Data Security & Protection Team Leader

This is a pivotal role supporting both Northampton General Hospital and Kettering General Hospital as part of our Group approach to ensuring we meet our legal, statutory and regulatory obligations relating to the security and protection of personal data. As our DSP Team Leader, you will play a key part in completion of the Group's DSP Toolkits and managing the DSP Team to ensure all areas of the DSP Toolkit framework are delivered.

• Leading the delivery of DSP work streams and ensuring evidence is maintained for DSP Toolkit standards.
• Managing, triaging, and supporting investigation of DSP incidents via Datix.
• Delivering DSP training (classroom, small groups and virtual).
• Overseeing the completion and quality of Data Protection Impact Assessments (DPIAs).
• Supporting information sharing governance using the Information Sharing Gateway.
• Raising awareness of data security issues across the Group and promoting best practice.
• Acting as a key point of contact for colleagues seeking specialist DSP support.

Kettering General Hospital NHS Foundation Trust is on an exciting journey with all of our divisions committed to doing things better, with more efficiency as we update, modernise, and advance. We have also entered a Group Model with neighbouring Northampton General Hospital NHS Trust and become University Hospitals of Northamptonshire (UHN). As part of this collaborative approach, there may be a requirement for you to work across both the Kettering and Northampton hospital sites, depending on the needs of the service.

• Compassion
• Accountability
• Respect
• Integrity
• Courage

We want to recruit the best people to deliver our services across UHN and help to unleash everyone's full potential. UHN encourages applications from people who identify from all protected groups. We understand that we need to work with colleagues from diverse backgrounds and make sure the environment they work in is inclusive and collaborative.

We recognise the valuable contribution that the Armed Forces community make to our organisation. We have signed the Armed Forces Covenant and achieved Silver Award under the Armed Forces Employer Recognition Scheme.

We have active Networks that promote and support colleagues from all backgrounds. This ensures everyone feels supported and has a sense of belonging working for UHN.

• Act as the expert source of advice and expertise in DSP for the Group.
• Support the development for clinical administration functions within the organisation – identifying information governance risks and issues and providing recommendations for change.
• Increase the profile of Data Security and Protection within the organisation and actively support a "culture change" so that staff are aware of their responsibilities and duties towards confidentiality, integrity and availability of information.
• Ensure processes are in place for monitoring the secure disposal of IT and hardware assets.
• Initiate and plan a programme of work that ensures the Group complies with the requirements of the Data Security & Protection Toolkit.
• Completion of the annual Data Security & Protection Toolkit submission and the collation of supporting evidence which is analysed and updated to ensure compliance.
• Lead a range of audits which will check compliance with the DSP toolkit, research and development and incident management activities, developing improved systems and processes for data quality, data security and protection, data integrity and availability.
• Work in partnership with the Groups Cyber Security Lead to ensure that all Cyber related toolkit assertions are met within the NHSD deadline and any gaps in assurance are identified with a plan in place for compliance.
• Implement and maintain compliance with relevant legislation, particularly the common law duty of confidentiality, the Data Protection Act 2018, the General Data Protection Regulation, the Computer Misuse Act 1990, the Human Rights Act 1998.
• Investigate and resolve information security issues and processes for systems which are process personal and/or trust sensitive data.
• Implement the DSP training strategy for the delivery of the Trust's IG training needs, ensuring that the Group meets the NHSD target for mandatory training, working in partnership with the Trust's Learning & Development service.
• Deliver information governance training if and when necessary.
• Implement policies and propose changes to Group DSP policies as appropriate, conducting monitoring compliance with those policies and protocols and ensuring they are compliant with Data Protection Act and GDPR legislation.
• Conduct data protection impact assessments (DPIA) where necessary and ensure the Group adheres to the data privacy by design and default as set out in Article 25 GDPR.
• Act as the UHN information security expert to ensure any identified risks are communicated to the Head of Technology and Head of Clinical Systems to enable new systems to be implemented safely.
• Assign DPIAs to relevant team members and ensure…