Head of Information Governance and Data Protection
2 weeks ago
Job Description
SUMMARY
The Head of Information Governance and Data Protection Officer (DPO) role is the professional lead for Information Governance at Veezu Group. The role will provide expert Information Governance advice and guidance to the Veezu management team and key partners; to ensure that all parties are processing information in accordance with legislation, guidance, while meeting their legal and regulatory obligations.
The Data Protection Officer is an essential role in facilitating ‘accountability’ and the organisations’ ability to demonstrate ongoing compliance with GDPR, where the DPO performs another role or roles there must be no conflict of interest. While this role reports to the IT Director, direct access to the Veezu Executive Board is assured in the fulfilment of their DPO duties. Ensuring that the DPO can effectively carry out their responsibilities and have their concerns and recommendations heard at the highest level of the organisation.
ROLE DUTIES AND EXPERIENCE REQUIRED
- Act as the appointed statutory Data Protection Officer as defined by the General Data
- Protection Regulation 2016 for Veezu Group.
- Be the lead source of information and expertise on information governance and data protection, including but not limited to: The Data Protection Act 1998, The UK and EU General Data Protection Regulation, ISO27001 Information Security Standard, PCI-DSS Card Payment regulation, The Freedom of Information Act 2000, Environmental Information Regulations 2004, The Common Law Duty of Confidence, The Computer Misuse Act, The Office of the Information Commissioner and its associated powers, Information Commissioner Directives/Guidance
- Lead the development of strategies, policies, and guidelines that ensure organisational compliance with information governance and data protection regulations across all departments. This will require making decisions in unprecedented situations.
- Co-operate with and be the first point of contact for the Information Commissioner.
- Be available to be contacted directly by data subjects.
- Develop Information Governance policies that address: Organisational accountability, DPO reporting arrangements, Timely involvement of the DPO in all data protection issues, Compliance assurance: privacy by design/default, When and where data protection impact assessments are required and subsequent reporting on performance, The DPO’s role in incident management
- Have sufficient understanding of the processing operations carried out, as well as the information systems and data security and data protection needs of the organisation.
- Monitor the effectiveness of policies and procedures and the organisations’ compliance with them through a proactive program of audit and review, in conjunction with all functions across the operating model and other stakeholders and bodies.
- Have senior responsibility for the development of a robust Information Risk Assurance function which includes Cyber Security, System Failure and GDPR.
- Provide a single point of knowledge to senior management and staff with clear policies and procedures that ensure Veezu meets both its statutory and legal obligations.
- Maintain an awareness of evolving legislation and national guidance relating to all areas of responsibilities.
- Promote an effective information governance and risk culture that embeds information governance across the Veezu organisation.
- Lead on the development of training, awareness and communications programmes aimed at
- informing and advising Veezu staff (at all levels) to promote understanding of their obligations to comply with information governance requirements.
- Proactively disseminate complex and contentious information governance principles to a wide audience through regular communications briefings using e-mail, intranet and bulletins and other communications media, where there may be resistance to compliance.
- Ensure the Data Security and Protection Toolkit (DSPT) and other IG related audit submissions are made correctly, within timescales and are signed off by the Veezu Exec/Board where applicable and that evidence is available to support the attainment levels submitted. This includes overseeing the delivery of action plans and improvement programmes to support compliance with legislation and national Information Governance requirements. This will require liaison with senior managers throughout the organisation.
- Develop/enforce organisational trigger-points for mandatory input from the DPO providing advice on Data Protection Impact Assessments (DPIA) to offer a balanced independent review of activities such as business improvements, system requests for change, large scale business development and introduction of new systems and services, to: Give consideration of the business needs against GDPR and other information governance / security requirements, Provision of advice and guidance on changes required to meet/maintain GDPR/IG compliance, Identification of system change requirements to support GDPR/IG compliance, Consult with the Information Commissioner’s Office (ICO) where proposed processing poses a high risk in the absence of proposed mitigations, Provide expert input for commercial contracts, invitations to tender, etc, whilst ensuring robust information security and governance is maintained.
- Lead and support specific groups such as Information Asset Owners, System Administrators through effective networking structures sharing of relevant experience and provision of appropriate advice.
- Ensure information breaches (e.g., security, confidentiality) including serious incidents and breaches are investigated and where necessary escalated in a professional manner and reported on in accordance with process and procedure.
