Description Are you an experienced data protection and information governance expert seeking a new challenge? We have an exciting opportunity for you to join our team as the Data Protection and Information Governance Lead for Social Security Scotland and take the next step in your career. Social Security Scotland, an Executive Agency of the Scottish Government, is undertaking the largest and most complex IT and digital change programme since devolution. With a lifetime budget of over £300m, Social Security Scotland is delivering a social security system that will support the people of Scotland for decades to come. We aim to develop within Social Security Scotland, a positive and inclusive culture, which supports our people to flourish, by embedding a working environment where we all treat each other with dignity and respect, and recognise each other’s contributions. In this pivotal role, you will shape the data protection landscape across the organisation while leading and mentoring three specialised teams. We are seeking candidates with in-depth domain knowledge and a proven track record of effectively managing large, diverse teams in complex environments. In this role, strong leadership skills are essential to not only inspire and motivate your teams but also to navigate and manage team dynamics effectively. You will be required to implement a firm yet supportive approach that fosters collaboration and cohesion. By promoting open communication and addressing challenges head-on, you will cultivate a constructive working environment where differing perspectives are valued and harnessed, ultimately driving the teams to work cohesively and achieve shared goals in data protection and information governance. You will manage and lead three teams setting direction and policy for these specialist areas and ensuring their effectiveness and performance for the organisation. Data Protection (Corporate & Client) Team Responsibilities: • Ensure compliance with legal data protection requirements. • Promote privacy practices, assess risks, and advise on contractual agreements. • Develop and refine data protection policies and procedures. • Provide staff training on data protection. • Manage and resolve data breaches. • Facilitate individuals' information rights. • Monitor performance and compliance for the Executive Team. • Foster a culture of continuous improvement in data protection. Corporate Records and Information Governance Team Responsibilities: • Implement the Records Management Plan per Keeper of the Records Scotland guidelines. • Manage the electronic records and document management system. • Respond to Freedom of Information (Scotland) Act requests for legal compliance. • Facilitate proactive public disclosure of information. • Address inquiries related to UK General Data Protection Regulation within statutory timelines. • Process disclosure requests from third-party authorities in accordance with legal requirements. • Coordinate information governance processes to ensure policy adherence. Responsibilities Role Responsibilities: • Strategic Leadership: Lead the development and implementation of data protection and information governance policies, processes, and services. Collaborate with senior leadership, including the Chief Data Officer and stakeholders, to ensure compliance with statutory requirements and best practices. • Team Management: Manage and direct three teams focused on corporate and client data protection and records management. Set clear goals, promote a culture of continuous improvement, and enhance team effectiveness. • Data Protection Oversight: Serve as the Data Protection Officer for Social Security Scotland. Guide senior leadership and work with the Scottish Government Data Protection Officer to ensure adherence to legal requirements, address data breaches, and promote privacy within all data processing activities. • Partnership Development: Build and maintain strong data protection and information governance partnerships with the Scottish Government, UK Ministerial Departments, and Local Government, ensuring collaborative compliance efforts. • Training and Awareness: Develop and deliver training for staff at all levels to foster a privacy-focused culture throughout the organisation. • Compliance Monitoring: Evaluate organisational compliance with data protection laws and governance standards, ensuring performance metrics are met and communicated to executive leadership. Qualifications Success Profiles We use an assessment framework called ‘Success Profiles’ which lists the elements we test and provides detailed descriptions of each. Find out more about how we assess the Success Profile elements. Experience 1. Extensive knowledge of data protection legislation, including the UK General Data Protection Regulation, Data Protection Act, Freedom of Information (Scotland) Act and Public Records (Scotland) Act, with experience in managing compliance within a large organisation. 2. Proven ability to build effective networks and partnerships across organisational boundaries, fostering collaboration with internal and external stakeholders. 3. Proven track record of successfully leading multi-disciplinary teams through change, fostering collaboration and positive working relationships whilst enhancing team performance and cohesion. Behaviours • Leadership (Level 4) • Communicating and Influencing (Level 4) • Seeing the big picture (Level 4) • Delivering at pace (Level 4) You can find out more about Success Profiles Behaviours here: Success Profiles - Civil Service Behaviours (publishing.service.gov.uk) How To Apply Apply online, you must provide a CV and Supporting Statement (of no more than 750 words) which provides evidence of how you meet the skills, experience and behaviours listed in the Success Profile above. Should a large number of applications be received, an initial sift may be conducted using the CV and personal statement on the experience criteria. Candidates who pass the initial sift will have their applications fully assessed. We will test your behaviours, technical skills and experience as part of the sift process, and if successful, you will be invited to an assessment and interview where we will test these again. Full details of the selection process will be made available to shortlisted candidates once the sift has been completed. We aim to provide feedback on request. However, if we receive a large number of applications it may not be possible for us to provide specific feedback on your application. We will provide feedback on request to candidates who attend an interview/assessment. Expected Timeline (subject to change) Sift – w/c 21st April 2025 Interview – w/c 5th May 2025 Location – In Person in either Dundee or Glasgow Reserve List In the event that there are more successful candidates than posts available, a reserve list will be kept for up to 12 months. About Us Social Security Scotland is an Executive Agency of the Scottish Government. Our benefits help people from all walks of life in Scotland. We offer rewarding careers and employ people across Scotland in a wide range of professions and roles. We are committed to recruiting a diverse workforce that is representative of the clients we serve. Find more about us here. We offer a supportive and inclusive working environment along with a wide range of employee benefits. Find out more about what we offer. As part of the UK Civil Service, we uphold the Civil Service Nationality Rules. Working Pattern Our standard hours are 35 hours per week and we offer a range of flexible working options, depending on the needs of the role. We embrace a hybrid working style where all colleagues will spend time in either our Glasgow or Dundee offices. There is an expectation of a minimum 2 days per week in your assigned location, which will be either Glasgow or Dundee. If you have specific questions about the role you are applying for, please contact us. Equality Statement Social Security Scotland are committed to equality and inclusion and we aim to recruit a diverse workforce that reflects the population of our nation. Social Security Scotland are a Disability Confident Employer. We will consider and implement any reasonable adjustments you may require throughout the recruitment process and during the course of your employment, should you be successful in securing a post. If you feel you may require assistance with any part of our recruitment process, please contact us at Recruitmentsocialsecurity.gov.scot. Find out more about our commitment to diversity and how we offer support and recruitment adjustments for anyone who needs them. Further Information Find out more about our organisation, what we offer staff members and how to apply on our Careers Website. Read our Candidate Guide for further information on our recruitment and application processes. The successful candidate will be expected to remain in post for a minimum of 3 years unless successful in gaining promotion to a higher Band or Grade. Social Security Scotland’s recruitment processes are underpinned by the recruitment principles of the Civil Service Commissioner, which outline that selection for appointment be made on merit on the basis of fair and open competition - Recruitment - Civil Service Commission (independent.gov.uk) If you feel at any time your application has not been treated in accordance with the values in the Civil Service Code and/or if you feel the recruitment has been conducted in such a way that conflicts with the Civil Service Commissioner’s Recruitment Principles, you can make a complaint, by contacting Social Security Scotland at recruitmentsocialsecurity.gov.scot in the first instance. If you are not satisfied with the response you receive you can contact the Civil Service Commissioner. If you experience any difficulties accessing our website or completing the online application form, please contact the Resourcing Team via recruitmentsocialsecurity.gov.scot. Apply before Tuesday 22nd April 2025 at 23:55 Contact Name - Resourcing Team Contact Email - recruitmentsocialsecurity.gov.scot