Job summary In this role you will be an integral part of the Data Security, Privacy and Records Management Team.
Reporting to a Data Privacy manager, you will be working across all areas of NHSBT to support the effective delivery of the Data Security, Privacy and Records Management Programme including delivery of business-as-usual activity and the wider agenda to ensure Data Privacy and Information Governance continues to be a customer centric function for NHSBT and an enabler of organisation wide objectives, ensuring compliance with regulatory and statutory legislation Main duties of the job In this role you will contribute to ad-hoc programmes, projects and initiatives which advance NHSBT in Data Protection, Data Privacy and Security by Design, as well as Records Management and Incidents.
Your responsibilities will include: Assisting the Data Security, Privacy and Records (DSPR) Management Team in the day to day implementation and compliance of NHSBTs DSPR programme.Providing advice and guidance to staff at different levels with regards to the application of national legislation, NHS guidance and NHSBT Data Privacy and Security Policies.Coordinating and managing responses to requests for advice and guidance from NHSBT staff & external organisations.Supporting the Data Privacy Manager with the DSPR Strategic Agenda including supporting continuous improvement across the wider governance, assurance as well as incident and risk management.Acting as the NHSBT lead for the maintenance and development of the Information Asset Register, conducting individual risk assessments for each asset and advise the Information Asset Owners (IAO) directly on the ways to mitigate riskProviding support for the drafting, populating and management of the Information Asset Register (IAR).
This includes identifying and training IAOs and the Information Asset Administrators (IAA) and supporting them in populating their assets on the Register.
About us It takes all types of people to deliver the kind of service that saves and improves lives.
At NHS Blood and Transplant, youll join a team of more than 6,000 people who are making a genuine difference to communities, families, friends, relatives and more across the UK.
We play a unique and special role in the NHS by helping people do something extraordinary- donate blood, blood products, organs, tissues, or stem cells to save someone in need.
Our three core values are what set us apart.
They guide and inspire everything we do.
By being caring, expertly meeting the needs of our patients and our people, and accepting nothing less than the best quality, we can do extraordinary work and help our people to do something extraordinary in their career, too.
Three small words, one big difference - Caring, Expert and Quality.
Together we'll save and improve more lives than ever.
You will join us on our journey to create an inclusive workplace and aim to reflect the diverse communities we work with, and we positively encourage applications from all sectors of the community.
Job description Job responsibilities Please view the attached recruitment profile which is a summary of the detailed Job Description and Person Specification for the full personal attributes we require for the role.
You will need to demonstrate these throughout the recruitment process.
Supporting the Data Privacy Manager, being a first point of contact for privacy and where required, security queries and embedding privacy and security by design for all projects and services.
Drafting, implementing and training (where necessary) colleagues in relation to policies, procedures, SOPs, etc.
in order to promote the DSPR Team.
Assisting with the wider DSPR Team in developing and maintaining the intranet site and communication materials ensuring they are up to date with legislation You will be required to travel to different parts of the country for team meetings.
These are usually every couple of months or ad-hoc to support projects.
Person Specification Qualifications Essential Experience of working in a data privacy / security related role Experience of developing or implementing data privacy/information governance improvement processes Knowledge of current Data Protection and Freedom of Information legislation Experience in risk assessments in an Information Governance and Data Privacy setting Experience of working with Information Technology using Microsoft Office packages (Word, Excel and PowerPoint) including databases and undertaking online searches to an advanced level Experience Essential Educated to degree level or proven experience of working in information governance or experience in the NHS and data privacy or security setting Demonstrates commitment to own continued professional development (CPD)