Job summary
- Main area
- ICT
- Grade
- 5
- Contract
- Permanent
- Hours
- Full time - 37.5 hours per week
- Job ref
- 265-6203588 COR
- Employer
- Northampton General Hospital NHS Trust
- Employer type
- NHS
- Site
- Kettering General Hospital
- Town
- Kettering
- Salary
- £28,407 - £34,581 Per Annum
- Salary period
- Yearly
- Closing
- 02/06/2024 23:59
Employer heading
Data Security and Protection Advisor
5
Job overview
Full Time, Permanent, hybrid of office and home based working, although the member of staff would be expected to be in the office at least 2 days per week.
Northampton and Kettering General Hospitals are currently seeking a Band 5 Data Security and Protection Advisor to join our Data, Security and Protection Team. The team is key to ensuring that the Trust is able to meet its legal obligations relating to personal data.
You will be outgoing and proactive with a passion for all things data security! You will have experience of developing and delivering training to a wide range of colleagues and will be able to quickly develop relationships with colleagues across the Trust.
You will be driven by ‘being helpful’ - providing the best possible service at all times. You will be able to manage conflicting demands and work with minimal supervision.
You will have a sound knowledge of the UK General Data Protection Regulation and the Data Protection Act 2018 and will be able to translate this into meaningful guidance for colleagues. Experience of processing subject access requests and freedom of information act requests would be advantageous but not essential.
Previous NHS experience including knowledge of the Data Security Protection Toolkit is not essential but would be welcomed.
You will be joining a supportive and dedicated team with the opportunity to grow and develop your knowledge and skills.
Main duties of the job
The primary role of the Data Security and Protection Advisor is to support the DSP Team Leader with the overall delivery of the Data, Security & Protection (DSP) strategy and work programme, ensuring that the Group is compliant with all legislation and codes of conduct relevant to Information Governance and Data Security and Protection, including the UK General Data Protection Regulation and the Data Protection Act 2018.
Provide advice and guidance and act as the first point of contact for responding to and dealing with routine Data Security and Protection (DSP) related enquiries.
Work with the DSP Team Leader to ensure the Group is compliant with the UK GDPR and Data Protection Act 2018 and assist in the recognition, reporting and mitigation of any areas of risk.
Deliver Data Security and Protection training via various methods including classroom-based, small groups and virtually via MS Teams.
Manage Data Security and Protection breaches and incidents via the Trust’s Incident Management system Datix.
Maintain the Information Sharing Gateway to ensure it is up to date, and accurately records Information Sharing Agreements, Group Assets, Data Protection Impact Assessments and third parties assurance.
Working for our organisation
Northampton General Hospital is one of the largest employers in the area and we are on an exciting journey. All of our divisions are committed to doing things better, with more efficiency as we update, modernise, and advance. We have also entered into a Group Model with neighbouring Kettering General Hospital NHS Foundation Trust and become University Hospitals of Northamptonshire.
Our Excellence Values
Compassion
Accountability
Respect
Integrity
Courage
We want to recruit the best people to deliver our services across the University Hospitals of Northamptonshire and help to unleash everyone’s full potential. As an organisation, we value how we communicate and promote our vacancies to all communities.
We are a Defence positive trust, supporting our reservists, veterans, spouses and partners.
The Hospital Group encourages applications from people who identify from all protected groups, especially those from BAME, Disabled and LGBTQ+ backgrounds as these are underrepresented in our hospitals.
We understand that we need to work with colleagues from diverse backgrounds and make sure the environment they work in is inclusive and collaborative.
We have active Networks that promote and support colleagues from all backgrounds. This ensures everyone feels supported and has a sense of belonging working for Kettering and Northampton General Hospitals.
Detailed job description and main responsibilities
The primary role of the Data Security and Protection Advisor is to support the DSP Team Leader with the overall delivery of the Data, Security & Protection (DQSP) strategy and work programme, ensuring that the Group is compliant with all legislation and codes of conduct relevant to Information Governance and Data Security and Protection, including the UK General Data Protection Regulation and the Data Protection Act 2018.
