Job summary This role is only open to applicants that currently work within an NHS Trust within the Hampshire and Isle of Wight Integrated Care System (HIOW ICS). Hampshire Hospitals are looking to recruit an enthusiastic and highly motivated Senior Information Governance Officer to join our Information Governance team. This is an exciting opportunity to be part of an inclusive team helping the Trust meet its obligations under data protection legislation. They will take ownership of the Trust's Information Asset Management strategy and be pivotal in ensuring appropriate procedures, policies, and training modules are in place to support the Trust's Information Asset Owners (IAOs) and Information Asset Administrators (IAAs) and act as the point of contact for these stakeholders. They will be crucial in identifying requirements and gaps, and collecting evidence for the Data Security and Protection Toolkit (DSPT). The post holder may deputise for the Data Protection Officer (DPO) as and when required. The applicant will have experience of working in a data protection environment, have excellent communication skills and be highly organised. The post holder will have excellent time management skills, with the ability to re-prioritise as necessary in a changing environment, is confident to provide data protection support Trust wide, and can work productively and effectively on their own and as part of a small team. The post may involve working onsite as well as remote/home working. Main duties of the job Be a subject matter expert on all IG matters within the Trust and as such provide an organisational wide advisory and guidance service, on highly complex information legislation matters. Ensure appropriate evidence is captured for audit and submission for IG related outcomes within the Data Protection Security Toolkit (DSPT). Provide support to the Data Protection Officer and Information Security Manager in co-ordinating the completion of the DSPT. Develop recommendations to resolve issues of non-compliance in the Trust offering a range of options which are suitable both for service provision and for legislative compliance. Review and update Trust wide Information Governance policies and procedures to ensure safe and effective management of information across the Trust. Provide advice and monitoring on Data Protection Impact Assessments (DPIAs) and Information Asset Risk Assessments. Be the first point of contact in respect of IG compliance across the Trust, providing subject matter expertise, giving advice and guidance on all aspects of IG. Respond to IG incidents and security breaches. Ensure Information Commissioner's Office (ICO) reportable incidents are escalated within the legal timeline and critical steps are taken to protect individual's data. Maintain the Trust's ROPA and Information Asset Register, ensuring Information Asset Owners are trained and aware of their responsibilities. About us Our vision is to provide outstanding care for every patient. Patient care is at the heart of what we do at our three sites: Basingstoke and North Hampshire Hospital, Royal Hampshire County Hospital in Winchester and Andover War Memorial Hospital. Hampshire Hospitals NHS Foundation Trust provides medical and surgical services to a population of approximately 600,000 people across Hampshire and parts of West Berkshire. Our cultural ambition is to have a culture that places people at the heart of all we do, where we all belong, and where learning, improvement and excellence thrive. We provide specialist services to people across the UK and internationally. We are one of only two centres in the UK treating pseudomyxoma peritonei (a rare form of abdominal cancer) and we are leaders in the field of tertiary liver cancer and colorectal cancer. The trust employs more than 9,000 staff and has a turnover of over £500 million a year. As a Foundation Trust, we are directly accountable to our members through the governors. The Council of Governors represent the interests of their constituencies and influence the future plans of the Foundation Trust. Tackling Climate Change: Hampshire Hospitals aims to embed sustainability and net zero carbon principles into the delivery of care across all its services. To find out more, searchHHFT Climate Actionor contactclimateactionhhft.nhs.uk. Date posted 17 January 2025 Pay scheme Agenda for change Band Band 7 Salary £46,148 to £52,809 a year pa pro rata Contract Permanent Working pattern Full-time Reference number 251-CORP3487-IS Job locations Royal Hampshire County Hospital Winchester SO22 5DG Job description Job responsibilities Further information about the Trust and this role can be found on the Job Description and Person Specification document attached. Job description Job responsibilities Further information about the Trust and this role can be found on the Job Description and Person Specification document attached. Person Specification Training & Qualifications Essential Post-grad degree level qualification or equivalent knowledge and skills gained through alternative study or employment. Appropriate certified data protection or information governance qualification (such as BCS Practitioner Certificate in Data Protection, CISMP, UK GDPR Practitioners Certificate). Evidence of continuous professional development in relation to Information Governance and changes in legislative requirements. Desirable Qualification in Information/Cyber Security or equivalent experience. Experience & Knowledge Essential Expert knowledge and understanding of data protection legislation. Knowledge of the Caldicott Principles, the Information Commissioner's Office, the NHS Data Security and Protection Toolkit, and the Records Management Code of Practice. Extensive experience working in an Information Governance role. Experience of writing and presenting reports and papers. Experience of Data Protection Impact Assessments, information risk assessments and ROPA. Desirable Previous experience of working within the NHS or other healthcare setting. Understanding of the threats, risks, and influences affecting the NHS and wider healthcare provision and how to manage these. Experience in processing and responding to data subject rights requests. Skills & Ability Essential Excellent presentation skills and the ability to tailor material to varying audiences including preparation of reports and presenting at senior meetings. Ability to analyse and interpret complex information, offer informed advice and translate this into easily understood materials and messages. Excellent oral and written skills. Excellent time management skills, with the ability to re-prioritise as necessary in a changing environment, meeting agreed timescales. Ability to work on own initiative with minimal supervision, prioritise and achieve goals. Person Specification Training & Qualifications Essential Post-grad degree level qualification or equivalent knowledge and skills gained through alternative study or employment. Appropriate certified data protection or information governance qualification (such as BCS Practitioner Certificate in Data Protection, CISMP, UK GDPR Practitioners Certificate). Evidence of continuous professional development in relation to Information Governance and changes in legislative requirements. Desirable Qualification in Information/Cyber Security or equivalent experience. Experience & Knowledge Essential Expert knowledge and understanding of data protection legislation. Knowledge of the Caldicott Principles, the Information Commissioner's Office, the NHS Data Security and Protection Toolkit, and the Records Management Code of Practice. Extensive experience working in an Information Governance role. Experience of writing and presenting reports and papers. Experience of Data Protection Impact Assessments, information risk assessments and ROPA. Desirable Previous experience of working within the NHS or other healthcare setting. Understanding of the threats, risks, and influences affecting the NHS and wider healthcare provision and how to manage these. Experience in processing and responding to data subject rights requests. Skills & Ability Essential Excellent presentation skills and the ability to tailor material to varying audiences including preparation of reports and presenting at senior meetings. Ability to analyse and interpret complex information, offer informed advice and translate this into easily understood materials and messages. Excellent oral and written skills. Excellent time management skills, with the ability to re-prioritise as necessary in a changing environment, meeting agreed timescales. Ability to work on own initiative with minimal supervision, prioritise and achieve goals. Disclosure and Barring Service Check This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions. Certificate of Sponsorship Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab). From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab). Additional information Disclosure and Barring Service Check This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions. Certificate of Sponsorship Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab). From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab). Employer details Employer name Hampshire Hospitals NHS Foundation Trust Address Royal Hampshire County Hospital Winchester SO22 5DG Employer's website https://www.hampshirehospitals.nhs.uk/ (Opens in a new tab)