-
Data Protection and Foi Officer
1 week ago
British Transport Police Cardiff, United KingdomBritish Transport Police (BTP) are recruiting for a **Data Protection and FOI Officer** on a Permanent Contract. The role is paying £32,757.33 per annum and will be based in Cardiff. This role offers a blended approach of office and home working. · BTP is the national police Forc ...
-
TSR Legal Cardiff, United KingdomTSR Legal are proud to be working with one of the UK's leading full service law firms, with offices in London, Wales, Thames Valley and the South Coast region. They provide their clients with practical and straightforward legal advice whatever their regional, national and interna ...
-
Data Protection Administrator
1 day ago
Sopra Steria Newport, United KingdomAre you a passionate reader looking for a new and exciting administration role? If so, read on · Day to day, this role will include tasks such as, data collation, detailed review of documentation, content redaction, compliance checking, the recording of statistics related to the ...
-
Data Protection Manager
6 days ago
Sanderson Bristol, United Kingdom**Who are Diligenta?** · Diligenta's vision is to be acknowledged as Best in-class Platform based Life and Pensions Administration Service provider. Customer service is at the heart of everything we do and our aim is to transform our clients' operations. A business that has beend ...
-
Data Protection Officer
1 day ago
Bristol City Council Bristol, United Kingdom**Full Time, Fixed Term until 1st April 2025** · We're seeking a data protection professional to join the councils growing Information Governance Service. · This role will play a key part in providing information governance assurance for Bristol City Council. · You will be a poin ...
-
Data Protection Lead
1 week ago
Heat Recruitment Ltd City, United KingdomCompliance opportunity as a Date Protection Lead working for a law firm based in central Manchester. · Working within the Risk & Compliance team you will be primarily responsible for data protection and privacy law. · Role duties: · Maintaining data protection, information secu ...
-
Veezu Cardiff, United KingdomSUMMARY · The Head of Information Governance and Data Protection Officer (DPO) role is the professional lead for Information Governance at Veezu Group. The role will provide expert Information Governance advice and guidance to the Veezu management team and key partners; to ensur ...
-
Veezu Cardiff, United KingdomJob Description SUMMARY · The Head of Information Governance and Data Protection Officer (DPO) role is the professional lead for Information Governance at Veezu Group. The role will provide expert Information Governance advice and guidance to the Veezu management team and key p ...
-
Global Centre of Rail Excellence
6 days ago
Transport for Wales Cardiff, United Kingdom**Global Centre of Rail Excellence (GCRE)** · **Risk & Compliance Manager** · Transport for Wales are proud to promote a fantastic opportunity to play a critical role in a high-profile organisation, GCRE. · The Global Centre of Rail Excellence ('GCRE') is a special purpose vehicl ...
-
Deputy Data Protection Officer
4 days ago
UK Civil Service Bristol, United KingdomJob summary · Working in a team with the Data Protection Officer and Information Governance colleagues, the Deputy Data Protection Officer will play a critical role in ensuring data protection compliance across an ambitious and varied delivery focused organisation. You will be jo ...
-
Clerk to The Council
6 days ago
The Learned Society of Wales Cardiff, United KingdomThis is an exciting opportunity to play a key role in taking the Learned Society of Wales forward: ensuring we are operating at our very best - as an effective, well-governed and professional organisation - so that we can deliver our ambitious new five year strategy to benefit Wa ...
-
Privacy & Assurance Officer
6 days ago
Cardiff Council Cardiff, United Kingdom**About The Service** · An exciting opportunity has become available within the Council's Information Governance Team supporting the delivery of the Council's Information Governance practices and helping us build ready for the next phase of our response to delivering services to ...
-
Information Governance Support Officer
6 days ago
Cardiff Council Cardiff, United Kingdom**About The Service** · An exciting opportunity has become available within the Council's Information Governance Team supporting the delivery of the Council's Information Governance practices and helping us build ready for the next phase of our response to delivering services to ...
-
Information Request Case Officer
6 days ago
Cardiff Council Cardiff, United Kingdom**About The Service** · An exciting opportunity has become available within the Council's Information Governance Team supporting the delivery of the Council's Information Governance practices and helping us build ready for the next phase of our response to delivering services to ...
-
Chair
1 week ago
Perrett Laver County, United KingdomAt Leicestershire County Cricket Club, our aim is 'to secure the future of cricket by inspiring people to choose and enjoy a lifelong involvement in the game'. We want to use cricket to deliver accessible and enjoyable opportunities that grow the sport, tackle inequalities, impro ...
-
Forklift Driver
2 days ago
Platform Resourcing Cardiff, United Kingdom Full timePlatform Resourcing are currently working with a leading manufacturing company who are looking to expand their team by taking on a Forklift and Warehouse Operative in Cardiff on a split Afternoon and night shift pattern. · The successful candidate will preferably have experience ...
-
Records Management Officer
6 days ago
Public Health Wales NHS Trust Cardiff, United KingdomDo you believe that the people of Wales should enjoy the highest quality public health services? Do you have a good eye for detail? Are you passionate about privacy? If so, there is an exciting opportunity to develop your skills and knowledge in the Information Governance team wi ...
-
HR Administrator
1 day ago
CPS Group Cardiff, United Kingdom// HR Administrator // £25,000 // Cardiff // · Our client is looking for an experienced HR Administrator who has previously held PA duties to provide administrative support to the HR department and provide personal assistant duties to the HR Manager. · **Responsibilities**: · Ass ...
-
Primary Care Support
6 days ago
Digital Health and Care Wales Glamorgan, United KingdomWe have an exciting opportunity within the Clinical Directorate, Information Governance team for a n experience d Information Governance professional to join us in the role of Primary Care Support & IG Assurance Lead to cover maternity leave, on a fixed term or secondment basis u ...