- Provide guidance on operational and procedural improvements arising from lessons learned.
- Be organisations expert on information sharing, ensuring organisations approaches are compliant with law and best practice.
- Proactively and strategically ensure organisations are able to share information effectively and appropriately where multi agency or partnership working exists.
- Take the lead in developing, managing and reviewing information sharing protocols and third-party access and Data Processing Agreements with other organisations including local authorities and voluntary organisations.
PERSONAL COMPETENCIES
- Planning; exhibit exceptional organisational acumen.
- Communication Proficiency; possess the ability to articulate thoughts with clarity, at all levels of the organisation.
- Proactive Adaptability; embody a proactive ethos, taking initiative when appropriate, pinpointing areas for improvement or transformation.
- Collaborative Spirit; commit to the broader organisations vision, actively collaborating to achieve overarching goals.
- Approach; take a calm and collegial approach when working with the team and wider business.
- Result-Oriented Approach; Display intrinsic motivation and an aptitude to autonomously define, manage, and achieve key milestones and objectives.
-
Head of Information Governance and Data Protection
Found in: Talent UK 2A C2 - 2 weeks ago
Cardiff, United Kingdom Veezu Full timeSUMMARYThe Head of Information Governance and Data Protection Officer (DPO) role is the professional lead for Information Governance at Veezu Group. The role will provide expert Information Governance advice and guidance to the Veezu management team and key partners; to ensure that all parties are processing information in accordance with legislation,...
-
Head of Information Governance and Data Protection
Found in: Whatjobs ES C2 - 6 days ago
Cardiff, United Kingdom Veezu Full timeSUMMARY The Head of Information Governance and Data Protection Officer (DPO) role is the professional lead for Information Governance at Veezu Group. The role will provide expert Information Governance advice and guidance to the Veezu management team and key partners; to ensure that all parties are processing information in accordance with legislation,...
-
Head of Information Governance and Data Protection
Found in: Appcast Linkedin GBL C2 - 2 weeks ago
Cardiff, United Kingdom Veezu Full timeSUMMARYThe Head of Information Governance and Data Protection Officer (DPO) role is the professional lead for Information Governance at Veezu Group. The role will provide expert Information Governance advice and guidance to the Veezu management team and key partners; to ensure that all parties are processing information in accordance with legislation,...
-
Head of Information Governance and Data Protection
Found in: Jooble UK C2 - 2 weeks ago
Cardiff, United Kingdom Veezu Full timeSUMMARY The Head of Information Governance and Data Protection Officer (DPO) role is the professional lead for Information Governance at Veezu Group. The role will provide expert Information Governance advice and guidance to the Veezu management team and key partners; to ensure that all parties are processing information in accordance with legislation,...
-
Cardiff, United Kingdom Veezu Full timeSUMMARY The Head of Information Governance and Data Protection Officer (DPO) role is the professional lead for Information Governance at Veezu Group. The role will provide expert Information Governance advice and guidance to the Veezu management team and key partners; to ensure that all parties are processing information in accordance with legislation,...
-
Head of Information Governance and Data Protection
Found in: Appcast UK C2 - 1 week ago
Cardiff, United Kingdom Veezu Full timeSUMMARYThe Head of Information Governance and Data Protection Officer (DPO) role is the professional lead for Information Governance at Veezu Group. The role will provide expert Information Governance advice and guidance to the Veezu management team and key partners; to ensure that all parties are processing information in accordance with legislation,...
-
Head of Information Governance and Data Protection
Found in: Appcast UK C C2 - 1 week ago
Cardiff, United Kingdom Veezu Full timeSUMMARYThe Head of Information Governance and Data Protection Officer (DPO) role is the professional lead for Information Governance at Veezu Group. The role will provide expert Information Governance advice and guidance to the Veezu management team and key partners; to ensure that all parties are processing information in accordance with legislation,...
-
Information Governance Compliance Officer
1 week ago
Cardiff, United Kingdom Cardiff Council Full time**About The Service** An exciting opportunity has become available within the Council’s Information Governance Team supporting the delivery of the Council’s Information Governance practices and helping us build ready for the next phase of our response to delivering services to the citizens we are here to help. Come and join a growing team and enhance...
