Senior Information Governance Officer

As part of our Single Corporate Services, you'll play a vital role in ensuring both Trusts meet our legal and regulatory obligations around data protection and information governance. You'll be instrumental in maintaining high standards of compliance, transparency, and accountability across both organisations.

You'll be at the heart of managing Information Governance incidents, supporting Data Protection Impact Assessments (DPIAs) and the annual Data Security and Protection Toolkit (DSPT) assessments. You'll have expertise in Records of Processing Activities (ROPA) to support the organisations returns of Information Asset Registers and Data Flow Maps. You'll also contribute to policy development and staff training, helping to embed a culture of good governance and responsible data handling. You will support the team with complex Subject Access Requests and Freedom of Information Requests. You'll work closely with colleagues across departments, providing expert advice and guidance on legislation such as the UK GDPR, Data Protection Act 2018, and Freedom of Information Act 2000. Your work will directly support the Trusts commitment to being well‑led, safe, and patient‑focused organisations.

This is a multi‑site role, offering variety and the opportunity to work across two leading NHS organisations. Travel between sites may be required and will be arranged locally.

Senior Information Governance Officer

Band 6: £38,682 – £45,580

Full Time: 37.5 hrs per week

Location: Mitchell Way, Portsmouth PO3 5PE; Queen Alexandra Hospital, Cosham PO6 3LY; St Mary’s Hospital, Isle of Wight PO30 5TG.

Hybrid/Remote working

• Lead reviews of Data Protection Impact Assessments (DPIAs) and support the DSPT submissions.
• Manage and review Information Governance incidents.
• Maintain and review Records of Processing Activities (ROPA).
• Provide expert advice on GDPR, FOIA, DPA 2018 and other Information Governance legislation.
• Support IG Officers with complex Subject Access Requests and Freedom of Information Requests.
• Support policy compliance and transparency information.
• Maintain accurate records and performance data.
• Deliver training and guidance on IG best practices.

• Degree level (or equivalent).
• Qualification in Data Protection, Information Governance or Freedom of Information Act.

• Accredited courses associated with Information Governance, Freedom of Information Act, Subject Access.
• Good understanding of the requirements of the Caldicott recommendations for handling data with the NHS.

• Evidence of significant experience working with Data Protection compliance.
• Evidence of significant experience in system administration.
• Advanced keyboard skills for producing reports, spreadsheets and correspondence.
• Excellent verbal, telephone and written communication skills.
• Ability to use own initiative and deal with competing priorities.
• Works autonomously but can seek advice when necessary and manages a discrete area of work.

• Expertise within specialism, underpinned by practical experience.
• Management of team and line management responsibilities.

• Detailed knowledge of UK GDPR, Data Protection Act and Freedom of Information Act.
• Significant experience of information handling and analysis gained in a work environment.

• Good understanding of the requirements of the Caldicott recommendations for handling data with the NHS.

• Make a meaningful difference in how patient and staff data is protected.
• Enjoy opportunities for professional development and training.
• Work in a role that values innovation, integrity and collaboration.

Portsmouth Hospitals University NHS Trust

Queen Alexandra Hospital, Southwick Hill Road, Cosham, Portsmouth, PO6 3LY

Website: https://www.porthosp.nhs.uk/work-for-us/