-
Data Architect
1 week ago
Yolk Recruitment Ltd Cardiff, United Kingdom**Data Architect - £75,000 + up to £17,000 bonus - Excellent Benefits - Hybrid Cardiff (1 day a fortnight in the office) - 2 stage interview process - Sector: Financial Services** · Yolk Recruitment are recruiting for a Data Architect to work with a famed FTSE 100 company. · This ...
Head of Information Governance and Data Protection - Cardiff, United Kingdom - Veezu
Description
SUMMARYThe Head of Information Governance and Data Protection Officer (DPO) role is the professional lead for Information Governance at Veezu Group.
The role will provide expert Information Governance advice and guidance to the Veezu management team and key partners; to ensure that all parties are processing information in accordance with legislation, guidance, while meeting their legal and regulatory obligations.
The Data Protection Officer is an essential role in facilitating 'accountability' and the organisations' ability to demonstrate ongoing compliance with GDPR, where the DPO performs another role or roles there must be no conflict of interest.
While this role reports to the IT Director, direct access to the Veezu Executive Board is assured in the fulfilment of their DPO duties.
Ensuring that the DPO can effectively carry out their responsibilities and have their concerns and recommendations heard at the highest level of the organisation.
ROLE DUTIES AND EXPERIENCE REQUIREDAct as the appointed statutory Data Protection Officer as defined by the General DataProtection Regulation 2016 for Veezu Group.
Be the lead source of information and expertise on information governance and data protection, including but not limited to:The Data Protection Act 1998, The UK and EU General Data Protection Regulation, ISO27001 Information Security Standard, PCI-DSS Card Payment regulation, The Freedom of Information Act 2000, Environmental Information Regulations 2004, The Common Law Duty of Confidence, The Computer Misuse Act, The Office of the Information Commissioner and its associated powers, Information Commissioner Directives/GuidanceLead the development of strategies, policies, and guidelines that ensure organisational compliance with information governance and data protection regulations across all departments.
This will require making decisions in unprecedented situations.Co-operate with and be the first point of contact for the Information Commissioner.
Be available to be contacted directly by data subjects.
Develop Information Governance policies that address:
Organisational accountability, DPO reporting arrangements, Timely involvement of the DPO in all data protection issues, Compliance assurance: privacy by design/default, When and where data protection impact assessments are required and subsequent reporting on performance, The DPO's role in incident managementHave sufficient understanding of the processing operations carried out, as well as the information systems and data security and data protection needs of the organisation.
Monitor the effectiveness of policies and procedures and the organisations' compliance with them through a proactive program of audit and review, in conjunction with all functions across the operating model and other stakeholders and bodies.
Have senior responsibility for the development of a robust Information Risk Assurance function which includes Cyber Security, System Failure and GDPR.Provide a single point of knowledge to senior management and staff with clear policies and procedures that ensure Veezu meets both its statutory and legal obligations.
Maintain an awareness of evolving legislation and national guidance relating to all areas of responsibilities.Promote an effective information governance and risk culture that embeds information governance across the Veezu organisation.
Lead on the development of training, awareness and communications programmes aimed atinforming and advising Veezu staff (at all levels) to promote understanding of their obligations to comply with information governance requirements.
Proactively disseminate complex and contentious information governance principles to a wide audience through regular communications briefings using e-mail, intranet and bulletins and other communications media, where there may be resistance to compliance.
Ensure the Data Security and Protection Toolkit (DSPT) and other IG related audit submissions are made correctly, within timescales and are signed off by the Veezu Exec/Board where applicable and that evidence is available to support the attainment levels submitted.
This includes overseeing the delivery of action plans and improvement programmes to support compliance with legislation and national Information Governance requirements.
This will require liaison with senior managers throughout the organisation.Develop/enforce organisational trigger-points for mandatory input from the DPO providing advice on Data Protection Impact Assessments (DPIA) to offer a balanced independent review of activities such as business improvements, system requests for change, large scale business development and introduction of new systems and services, to: Give consideration of the business needs against GDPR and other information governance / security requirements, Provision of advice and guidance on changes required to meet/maintain GDPR/IG compliance, Identification of system change requirements to support GDPR/IG compliance, Consult with the Information Commissioner's Office (ICO) where proposed processing poses a high risk in the absence of proposed mitigations, Provide expert input for commercial contracts, invitations to tender, etc, whilst ensuring robust information security and governance is maintained.
Lead and support specific groups such as Information Asset Owners, System Administrators through effective networking structures sharing of relevant experience and provision of appropriate advice.
Ensure information breaches (e.g., security, confidentiality) including serious incidents and breaches are investigated and where necessary escalated in a professional manner and reported on in accordance with process and procedure.
Provide guidance on operational and procedural improvements arising from lessons learned.Be organisations expert on information sharing, ensuring organisations approaches are compliant with law and best practice.
Proactively and strategically ensure organisations are able to share information effectively and appropriately where multi agency or partnership working exists.
Take the lead in developing, managing and reviewing information sharing protocols and third-party access and Data Processing Agreements with other organisations including local authorities and voluntary organisations.
PERSONAL COMPETENCIESPlanning; exhibit exceptional organisational acumen.Communication Proficiency; possess the ability to articulate thoughts with clarity, at all levels of the organisation.
Proactive Adaptability; embody a proactive ethos, taking initiative when appropriate, pinpointing areas for improvement or transformation.
Collaborative Spirit; commit to the broader organisations vision, actively collaborating to achieve overarching goals.
Approach; take a calm and collegial approach when working with the team and wider business.
Result-Oriented Approach; Display intrinsic motivation and an aptitude to autonomously define, manage, and achieve key milestones and objectives.