Head of Data Protection & Information Management
Listed on 2026-06-30
-
Government
Data Security
Overview
The Head of Data Protection and Information Management role forms part of a Department wide Data Protection Unit led by the DfT Departmental Data Protection Officer, and locally reports into the DVSA Chief Data & Security Officer. The role is responsible for carrying out the delegated statutory tasks of the Departmental Data Protection Officer in accordance with the DfT DPO Governance Framework.
They also act as the principal point of contact for the ICO and for Data Subjects for the DVSA within the DfT controllership. The role manages the information and records management function as part of the Government Knowledge and Information (KIM) Profession and ensures that management of both electronic and physical records is compliant with GDPR and other regulations. The team also works with the DVSA Corporate Reputation team to help DVSA meet statutory obligations originating from GDPR and Freedom of Information legislation assuring processes and also leading Internal Reviews or information rights requests under data protection legislation.
Joining our department comes with many benefits, including:
- Employer pension contribution of 28.97% of your salary.
- 25 days annual leave, increasing by 1 day each year of service (up to a maximum of 30 days annual leave), plus 8 bank holidays.
- A privilege day for the King s birthday.
- Flexible working options to support work-life balance.
- Further details in the Benefits section below.
Essential qualifications
- You must have an industry-recognised practitioner-level qualification in data protection. You will either have a qualification in FOI or a security qualification such as CISMP or ISO
27001. For these areas (FOI and security) where no qualification is held, you should be willing to acquire them within 9 months of joining us.
- A history of incident management and being part of a wider incident management team.
- Experience of working collaboratively with external organisations and other stakeholders, sharing information and knowledge to achieve common aims.
- Experience of information and records management and ability to advise on Freedom of Information legislation and support the business with training.
- Experience in assessing and improving compliance and reporting this to all levels.
- Experience of risk management and working with cyber security colleagues.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search: