Information Governance and Compliance Officer

Job Description

Our client is at the forefront of innovative cancer care with their UK network of cancer centres. They provide the most suitable, state-of-the-art cancer treatment and an exceptional level of care to every patient. The centres deliver high-qualitydiagnostic imaging and the latest in advanced cancer treatments including radiotherapy, chemotherapy, immunotherapy and, in the future, proton beam therapy across all centres.Role Purpose:The purpose of the compliance and information governance officer role is to assist the roles of Head of Professional Standards (Data Protection Officer) and the Compliance Manager in ensuring the organisation complies with data protection law and good informationgovernance practice.In addition, they will support on the wider compliance in relation to regulatory and quality frameworks, implementing policies, processes and systems in order to minimise risk and to achieve and maintain compliance to international standards and qualitymarks which include and are not limited to; ISO9001 and ISO27001.This role will carry out data protection assessments on new projects and initiatives, co-ordinate the annual submission of data security and information governance submissions (NHS Digital Toolkit), co-ordinate and process 3rd party security assessments,support on the creation of data sharing agreements, contractual clauses, create and update information governance policies and procedures, support on the assessment of audit findings, staff training and awareness.Main duties and responsibilities

• To support the Company Data Protection Officer in the development of the strategic approach to information governance and management of data.

• To support the completion of the annual IG Toolkit

• Provide support and oversight of the completion of all data subject requests

• Support on providing guidance and advice on complex data protection and information governance matters including Privacy and Electronic Communications Regulations (PECR)

• Undertake detailed Data Protection Impact Assessments to identify and assess the impact of any confidentiality risks and provide recommendations regarding appropriate remedial activities, to support a Privacy by Design approach

• Maintain the information asset register

• Deliver IG training to internal customers

• Investigate data security incidents

• Contribute to the creation and review of data protection policies and procedures

• Support and develop internal and external briefings / communications

• Proactively collate data protection legislation / best practice updates

• Support the Compliance Manager in general compliance matters:

- Support on the preparation for registration with regulatory bodies- Provide administrative support by implementing systems, procedures and policies as required- Produce monthly compliance reportsPerson Specification - Essential RequirementsQualifications and Registration

• Practitioner Certificate in Data Protection (or demonstrate working knowledge)

Experience and Competencies

• Experience working in information governance and data protection
• High level of accuracy and attention to detail
• Ability to create and follow complex processes
• Delivering to tight deadlines
• Able to undertake research and translate legislation into practice

Benefits:

• Competitive salary negotiable depending on experience
• Private Medical insurance
• Dental Insurance
• Workplace pension (5% contribution)
• Employee Assistance Programme
• Everyday lifestyle savings

Keyskills :
FrameworksStaff TrainingData SecurityInformation GovernanceToolkit