Job summary NHSBT has the vision of Enabling a world where every patient receives the donation they need. As a senior leader for the organisation, this role will play a leading role to achieving this vision by ensuring that all NHSBT services, systems, and projects are secure and privacy by design and all records are managed efficiently, effectively and compliantly. The is an exciting time to join and lead NHSBTs Data Security, Privacy and Records Management Team, which has been newly developed following the merge of the Information Governance and Information Security Teams. As a strategic leader, innovator and subject matter expert, you will lead the national team to deliver advice, guidance, and assurances across the data protection agenda and deliver identified and planned strategic improvement objectives following the development of this new function In addition, you will be part of the senior leadership team for the Chief Information Officer (CIO) function, helping to deliver the wider Digital, Data and Technology strategic change agenda. Note: Your contractual base will be one of (Bristol Filton Barnsley, Liverpool Centre, Manchester Centre, Tooting Centre, Colindale Centre). This is a hybrid role, and the expectation is this will be a mixture of at-home, working from base, visiting other NHSBT sites and in meetings with others. The number of days on-site will vary dependent on the needs of the business. Main duties of the job In this role you will be the expert and leader in Data Security, Data Privacy, and Records Management and ensuring the organisation is compliant with legislation, regulation, national policy as well as security and privacy by design industry best practices. Your responsibilities will include: 1. Developing, planning and executing against dedicated strategies, operating models and business cases for Data Security, Data Privacy, and Records Management. 2. Maintaining the accurate of the completion of the Data Security and Protection Toolkit and to lead on improvement initiatives, relevant audits findings and reports. 3. Working with the wider Chief Information Officer (CIO) leadership team you will assist in the identification, development and evolution of cross team propositions and enhanced ways of working. 4. Supporting the Senior Information Risk Officer (SIRO), Deputy SIRO & Caldicott Guardian in the discharge of their responsibilities, ensuring the application of all relevant requirements (e.g. Caldicott Principles). 5. Managing and leading a team of, Data Privacy, Records Management and Data Security experts. Operating and maintaining the information systems relating to Data Privacy, Records Management and Data Security for NHSBT, including providing leadership across incidents and breaches and reporting externally to the Information Commissioners Officer. About us It takes all types of people to deliver the kind of service that saves and improves lives. At NHS Blood and Transplant, youll join a team of more than 6,000 people who are making a genuine difference to communities, families, friends, relatives and more across the UK. We play a unique and special role in the NHS by helping people do something extraordinary- donate blood, blood products, organs, tissues, or stem cells to save someone in need. Our three core values are what set us apart. They guide and inspire everything we do. By being caring, expertly meeting the needs of our patients and our people, and accepting nothing less than the best quality, we can do extraordinary work and help our people to do something extraordinary in their career, too. Three small words, one big difference - Caring, Expert and Quality. Together we'll save and improve more lives than ever. You will join us on our journey to create an inclusive workplace and aim to reflect the diverse communities we work with, and we positively encourage applications from all sectors of the community. Date posted 04 March 2025 Pay scheme Agenda for change Band Band 8c Salary £74,290 to £85,601 a year Contract Permanent Working pattern Full-time Reference number 006052 Job locations NHSBT - Bristol Filton 500 North Bristol Park, Northway Filton, Bristol BS34 7QH NHSBT - Tooting 75 Cranmer Terrace Tooting London SW17 0RB NHSBT - Barnsley Unit D, Capitol Way South Yorkshire Barnsley S75 3FG NHSBT - Manchester Plymouth Grove Manchester M13 9LL NHSBT - Colindale Charcot Road Colindale London NW9 5BG NHSBT - Birmingham Vincent Drive Edgbaston Birmingham B15 2SG Job description Job responsibilities Please view the attached recruitment profile which is a summary of the detailed Job Description and Person Specification. Job description Job responsibilities Please view the attached recruitment profile which is a summary of the detailed Job Description and Person Specification. Person Specification Qualifications Essential Educated to Masters Degree level or equivalent, with specialist qualifications in Information Governance, Privacy / Security and records management. Requirement for membership of a professional body. Demonstrates commitment to own continued professional development (CPD) Experience Essential An expert in information management and relevant legislation and regulation, including legal admissibility of evidence and forensics. Knowledge and practical experience of the application of records management standards e.g. ISO15489, BS10008, ISO27001 and other best practice guidelines for records management. Experienced in the use of Information Assurance maturity models such as the DSP Toolkit and the government Information Assurance Maturity Model (IAMM). Experience of information governance, information security and records management strategy and policy development. Highly developed, specialised information governance, privacy, information security and records management skills acquired through extensive relevant management experience of this area gained at a senior level Experienced in the management of data protection and security issues and information governance assurance structures. Person Specification Qualifications Essential Educated to Masters Degree level or equivalent, with specialist qualifications in Information Governance, Privacy / Security and records management. Requirement for membership of a professional body. Demonstrates commitment to own continued professional development (CPD) Experience Essential An expert in information management and relevant legislation and regulation, including legal admissibility of evidence and forensics. Knowledge and practical experience of the application of records management standards e.g. ISO15489, BS10008, ISO27001 and other best practice guidelines for records management. Experienced in the use of Information Assurance maturity models such as the DSP Toolkit and the government Information Assurance Maturity Model (IAMM). Experience of information governance, information security and records management strategy and policy development. Highly developed, specialised information governance, privacy, information security and records management skills acquired through extensive relevant management experience of this area gained at a senior level Experienced in the management of data protection and security issues and information governance assurance structures. Certificate of Sponsorship Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab). From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab). Additional information Certificate of Sponsorship Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab). From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab). Employer details Employer name NHS Blood and Transplant Address NHSBT - Bristol Filton 500 North Bristol Park, Northway Filton, Bristol BS34 7QH Employer's website https://www.nhsbt.nhs.uk/ (Opens in a new tab)