Description Are you a seasoned data protection and information governance expert looking for a new challenge? We're seeking a skilled professional to join our team as Data Protection and Information Governance Lead for Social Security Scotland. In this pivotal role, you will not only make strategic decisions that influence the data protection and information governance landscape across the organisation but also mentor and lead three sizeable specialised teams. This is an excellent opportunity for candidates who have detailed domain knowledge as well as experience leading large, diverse teams in complex environments. If you're passionate about data protection and information governance, have excellent leadership and management skills, and are ready to step into a senior role with substantial responsibilities, we would love to hear from you. The Data Protection and Information Governance Branch is a critical part of the Data Office, working closely with the Scottish Government's Data Protection Officer under a Memorandum of Understanding. As the Data Protection and Information Governance Lead for Social Security Scotland, you will be responsible for leading the development and implementation of data protection and information governance policies, processes, and services. You will work closely with the Chief Data Officer, senior leadership, and other stakeholders to ensure the organisations’ compliance with statutory requirements and best practices in data protection and information governance. Responsibilities You will manage and lead three teams setting direction and policy for these specialist areas and ensuring their effectiveness and performance for the organisation. The Data Protection – (Corporate & Client) Teams responsibilities include: Evaluating and ensuring the organisations’ adherence to legal requirements. Promoting a privacy-focused approach, evaluating privacy risks, providing advice on controls, and ensuring proper contractual agreements are in place for operational activities. Developing and enhancing data protection policies, processes, services, and guidance. Providing training for our staff. Handling and resolving data breaches. Facilitating individuals' information rights. Monitoring and ensuring performance and compliance for the Chief Executive and Executive Team. Cultivating a culture of ongoing improvement in data protection throughout the organisation. The Corporate Records and Information Governance Team: Oversee and implement the organisations’ Records Management Plan, in alignment with the Keeper of the Records Scotland. Manage the file plan and workspaces within the electronic records and document management system. Handle and respond to Freedom of Information (Scotland) Act requests to ensure legal compliance. Facilitate the proactive disclosure of information in the public interest on behalf of the Agency. Address inquiries related to UK General Data Protection Regulation information rights within statutory timelines. Process disclosure requests from third party competent authorities in accordance with relevant laws. Coordinate and execute information governance processes to uphold our policies. Main Responsibilities Serve as the Data Protection Officer for Social Security Scotland, offering guidance to senior leadership and collaborating with the Scottish Government Data Protection Officer. Cultivate and manage data protection and information governance partnerships with Scottish Government, UK Ministerial Departments, and Scottish Local Government. Develop a strategic approach for data protection and information governance, establish policies, processes, standards, and guidance in line with industry best practices, and ensure their ongoing effectiveness. Lead efforts to promote a privacy-focused culture within Social Security Scotland governance, emphasising privacy considerations in all data processing activities. Provide guidance and direction on data protection and information governance to technical, analytical, and non-technical staff, identifying risks and escalating issues to executives when necessary. Serve as a subject matter expert on data protection and information assurance for the organisation and broader central government community, offering authoritative advice on implementing and maintaining data protection and information governance controls. Stay informed on developments in data protection, information rights, and corporate records law, policies, strategies, and technologies, participating in professional development activities to enhance expertise. Supervise three senior leaders within the branch, each overseeing their own team responsible for Data Protection and information governance functions, supporting their professional growth and ensuring a balance between business objectives and employee wellbeing. Act as a stand-in for the Chief Data Officer when needed. Qualifications Success Profiles We use an assessment framework called ‘Success Profiles’ which lists the elements we test and provides detailed descriptions of each. Find out more about how we assess the Success Profile elements Experience: Excellent knowledge of Information and Data legislation and governance best practice including UK General Data Protection Regulation, Data Protection Act, Freedom of Information (Scotland) Act and Public Records (Scotland) Act as well as experience of implementing and managing effective compliance in a large organisation. A successful track record of building strong and effective networks and partnerships across organisational boundaries, whilst maintaining relationships and working in collaboration with internal and external colleagues. Behaviours: Leadership - Level 4 Communicating and Influencing - Level 4 Seeing the big picture - Level 4 Delivering at pace - Level 4 You can find out more about Success Profiles Behaviours, here: Behaviour levels - Success profiles: candidate guide - gov.scot How to Apply Apply online, providing a CV and Supporting Statement (of no more than 1500 words) which provides evidence of how you meet the skills, experience and behaviours listed in the Success Profile above. Should a large number of applications be received, an initial sift may be conducted using the CV and personal statement on: Experience. Candidates who pass the initial sift will have their applications fully assessed. Candidates selected for interview will be requested to provide a 10-minute presentation, details of which, will be shared in advance of the interview. As part of the sift process, we will be testing your behaviours, technical skills and experiences. If successful, you will be invited to an assessment and interview where we will test these again. If you are invited to an interview, this will be held in person in either Dundee or Glasgow. About Us Social Security Scotland, an executive agency of the Scottish Government, has the largest and most complex IT and digital change programme since devolution. We are delivering a social security system that will support the people of Scotland for decades to come. We offer rewarding careers and employ people across Scotland in a wide range of professions and roles. We are committed to recruiting a diverse workforce that is representative of the clients we serve. Find more about us here. We offer a supportive and inclusive working environment along with a wide range of employee benefits. Find out more about what we offer. As part of the UK Civil Service, we uphold the Civil Service Nationality Rules. Working Pattern Our standard hours are 35 hours per week and we offer a range of flexible working options, depending on the needs of the role. We embrace a hybrid working style where all colleagues will spend time in either our Glasgow or Dundee offices. There is an expectation of a minimum 2 days per week in your assigned location, which will be either Glasgow or Dundee. If you have specific questions about the role you are applying for, please contact us. Equality Statement Social Security Scotland are committed to equality and inclusion and we aim to recruit a diverse workforce that reflects the population of our nation. Social Security Scotland are a Disability Confident Employer. We will consider and implement any reasonable adjustments you may require throughout the recruitment process and during the course of your employment, should you be successful in securing a post. If you feel you may require assistance with any part of our recruitment process, please contact us at Recruitmentsocialsecurity.gov.scot. Find out more about our commitment to diversity and how we offer and support recruitment adjustments for anyone who needs them. Further Information Find out more about our organisation, what we offer staff members and how to apply on our Careers Website. Read our Candidate Guide for further information on our recruitment and application processes. The successful candidate will be expected to remain in post for a minimum of 3 years unless successful in gaining promotion to a higher Band or Grade. Social Security Scotland’s recruitment processes are underpinned by the recruitment principles of the Civil Service Commissioner, which outline that selection for appointment be made on merit on the basis of fair and open competition - Recruitment - Civil Service Commission (independent.gov.uk) If you feel at any time your application has not been treated in accordance with the values in the Civil Service Code and/or if you feel the recruitment has been conducted in such a way that conflicts with the Civil Service Commissioner’s Recruitment Principles, you can make a complaint, by contacting Social Security Scotland at recruitmentsocialsecurity.gov.scot in the first instance. If you are not satisfied with the response you receive you can contact the Civil Service Commissioner. If you experience any difficulties accessing our website or completing the online application form, please contact the Resourcing Team via recruitmentsocialsecurity.gov.scot Apply before Monday 13th January 2025 at 23:55 Contact Name - Resourcing Team Contact email – recruitmentsocialsecurity.gov.scot