The post holder will:
Provide advice and guidance and act as the first point of contact for responding to and dealing with routine Data Security and Protection (DSP) related enquiries.
Work with the DSP Team Leader supporting a programme of work to ensure that the Group achieves the standards mandated within the Data Security and Protection
Toolkit (DSP Toolkit),and assist in the recognition and mitigation of any areas of risk.
Work with the DSP Team Leader to ensure the Group is compliant with the UK GDPR and Data Protection Act 2018 and assist in the recognition, reporting and mitigation of any areas of risk.
Raise awareness and understanding of Data, Security & Protection issues and why they are important to all staff groups in the Group.
Deliver Data Security and Protection training via various methods including classroom based, small groups and virtually via MS Teams.
Manage Data Security and Protection breaches and incidents via the Trust’s Incident Management system Datix.
Support the DSP Manager and DSP Team Leader with the management of externally reportable incidents and serious incidents.
Maintain each Trust’s Information Asset Register.
Maintain the Information Sharing Gateway to ensure it is up to date, and accurately records Information Sharing Agreements, Group Assets, Data Protection Impact
Assessments and third parties assurance
Person specification
Educations, Training and Qualifications
Essential criteria
- Educated to degree level or equivalent level of education, training or experience
- Professional relevant qualification, for example GPDR Foundation
- Evidence of continuous professional development
Desirable criteria
- Additional professional relevant qualification, for example, GDPR Practitioner
- Formal Data Protection Act Training
- Relevant professional qualification in training development/ training delivery
Knowledge and Experience
Essential criteria
- Specialist knowledge of the Data Security and Protection Toolkit and its application.
- Demonstrable understanding of data security and protection.
- Working knowledge of Data Protection Act 2018, UK GDPR,
- Evidence of up to date knowledge of data security and protection guidelines and legislation relevant to the NHS
- Knowledge of the information governance roles within the Trust (e.g. Senior Information Risk Owner, Caldicott Guardian and Information Asset Owner).
- Experience in identifying and investigating data security and protection issues and incidents.
- Experience in developing and delivering training sessions
- Experience of conducting training needs analysis.
- Experience of documenting and implementing Information Sharing Agreements.
- Experience of supporting the completion of Data Protection Impact Assessments and identifying information risks.
- Experience in reviewing and updating Policies and Procedures
- Experience of working with the DSP Toolkit in an acute NHS setting.
- Experience in working with Patient Administration Systems, e.g. CAMIS, Careflow
- Analytical and judgement skills for problem solving.
- Experience developing and delivering communication campaigns.
- Experience of writing and presenting complex reports and presentations.
- Previous experience of the Information Sharing Gateway
Desirable criteria
- Working knowledge of Freedom of Information Act 2000 and Records Management.
- Experience of working in the NHS
Skills
Essential criteria
- Excellent written and verbal communication skills.
- Able to maintain confidentiality at all times.
- Developed attention to detail and accuracy
- Excellent IT skills, including experience of Microsoft Word, Excel, PowerPoint, Outlook and Visio
- Organisational skills and the ability to work methodically and prioritise.
- Ability to deliver clear and effective training to staff at all levels and of all abilities
- Ability to cope under pressure and meet strict deadlines e.g. FOI responses, Incident response times.
- Ability to help build effective working relationships at all levels, both within NGH and externally.
- Ability to communicate appropriately and effectively with all levels of staff
- Ability to take accurate meeting notes including action and decision logs.
Desirable criteria
- Able to learn and utilise new systems quickly and effectively
- Advanced Excel skills, including data presentation.
- Data analysis skills
- Negotiation skills.
- Ability to interpret and judge conflicting views.
Employer certification / accreditation badges
.png "NHS Rainbow badge")
Documents to download
Further details / informal visits contact
- Name
- Mrs Sally Berrill
- Job title
- Head of Data Security and Protection
- Email address
- [email protected]
- Additional information
For further details / informal visits contact:
If you would like more information, please contact Sarah Stell ([email protected]) who will be happy to help.
List jobs with Northampton General Hospital NHS Trust in Administrative Services or all sectors