Vacancies

Information Governance Compliance Lead

Main Responsibility

The Information Governance (IG) Compliance Lead is responsible for managing a range of assurance activities in relation to data protection and information governance compliance such as The Data Security and Protection Toolkit (DSPT), the ICO Accountability Framework (AF) and other areas within the information governance framework.

This role will promote and lead the highest standards of information governance and data security, and continuous improvement through:

1. Working with the Head of Information Governance and Information Security Lead to:

• Continue the development of the audit and assurance programme linked to the DSPT and Accountability Framework
• Develop a compliance programme using Microsoft 365 data governance and compliance capabilities using Microsoft Compliance Manager and ServiceNow
• Support further improvements through the introduction or alignment to information standards such as ISO27001 Information Security Standard and BS10012 – Personal Information Management System
• Conduct audits and reviews in line with the audit and assurance programme
• Produce risk based reports for stakeholders within the organisation and externally where required. This includes the IG Committee and Records Group and overseeing the IG Advisors and IG Lead with their quarterly reports to ensure consistency in messaging and actions.
• Carrying out monthly and reporting on incident monitoring meetings and trend analysis to enable actions to be developed to ensure incident reduction such as retraining, updates to policies and procedures and escalation or risk to the IG Committee.
• Developing training and awareness programmes and communication to ensure best practice and learning is shared from incidents
• Working with the IG Lead to jointly lead:
  • the programme of annual Records of Processing Activity Reviews ensuring OneTrust is maintained with accurate, up to date and risk assessed data flows and retention periods
  • The maintenance and preparation of draft Privacy Notices for DPO review prior to publishing ensuring children’s services and prison healthcare are clear and meet the needs of the service users
• Responsibility for DSPT submissions including:
  • Supporting the Primary Care Teams with the completion & submission of their toolkits, ensuring that dip sample reviews are conducted to provide assurance.
  • Working with the Head of IG and Security Lead and other stakeholders to gather and maintain robust evidence for the annual audit and submission to NHSX.
  • Assisting with the annual external audit(s)
• Supporting the Head of Information Governance & DPO in developing the strategy and plans and processes to centralise access to records requests by:
  • Conducting a cradle to grave review of OneTrust prior to the Health Check process
  • Considering other options for managing requests and redacting safely
  • Carrying out a gap analysis on existing processes
  • Providing compliance reports where required
• Providing day to line management the SAR Team Leader, proactively participating in management supervision, objective setting and appraisal process.
• Assisting the Head of IG with all training requirements for the IG Advisors and their IG Data protection Apprentices

The Ideal Candidate

BCS Data Protection Qualification, Certified GDPR/DPA Training,  Information Governance Certificate for Health & Social Care or equivalent qualification or IG experience within a health and social care environment.

You will also need to be confident using IT systems and be able to demonstrate working knowledge of Microsoft Office packages i.e. Outlook, Word, Excel.

Package Description

You will feel valued as a Information Governance Compliance Lead within HCRG Care Group, receiving access to exclusive rewards and benefits including:

• Between £35,000 - £45,000 FTE (Depending on Experience) and access to our group pension
• Laptop and Mobile enabling fantastic flexible working patterns that can help you lead a perfect work/life balance
• MyWellness – a health and lifestyle platform covering mental health awareness and support, healthy recipes & activity challenges and access to our free well-being service available 24/7/365 online and by telephone including; counsellors, post trauma incident support, legal, debt and practical life management helpline, guided self-help, telephonic career coaching and monthly well-being newsletters
• Access to Reward Gateway - our staff benefits scheme which grants you access to premium offers and discounts on practical spending at national supermarkets and well known retailers as well as special treats like Virgin Experience Days and Leisure Vouchers 
• We are pleased to offer access to Wagestream -which lets you track your pay throughout the month and stream your earned wages into your bank account if you need them. No more high-interest loans or overdraft fees - simply get paid as you go.
• 25 days holiday plus Bank Holidays.
• Access to a range of courses and e-learning to develop further skills, bespoke career pathways and opportunities continuing your professional development
• Innovative forward-thinking culture with the opportunity to put forward your ideas to contribute to the way we work. You will be encouraged to apply for national funding to drive your initiatives locally to benefit our patients and service users
• Rewarding and supportive teams, you will be recognised and have opportunities to recognise others by nominating for local and national awards annually and taking part in our new virtual “Ask our Executives” event, where you can submit questions to the board and hear updates regularly on company strategy and objectives
• Working in an environment focused on the highest clinical and quality standards with 100% of our rated services considered overall good or outstanding by the Care Quality Commission.

About the Company

We change lives by transforming health and care. 

Established in 2006, we are one of the UK's leading independent providers of community health and care services, working with health and care commissioners and communities to transform services with a focus on experience, efficiency, and improved outcomes. We deliver and transform adult and children community health services, primary care services including urgent care, sexual health, dermatology and MSK services as well as adult social care and wellbeing services. Across England, we support communities of many millions and directly help more than half a million people each year - guided by our simple values: we care, we think, we do. 

We're committed to equal opportunities and welcome applications from a broad, diverse range of people who want to join our team. We’re a Disability Confident Committed company, so we work to provide facilities, work environment adjustments and technical solutions to be as inclusive of everyone.

While it doesn’t happen often, sometimes a role is very popular, and we’ll need to close it earlier than the date we’ve shown here. If you’re keen to join our team, we’d love to hear from you so please apply as soon as you can.

As you’d expect, safeguarding and protecting the children, young people and vulnerable adults that we work with is of the utmost importance so we have policies and procedures in place to promote safeguarding and safer working practices and everyone who joins the team is subject to a safer recruitment process, including the disclosure of criminal records and vetting checks.

Finally, we need to let you know that the company you’ll work for is part of HCRG Care Group Holdings Limited and by applying for this job we’ll need to process and hold information about you. If you would like to know a little more about how we use your information, please see our website's privacy policy.