-
Head of Data
Found in: Jooble UK C2 - 2 weeks ago
Cardiff, United Kingdom Veezu Full timeThe Head of Information Governance and Data Protection Officer (DPO) role is the professional lead for Information Governance at Veezu Group. The role will provide expert Information Governance advice and guidance to the Veezu management team and key partners; to ensure that all parties are processing information in accordance with legislation, guidance,...
-
Head of Data
2 weeks ago
Cardiff, United Kingdom Veezu Full timeThe Head of Information Governance and Data Protection Officer (DPO) role is the professional lead for Information Governance at Veezu Group. The role will provide expert Information Governance advice and guidance to the Veezu management team and key partners; to ensure that all parties are processing information in accordance with legislation, guidance,...
-
Data Protection Lawyer
2 weeks ago
Cardiff, United Kingdom BCL Legal Full timeData Protection Solicitor - National firm - Cardiff/Exeter Market leading national law firm is seeking an experienced Data Protection Solicitor to join its Education team in Birmingham. This Data Protection Solicitor opportunity is offered on a full or part-time (4 days a week), permanent basis with flexible working options accommodated. Hybrid working...
-
Deputy Data Protection Officer
15 hours ago
Cardiff, United Kingdom Cardiff Council Full time**About The Service** The Resources Directorate is responsible for a wide range of corporate services, serving the whole council, and plays a vital role in supporting the operational Directorates in the delivery of their services. The Information Governance Section is based within the Resources Directorate and supports the Council’s services, externally...
-
Head of Governance and Assurance
1 week ago
Cardiff, United Kingdom Vibe Recruit Full timeJob Title: - Head of Governance and Assurance- Contract Type: - Permanent- Location: - Cardiff- Industry: - Permanent and Executive Recruitment- Reference: - HQ788_1689849020- Contact Name: - Naomi Gibbs- - Job Published: - 20 July 2023 Job Description Vibe Recruit's client have a fantastic opportunity for a Head of Governance to join their team based in...
-
Management Information System Manager
2 weeks ago
Cardiff, United Kingdom Michael Page Technology Full timeThis role of Information Systems Manager is a key leadership position within the Technology Department of a major public sector organisation. The successful candidate will be responsible for managing and improving data strategies to enhance organisational effectiveness. This large public sector organisation is focused on providing efficient and sustainable...
-
Governance Officer
5 days ago
Cardiff, United Kingdom Cardiff Community Housing Association Full timeAbout the Role Working as part of our Governance Team, you will contribute to the successful delivery of the governance function and support us to be an organisation that sets the standard in governance. About You Were looking for a confident individual who can communicat e effectively with a diverse range of customers both internally and externally. This...
-
Data Analyst
3 days ago
Cardiff, United Kingdom Butterfly Data Full timeButterfly Data is seeking a motivated individual to join our consulting team as a Data Analyst on a remote (work from home) basis. We provide a comprehensive set of data services to help our clients refine and transform their data in order to obtain transformationalinsights. This is an exciting opportunity to work on interesting and varied client projects...
-
Head of Production
6 days ago
Cardiff, United Kingdom Department of International Trade Full timeWe are looking for a Head of Production to manage our in-house production team. This team is the first point of contact for all of DIT’s global creative production needs - from events to video to publications. The Head of Production will take a key leadership role in overseeing our production processes, ensuring quality control of content, and advising...
-
Data Architect
6 days ago
Cardiff, United Kingdom Legal & General Full timeCompany Description Life can sometimes be unpredictable, and it pays to plan ahead. Our aim at Legal & General Retail is to help our customers plan for the unexpected, achieve financial security for their tomorrow, and protect everything that's important to them. To better understand our customers and meet their needs, we've brought our protection,...
-
Data Architect
Found in: Appcast UK C C2 - 5 days ago
Cardiff, United Kingdom Legal & General Full timeLife can sometimes be unpredictable, and it pays to plan ahead. Our aim at Legal & General Retail is to help our customers plan for the unexpected, achieve financial security for their tomorrow, and protect everything that’s important to them. To better understand our customers and meet their needs, we’ve brought our protection, retirement income,...
-
Data Architect
Found in: Talent UK 2A C2 - 5 days ago
Cardiff, United Kingdom Legal & General Full timeLife can sometimes be unpredictable, and it pays to plan ahead. Our aim at Legal & General Retail is to help our customers plan for the unexpected, achieve financial security for their tomorrow, and protect everything that’s important to them. To better understand our customers and meet their needs, we’ve brought our protection, retirement income,...
