NHS England is launching a national lung cancer screening programme (formally, Targeted Lung Health Checks), aimed at early detection in areas with high lung cancer prevalence. The programme involves inviting at-risk patients for a lung health check risk assessment followed by a low-dose CT scan for those at higher risk. The goal is to improve early-stage lung cancer diagnosis and survival rates. TIC Health is proud to be delivering the full lung cancer screening programme in Norfolk and Waveney, starting early next year, working in partnership with the NHS.
To deliver this programme effectively, data is a key aspect, and we are looking for an experienced Data Manager and Data Protection Officer to join the dedicated team.
Main Duties of the Job
Data Manager
The Data Manager will be responsible for all aspects of data associated with the effective delivery and monitoring of the programme. The full end-to-end pathway will include pulling relevant data from primary care, data cleansing, uploading into the service Patient Administration System, and producing reports on all relevant aspects of the service, developing additional reports as required. The Data Manager will also be responsible for all aspects of data governance, including the agreement of the Data Sharing and Processing Agreement (DSPA) and Data Processing and Data Protection Impact Assessment (DPIA) with the Commissioner, ICBs, PCNs (or representatives), and each GP practice. The role will also include developing the integration of data with other IT systems.
Data Protection Officer (DPO)
The DPO will be responsible for managing and organising the implementation of a data protection strategy for TIC Health. To act as the primary point of contact for data protection matters within the organisation, advising on compliance with GDPR, the Data Protection Act, and other relevant regulations. This will include monitoring TIC Health's data processing activities and practices to ensure compliance with data protection regulations.
Job Responsibilities
Key Areas of Responsibility will include:
1. Lead discussions with GP practices/PCNs (or representatives) to identify the eligible cohort and extract the dataset from the practice system and import it into the Patient Administration System.
2. Lead the agreement of the Data Sharing and Processing Agreement (DSPA) and Data Processing and Data Protection Impact Assessment (DPIA) with the Commissioner, ICBs, PCNs (or representatives), and each GP practice.
3. Be responsible for ensuring that the DPIA and DSPA are signed by the GP practices before collecting data.
4. Ensure that the minimum dataset is imported for each patient and stored securely on the TIC Health Patient Administration System (PAS) in line with IG regulations.
5. Oversee the development of KPI data from the PAS for national and local submission.
6. Write reports for ad hoc data requirements using SQL.
7. Lead on the advanced analysis, interpretation, and presentation of complex data to create plans and make decisions on improvements in service delivery.
8. Lead on investigations into causes of data variances and contribute to the implementation of solutions.
9. Support the service planning process and review the performance of all aspects of the service.
Data Protection Officer (DPO)
1. Develop, implement, and maintain data protection policies and procedures, ensuring they are embedded across all departments.
2. Conduct data protection impact assessments (DPIAs) for new and existing projects, identifying and mitigating data privacy risks.
3. Facilitate data subject rights, including requests for access, rectification, and erasure of personal data.
4. Report data breaches to the ICO when required and manage internal breach response processes.
5. Provide regular data protection training and awareness programs for all staff members.
6. Keep up to date with changes in data protection law and regulations.
Information Governance Responsibilities
1. Develop and enforce an information governance framework that aligns with best practices and regulatory standards.
2. Oversee the data governance strategy and policies to ensure consistent and secure handling of data across the organisation.
3. Ensure the organisation adheres to Cyber Essentials Plus requirements and other information security standards, coordinating with the IT team for regular compliance audits.
4. Conduct regular data audits and quality assurance checks to ensure accuracy, consistency, and security of data assets.
5. Maintain records of processing activities (ROPA) and ensure proper documentation of data management processes.
Stakeholder Engagement
1. Collaborate with department heads to ensure alignment with data protection and information governance policies.
2. Work closely with IT, clinical, and operational teams to ensure robust data security and compliance practices.
3. Act as the main liaison with external auditors, regulatory bodies, and legal advisors on data protection and information governance matters.
4. Provide regular reports to senior management and the board on data protection, information governance, and data management performance.
Teamwork
To work collaboratively with other departments within the TIC group of companies, championing professional integrity.
Personal Development
All Company employees are required to participate in the organisation's annual appraisal review scheme. The end-of-year appraisal will include a personal development review where progress made over the last year is discussed and agreed. Focus on the following year's departmental and personal objectives will be identified, discussed, and agreed.
Person Specification
Experience
* Experience and proven aptitude for working with and managing data.
* Good understanding of data protection legislation.
* Ability to manage and prioritise own workload.
* Previous experience dealing with confidential data.
* Experience in reconciling large complex data sets.
* Excellent computing/IT skills with aptitude for data handling e.g., electronic methods of data capture, transfer, and presentation.
* Demonstrable analytical and problem-solving skills.
* The ability to present data to a wide audience effectively.
* Participation in audits.
* Experience gained from working within a multi-professional organisation.
* Knowledge of IT, cyber security, and ISO standards.
Qualifications
* Educated to degree level.
Personal Attributes
* Ability to plan and prioritise workload and work under minimal supervision.
* Hardworking, flexible with good communication skills.
* A caring attitude, patience, and empathy and the ability to offer reassurance to colleagues.
* Building and maintaining relationships with colleagues.
* Motivated commitment to continuing professional development of self and others.
Disclosure and Barring Service Check
This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975, and as such, it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.
#J-18808-Ljbffr