Head of Information Security and Data Protection
Barbican/Hybrid | Permanent | Full-Time
Competitive salary, depending on experience
37.5 hours per week
Nuffield Health is the charity that’s building a healthier nation, one day at a time. From award-winning hospitals and leisure facilities to flagship community programmes – we’ll do whatever it takes to look after the UK’s wellbeing. It starts with passion and commitment to quality. It starts with you.
As our Head of Information Security and Data Protection, you will be accountable for establishing and maintaining a robust framework to ensure compliance with data protection laws and related legislation, mitigation and control of information security risks, and alignment of information governance with business objectives.
As Head of Information Security and Data Protection, you will be responsible for:
* Ensuring compliance with data protection laws and NHS DSPT requirements, maintaining ISO 27001 accreditation, and overseeing data retention and contractual security measures.
* Identifying, mitigating and proposing controls for information security risks, conducting and overseeing DPIAs, managing IG incidents, and collaborating with Technology to strengthen cyber resilience.
* Defining and implementing an information governance strategy, maintaining policies, leading data-sharing agreements, and advising on ethical, legal and secure use of data.
* Developing training programs to promote data security awareness and fostering a culture of responsible information handling.
* Overseeing compliance with data subject rights (such as DSARs) and ensuring proper management of health records in line with confidentiality rules.
* Working closely with Technology teams to implement and enhance security measures that are commensurate with risk and compliance considerations.
* Working with senior leaders and clinical teams to align IG with business needs.
To be successful in this role you will have:
* Proven experience in a senior information governance role.
* Expertise in developments related to information governance and compliance, including an up-to-date knowledge of guidance, legislation and standards relevant to the role such as UK GDPR, ISO 27001 and NHS DSPT.
* A sound understanding of information governance concepts and technologies.
* Excellent written and verbal communications, and ability to articulate complex ideas to senior stakeholders up to and including the Executive Board
* Strong relationship building with business stakeholders at all levels, including Executive Board and third parties.
* Experience of people management and development
Helping you feel good.
We want you to love coming to work, feeling healthy, happy and valued. That’s why we’ve developed a benefits package with you in mind. Here, you can choose from a range of fitness, lifestyle, health and fitness wellbeing rewards, such as free gym membership, health assessments, retail discounts and pension options.
At Nuffield Health, we take care of what’s important to you.
If you like what you see, why not start your application now? We consider applications as we receive them and reserve the right to close adverts early (for example, where we have received an unprecedented high volume of applications). So, it’s a good idea to apply right away to ensure you’re considered for this role.
Apply today… It starts with you
#J-18808-Ljbffr