Regulatory Compliance Senior Attorney (R-15307)

London - England
Legal /
/ Hybrid
Why We Work at Dun & Bradstreet
Dun & Bradstreet unlocks the power of data through analytics, creating a better tomorrow. Each day, we are finding new ways to strengthen our award-winning culture and accelerate creativity, innovation and growth. Our 6,000+ global team members are passionate about what we do. We are dedicated to helping clients turn uncertainty into confidence, risk into opportunity and potential into prosperity. Bold and diverse thinkers are always welcome. Come join us!

The role

We are looking for a Senior Attorney, who will serve as the Lead Regulatory Attorney for Dun & Bradstreet operations across the subregion-United Kingdom/Ireland. You will report to the Managing Attorney, Regulatory and Group DPO - Europe and you will build and continually enhance bridges between global teams, local operations, and the commercial legal team for the subregion.

As the leader in this role, you will balance internal legal and compliance operational responsibilities in support of the UK/I Leadership Team, and their respective teams, with external engagement and advocacy on regulatory, compliance and ethics priorities for Dun & Bradstreet.


    • Serves as the lead regulatory attorney for D&B in the (Europe – Subregion).  In close coordination with commercial counsel representing specific European markets, as well as D&B’s Global Compliance & Ethics centers of excellence (COEs)

    • Responsible for providing advice and counsel on a broad range of laws and regulations related to:
    • Financial services regulations, AML/KYC, sanctions, credit information
    • Privacy and data protection
    • Anti-bribery and anti-corruption, competition
    • ESG and sustainability
    • Marketing and electronic communications
    • Artificial intelligence, digital platforms and services, sanctions
    • Whistleblowing, and similar obligations applicable to D&B operations across the (United Kingdom). Coordinates compliance risk management for the (United Kingdom) and ensures timely escalation and updates to the global compliance risk register.  

    • In coordination with the Group DPO and COEs, supports the global D&B privacy and data protection program by serving as the data protection leader for the United Kingdom region:
    • Supports D&B on inquiries from data protection regulators in the (UK/I) markets. 
    • Supports data processing and transfer agreement reviews.
    • In coordination with the GCE Program and Operations team, ensures that accurate records of processing are maintained for each of the D&B markets in the (UK/I).
    • In coordination with the GCE Program and Operations team, ensures that data protection risks have been identified for the D&B (UK/I) records of processing.
    • In coordination with the GCE Program and Operations team and the COEs, provides advice on impact assessments for the (UK/I).
    • Provides expert guidance on data subject rights requests and data subject complaints for the (UK/I).
    • In coordination with the COEs, ISMS team, and Global Security & Risk team, leads the evaluation of data protection and privacy incidents in the for the (Europe – UK). 
    • Coordinates with GCE leadership on breach reporting determinations for the (Europe – UK).Monitors trends in privacy and data protection enforcement, guidance, interpretation, and other leading indicators to inform GCE program priorities and compliance risk management for the (Europe – UK).
    • Supports the COEs on development and implementation of global standards.

    • In coordination with D&B’s Chief Compliance & Ethics Officer, the Group DPO, and other members of GCE, works closely with ISMS and Security team leads in the (Europe – UK) to coordinate ISO and security program obligations with GCE program obligations across the (Europe – UK).
    • Coordinates regional review and feedback on policies, procedures, and other standards, communications and training, oversight and monitoring, metrics and reporting, and other program elements.  

Experience and Competencies

    • Law studies or Doctorate degree in Law. Qualified to practice law in the jurisdiction in which the attorney is located.  Additional relevant certifications, such as CIPP/E or CIPM, preferred but not required.
    • Significant legal experience (preferably some in-house) with at least 5 years of experience in area of financial services regulation of the UK, AML, trade compliance, privacy, data protection and privacy and digital marketing. Added knowledge and experience of the EU law and EU regulatory legal matters is preferred.
    • Customer-focused, commercial-oriented, and innovation mindset. Comfortable translating complex legal requirements into operational controls for business and technology teams. 
    • Excellent judgment and decision-making skills. Demonstrates strong aptitude for evaluating a range of risks and effectively communicating relevant impact to business owners. 
    • Driven team-player motivated by bringing colleagues and stakeholders together to maximize successful outcomes. You will prioritize teamwork and team-based success. You appreciate, respect and leverage diverse perspectives. 
    • Excellent verbal and written communication skills. Persuasive, influential negotiator. 
    • Prior experience with regulatory outreach and advocacy and participation in industry and trade groups.
    • Demonstrated ability to effectively manage complex projects and programs.
    • Comfortable with change and ambiguity. Open-minded and preferably a change agent. Demonstrated ability to regularly adjust and re-prioritize to meet multiple stakeholder and organizational needs as well as an ever-evolving regulatory landscape. 
    • Passionate about data and data-driven. Willingness to engage deeply with data, product, and technology teams on data and technology matters. Comfortable communicating with prospects, customers, and other constituents about data and compliance.
    • Outcomes-oriented. You strive not only to get things done well, but to demonstrate the value of contributions.
    • Experience with ethical decision-making, values-oriented compliance, and supporting a culture of compliance preferred.
    • Risk management experience preferred.
    • Agile, scrum, lean six-sigma or other operational excellence experience a plus. 
This is a hybrid role – partly in the office and partly work from home/travel.  It is based out of the UK office.

All Dun & Bradstreet job postings can be found at Official communication from Dun & Bradstreet will come from an email address ending in

Notice to Applicants: Please be advised that this job posting page is hosted and powered by Lever. Your use of this page is subject to Lever's Privacy Notice and Cookie Policy, which governs the processing of visitor data on this platform.