Data Protection Officer

Join to apply for the Data Protection Officer role at Women in Data

3 days ago Be among the first 25 applicants

Join to apply for the Data Protection Officer role at Women in Data

Get AI-powered advice on this job and more exclusive features.

Direct message the job poster from Women in Data

Business area: CO – Infected Blood Compensation Authority (IBCA)

Location: Newcastle-upon-Tyne, Glasgow

Job summary

The Infected Blood Compensation Authority is seeking a Data Protection Officer to assure our compliance with data protection legislation processing personal data. IBCA is responsible for paying compensation to eligible applicants, which will include those infected and affected by the infected blood scandal. As such, IBCA will be processing a wide variety of evidence, including medical records and other health data. IBCA will also be managing information flows to and from other government departments and relevant bodies to support the application process. IBCA is a recently established department, and as such requires data protection assurance as its operations develop. This is a unique opportunity to shape and implement a data protection function that provides capability to a mission-focused team.

Opportunities to move to the new Infected Blood Compensation Authority (IBCA)

At the moment all IBCA roles are hosted by Cabinet Office within the Civil Service. However, once IBCA becomes operational, it is anticipated that most of these roles will transfer to IBCA, which is a new Arms Length Body (ALB) separate from the Cabinet Office. Roles that transfer to IBCA from Cabinet Office will maintain the same or substantially the same terms and conditions of employment that are overall no less favourable. It is anticipated that employees who move from Cabinet Office to IBCA will be able to continue to participate in the Civil Service Pension arrangements with no break in their pensionable service. Roles commencing after IBCA has become operational will be with IBCA itself on similar terms and conditions. All successful candidates will receive full details of the terms and conditions of employment for their role with their formal job offer.

Please note that the mission of IBCA means that it is likely to be operational for a period of approximately 5 to 7 years. When IBCA’s work begins to wind down, IBCA employees will receive support and practical guidance to find a new role, whether in the Civil Service, another Arms Length Body (ALB), or an external employer.

The Data Protection Officer will report to the Head of Data Governance, and will sit alongside the other Data Governance workstreams, which are:

• Knowledge and Information Management
• Information Rights and Disclosure
• Data Acquisition and Quality.

The post-holder will serve as the Authority’s statutory DPO.

The role will be dynamic and fast paced, so that IBCA is able to deliver a service that is underpinned by quality, trustworthy data.

The role includes line management responsibility for one member of staff, who in turn will support the DPO with their duties.

Main Responsibilities

The successful candidate will:

• Engage with operational teams and external stakeholders to deliver a data protection framework across the organisation and support its compliance with relevant legislation.
• Continue to develop IBCA’s data protection strategy and policy.
• Lead on the assurance of Data Protection Impact Assessments when new or alternative processing is proposed. Influence the development of systems and processes to adopt a privacy by design and default approach across the organisation to meet compliance with the strategic and organisational objectives.
• Ensure compliance with the UK GDPR and other data protection laws, developing our data protection policies, processes and procedures, including managing internal data protection activities and conducting compliance reviews.
• Deliver statutory data protection requirements, including providing advice and assistance on data security incidents to support decision making decisions on breaches and whether to report them to the Information Commissioner’s Office (ICO).
• Advise on the lawfulness of using IBCA’s statutory powers.
• Provide assurance of compliance re: IBCA’s policies, processes and digital tools.
• Determine lawful bases for processing and controllership.
• Safeguard and champion privacy issues insofar as IBCA’s use of personal data.
• Create and support with data protection products and procedures.
• Manage IBCAs data protection functions, including producing and maintaining clear, accessible, user-friendly procedures, processes, forms and guidance.
• Develop and deliver data protection training programmes.
• Any other relevant data protection issues the Authority may be required to address.

The post holder will work closely with the other Data Governance leads, particularly Knowledge and Information Management, to embed consistent, compliant information governance controls across the organisation, covering for example information asset ownership and retention.

Person specification

• You should have experience of working in a data protection related role within an organisation handling sensitive personal information. You should be able to demonstrate an expert understanding of data protection legislation, and its application in practice.
• You will exhibit leadership skills in order to set a direction for the organisation and to champion the importance of data protection compliance, as well as to successfully develop your direct report.
• You should be able to articulate your decisions clearly, showing a robust supporting rationale. You should be able to think strategically and consider a range of options, and recommend the best course so as to manage organisational impact.
• You should be comfortable communicating with a range of audiences, to provide assurance to senior leaders as well as to provide guidance to operational staff. You should be able to anticipate the training needs of the organisation with reference to its activities, and design and deliver appropriate materials accordingly.
• You should have an understanding of data protection standards across government and experience of creating, implementing and embedding policies within an organisation, with a clear vision for best practice.
• You should be able to anticipate, assess and capture relevant risks, and design mitigations accordingly. You should be able to prioritise effectively while considering the big picture.
• You will be able to effectively bring constructive challenge, while working positively as part of a team both within the Data Directorate as well as across the Authority.
• A qualification in privacy and/or data protection

Additional information:

A minimum 60% of your working time should be spent at your principal workplace. Although requirements to attend other locations for official business will also count towards this level of attendance.

Behaviours

We\’ll assess you against these behaviours during the selection process:

• Seeing the Big Picture
• Communicating and Influencing
• Managing a Quality Service

Technical skills

We\’ll assess you against these technical skills during the selection process:

• Knowledge of UK GDPR

Alongside your salary of £55,403, Cabinet Office contributes £16,050 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides.

• Learning and development tailored to your role.
• An environment with flexible working options.
• A culture encouraging inclusion and diversity.
• A Civil Service Pension which provides an attractive pension, benefits for dependants and employer contributions of 28.97%.
• A minimum of 25 days of paid annual leave, increasing by one day per year up to a maximum of 30.

Nationality requirements

This job is broadly open to the following groups:

• UK nationals
• nationals of the Republic of Ireland
• nationals of Commonwealth countries who have the right to work in the UK
• nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) (opens in a new window)
• nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS)
• individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020
• Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service

Further information on nationality requirements (opens in a new window)

We are proud supporters of Women in Data. Connect, engage and belong to the largest free female data community in the UK – visit: www.womenindata.co.uk to join our community.

Stay connected! Follow us on LinkedIn for updates on career opportunities and more.

Seniority level

• Seniority level

  Mid-Senior level

Employment type

• Employment type

  Full-time

Job function

• Job function

  Analyst

• Industries

  Information Services

Referrals increase your chances of interviewing at Women in Data by 2x

Sign in to set job alerts for “Data Protection Officer” roles.

Newcastle Upon Tyne, England, United Kingdom 3 days ago

Newcastle Upon Tyne, England, United Kingdom 1 month ago

Legal Officer First-tier Tribunal (Immigration and Asylum Chamber) North East (Ref: 8604)

Newcastle Upon Tyne, England, United Kingdom 6 days ago

Newcastle Upon Tyne, England, United Kingdom 1 week ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr