Do you have a blend of Information / Data Governance and broader IT Security compliance knowledge? Have experience of taking responsibility for information or data security as an officer or at a management level? Want to join a global leader in Healthcare? If so we could have the job for you
Role - Information Governance Manager aka Data Governance Manager, Information Security Manager, Security and Compliance Manager, IT Security Officer
Location – Central Birmingham, 3 days office / 2 from home
Salary to 55K Pension, Private Health, 25 Days rising to 30 on service
The role
As the Information Governance Manager, you will be responsible for data protection, risk management, records management, and the development and implementation of related policies and training. Your role is critical in mitigating risks to our data and systems, ensuring our material records are appropriately managed, and providing expert advice on governance and information security across the business, including third party sourcing and legal functions.
Key Responsibilities:
- Expert Guidance: Provide expert advice on information governance and data protection, serving as the subject matter expert on the Data Protection Act (DPA) and GDPR.
- Policy Development: Develop and implement company-wide policies and procedures for information governance and data protection, ensuring they comply with legislative changes and national mandates.
- Risk Management: Conduct risk assessments, develop action plans to address findings, and ensure proper asset and records management.
- Incident Management: Lead governance and incident management for the Information Security Program, ensuring IT solutions are secure.
- Collaboration: Work with internal teams to perform contract due diligence, including Data Protection Impact Assessment reviews, and support business operations by collaborating with all internal functions.
- Audit and Compliance: Perform internal audits to ensure compliance with policies, standards, and regulations. Lead the NHS Data Security Protection Toolkit annual assessment and submission.
- Training: Conduct awareness training on data protection, risk, and governance.
- Metrics and Reporting: Create metrics to document governance effectiveness and respond to internal and external audit requests and subject access requests.
- Certification Maintenance: Work with IT to maintain relevant certifications, including Cyber Essentials Plus.
Interested? Please send your cv for a swift response!