Job Summary
The Co Durham and Darlington NHS FT Health Informatics Service is pleased to offer an exciting opportunity to join our Data Security & Protection (DSP) Team. We are looking for a highly motivated and enthusiastic individual to effectively manage and deliver the DSP framework.
As a DSP manager, you will play a pivotal role in the continuing improvement and development of the DSP agenda as well as providing key support to all levels of staff in the Trust.
Technical knowledge and understanding in the cyber security area or similar would be beneficial to this role.
Main duties of the job
The successful candidate will be responsible for the annual submission of the Data Security and Protection Toolkit, working closely with all Digital teams and nominated Trust Group leads.
You will work closely with the Data Security and Protection Manager and Head of Department to ensure all projects, new services, systems, and applications undertaken by the Trust have the relevant compliance with DSP and cyber requirements.
The post holder will have knowledge and understanding of all information rights legislation, providing guidance to the Trust.
Complete monitoring and compliance audits, working closely with the Digital teams and information asset owners to ensure they are scheduled, analyzed with options appraisals, recommendations, and report to the necessary committees.
This role includes providing system administration for the Trust's Information Asset Management system, supporting the Senior and Information Asset Owners to ensure the Trust's ongoing compliance and improvement in this area.
General knowledge and experience of data security incidents, software vulnerabilities, data protection, and risk management methodology to report compliance and assurance.
About Us
We provide hospital services from two acute sites - Darlington Memorial Hospital and University Hospital of North Durham. We have a center for planned care in Bishop Auckland and provide care from community hospitals in Chester-le-Street, Shotley Bridge, Barnard Castle, Sedgefield, and Weardale as well as over 80 other community-based settings and providing care in patients' homes.
We particularly welcome applications from disabled and Black, Asian and Minority Ethnic (BAME) candidates as BAME and disabled people are currently under-represented.
From April 1, 2024, we are unable to offer sponsorship for healthcare roles that do not meet the minimum salary. If you are in the UK on a VISA, please ensure you have no restrictions that would prevent you from taking this post.
Job Description
Job responsibilities
The post holder will engage with all clinical and corporate services having the ability to meet tight deadlines, managing multiple projects, delivering the Trust's Data Security and Protection agenda and overall digital strategy. This post holder will be the DSP point of contact for all Trust staff for information, support, and guidance for local, regional, and national DSP programs.
The role requires the post holder to digest, understand, and articulate to relevant groups including technical data security risks, general risk analysis, incident management with cyber security compliance skills ensuring information rights legislation compliance is met.
Thorough analysis of risks, issues, incidents with options and recommendations reporting to provide regular assurance to the Trust Board.
Cyber risk compliance reports are required by the Trust Board, working with the IT Security Manager to ensure accurate and relevant risks and controls are escalated and implemented.
Developing and delivering training and awareness packages for staff of all levels to support completion and compliance in DSP areas.
Research and reporting of future DSP, cyber, technical, and legal requirements required to support the DSP management team in developing strategy, work plans, and frameworks to meet the relevant requirements.
Ensuring any development work streams and projects contain relevant data protection compliance, offering guidance to leads and external stakeholders where necessary.
The role will work with the Trust Data Protection Officer, responding to complaints, offering guidance, and completing investigations, reporting the outcome to the requestors and Regulator.
Person Specification
Qualifications Essential
1. Degree level or equivalent experience.
2. Management qualification or equivalent experience.
3. Computer and IT skills to include: word processing, PowerPoint, Excel, access databases. Advanced keyboard skills.
4. Evidence of continuing professional development.
5. Relevant industry standard qualifications such as ISEB relating to DSP initiatives.
Desirable
1. Qualified in PRINCE2 project management or equivalent.
Special Skills and Knowledge Essential
1. Ability to communicate complex / sensitive data to all levels of trust staff and external partners.
2. Provide effective operational leadership in respect of DSP within the organisation and partner organisations both locally and regionally.
3. Experience in data analysis where a number of different and wide-ranging elements will need to be taken into account.
4. Knowledge and experience in developing and maintaining records and documentation.
5. Able to deliver to tight deadlines.
6. Experience of managing resources.
7. Able to multi-task a number of work streams with changing timescales.
8. Ability to deal with difficult and sensitive situations.
9. Experience of complex report writing for Trust Boards, presenting escalation and outcomes.
Desirable
1. Specialist knowledge of best practice in the field of Information Governance and relevant legislation.
2. Working knowledge of the business and role of the Trust in which employed.
Special Requirements Essential
1. Ability to travel and work across all sites as required to meet the requirements of the post.
2. Ability to work outside core times, potentially at short notice.
Desirable
1. Holds full driving licence.
Experience Essential
1. Substantial practical Information governance experience.
2. Experience of line management including appraisals, interviewing, and sickness management.
3. Experience of developing training materials.
4. Experience in data analysis.
5. Being able to deliver to tight deadlines.
6. Experience of managing resources.
Desirable
1. PRINCE2 methodologies.
2. Experience in delivery of training material to large groups of staff.
3. Experience of working with difficult and sensitive situations.
4. Experience of working in a healthcare setting.
Disclosure and Barring Service Check
This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.
Employer details
Employer name
County Durham & Darlington NHS Foundation Trust
Address
Darlington Memorial Hospital NHS Trust
Hollyhurst Road
Darlington
County Durham
DL3 6HX
Employer's website
https://www.cddft.nhs.uk/ #J-18808-Ljbffr