance inventories, including data processing activities, vendors, AI tools, data flows, and associated risk assessments.
- Monitor global privacy, cybersecurity, and AI regulatory developments, translating legal and regulatory requirements into practical policies, standards, and operational processes.
- Deliver privacy, AI governance, and information security training and awareness initiatives across the organization.
- Collaborate closely with enterprise and business unit stakeholders to integrate privacy, data protection, and AI governance principles into products, services, and business operations.
- Identify, investigate, and help remediate compliance gaps and areas of risk to support ongoing regulatory compliance and continuous improvement.
- Proactively research and maintain a working knowledge of emerging privacy, AI governance, cybersecurity, and data protection laws, regulations, and industry best practices.
- And other duties as assigned.
Reasons to use Rodeo
I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?
Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.
Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.
Start with a chat, not a search bar
Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.
Graduate Consultant — 2026 Scheme
Why you're a good match
StrongYour economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.
See breakdownIt searches the market for you
Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.
Why you're a good match
You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.
Experience fit
Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.
Only hits
No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.
Requirements
- Bachelor's degree or equivalent experience in Law, Information Governance, Information Security, Compliance, Risk Management, Business, Technology, or a related field.
- 3+ years of experience in privacy, data protection, compliance, information governance, legal operations, security risk, or a related discipline.
- Working knowledge of GDPR, UK GDPR, CCPA/CPRA, and other global privacy regulations.
- Experience conducting or supporting DPIAs/PIAs, maintaining Records of Processing Activities (RoPA), data mapping, vendor privacy reviews, data subject rights, privacy-by-design initiatives, and incident response activities.
- Familiarity with vendor management, risk management, customer audits, compliance reporting, and privacy/security contract reviews, including DPAs and SCCs.
- Previous experience with GRC, privacy, or compliance platforms (e.g., OneTrust or similar tools) is preferred.
- Strong analytical, research, documentation, communication, and stakeholder management skills.
- Excellent interpersonal, written, and verbal communication skills, including the ability to communicate complex regulatory concepts to technical and non-technical audiences.
- Ability to manage multiple priorities in a fast-paced, global environment.
- Critical-thinking, problem-solving, adaptability, and organizational skills.
- Interest in process improvement, workflow automation, GRC tools, and scalable compliance operations.
Preferred Skills
- Privacy certifications such as CIPP/E, CIPP/US, CIPM, CIPT, or equivalent.
- Familiarity with emerging AI governance frameworks and regulations, including the EU AI Act and industry best practices.
- Security or audit certifications such as CISSP, CISM, CISA, or equivalent.
- Familiarity with Information Security principles and IT governance processes.
- Experience supporting compliance assessments, internal or external audits, or regulatory reviews.
- Previous experience working within a SaaS, cloud technology, or global software organization.


Get help with your application
Your very own career expert that helps elevate your application to the next level.
Additional Details
- Visa Sponsorship: Employment eligibility to work with Quorum Software in the United Kingdom is required as the company will not pursue visa sponsorship for this position.
About Quorum Software
Quorum Software connects people and information across the energy value chain. Twenty years ago, we built the first software for gas plant accountants. Pipeline operators came next, followed by land administrators, pumpers, and planners. Since 1998, Quorum has helped thousands of energy workers with business workflows that optimize profitability and growth. Our vision for the future connects the global energy ecosystem through cloud-first software, data standards, and integration. The trusted source of decision-ready data for 1,800+ companies, Quorum Software makes the essential connections that let us work better together in the connected energy workplace. For more information, visit quorumsoftware.com.
Quorum Diversity Statement
At Quorum, we are committed to fostering, cultivating, and preserving a culture of belonging. We want to be the place where a diverse pool of talented people join us, stay with us and do their best work. With a diverse team of employees, we grow and learn better together. The collective sum of the individual differences, life experiences, knowledge, innovation, self-expression, and talent that our employees invest in their work represents not only part of our culture, but our reputation and our achievements. We are fully focused on equity and equality and believe deeply in diversity of race, gender, sexual orientation, age, religion, ethnicity, national origin, ability, neurodiversity and all the other characteristics that make us unique.
Quorum Business Solutions and Quorum Software are Equal Opportunity Employers. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, ancestry, veteran status, disability, genetic information, or any other basis protected by law.
Those applicants requiring reasonable accommodation to the application and/or interview process should notify a member of the Human Resources Department.
“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”
Jessica, London
Skills
Location