Portsmouth Hospitals University NHS Trust

Senior Information Governance Officer

The closing date is 03 January 2026

Job summary

As part of our Single Corporate Services, you'll play a vital role in ensuring both Trusts meet our legal and regulatory obligations around data protection and information governance. You'll be instrumental in maintaining high standards of compliance, transparency, and accountability across both organisations.

You'll be at the heart of managing Information Governance incidents, supporting with Data Protection Impact Assessments and the organisations annual Data Security and Protection Toolkit assessments. You'll have expertise in Records of Processing Activities to support with the organisations returns of Information Asset Registers and Data Flow Maps. You'll also contribute to policy development, and staff training helping to embed a culture of good governance and responsible data handling. You will be able to support the team with complex Subject Access Requests and Freedom of Information Requests. You'll work closely with colleagues across departments, providing expert advice and guidance on legislation such as the UK GDPR, Data Protection Act 2018, and Freedom of Information Act 2000. Your work will directly support the Trusts commitment to being well-led, safe, and patient-focused organisations.

This is a multi-site role, offering variety and the opportunity to work across two leading NHS organisations. Travel between sites may be required and will be arranged locally.

Main duties of the job

Senior Information Governance Officer

Band 6: £38,682 - £45,580

Full Time: 37.5 hours

Location: Mitchell Way, Portsmouth PO3 5PE or Queen Alexandra Hospital, Cosham, PO6 3LY, or St Marys Hospital Isle of Wight, PO30 5TG.

Hybrid/Remote working

Are you passionate about data protection, information governance, and making a real impact in healthcare? Were looking for an experienced Senior Information Governance Officer to join our proactive Information Governance team, supporting both Portsmouth Hospitals University NHS Trust and Isle of Wight NHS Trust.

If you're ready to take the next step in your IG career and contribute to the safe and effective management of information across two NHS Trusts, apply today and join us in shaping a safer, more compliant future for our Trusts.

About us

Our vision for Single Corporate ServicesIsle of Wight NHS Trust (IWT) and Portsmouth Hospitals University NHS Trust (PHU) have a shared vision of a single corporate service across our two organisations, supported by a single set of identical systems and processes, under joint leadership, to drive significant efficiencies, improve employee experience, and return time to patient care.

This vacancy is part of the Single Corporate Services Division.

Why are we changing the way we deliver Corporate Services?Working as a partnership, both IWT and PHU have a shared vision for excellence in care for our patients and communities; with a set of strategic aims underpinning how we will achieve this. The creation of a single corporate service is essential for us to support our clinical and operational services, and our wider transformation programme.

The single corporate service is delivered across both organisation. You may be based at either IWT or PHU and individuals may be required to undertake business travel between sites. For leaders managing staff across multi-site locations, you will need to be visible and provide in person leadership. The arrangements and frequency will be agreed locally.

Date posted

16 December 2025

Pay scheme

Agenda for change

Band

Band 6

Salary

£38,682 to £45,580 a year

Contract

Permanent

Working pattern

Full-time, Home or remote working

Reference number

REF1912L

Job locations

Queen Alexandra Hosp, Southwick Hill Road, Cosham

Portsmouth

PO6 3LY

Mitchell Way

Portsmouth

England

PO3 5PE

St Mary's Hospital

Parkhurst Road

Newport

Isle of Wight

PO30 5TG

Job description

Job responsibilities

Your key responsibilities will include:

Leading on reviews of Data Protection Impact Assessments (DPIAs)
Support with the Data Security and Protection Toolkit (DSPT) submissions
Managing and reviewing Information Governance incidents
Reviewing and supporting Records of Processing Activities (ROPA)
Provide expert advice on GDPR, FOIA, DPA 2018, and other Information Governance legislation
Support IG Officers with complex Subject Access Requests and Freedom of Information Requests
Support policy compliance and the transparency information
Maintain accurate records and performance data.
Deliver training and guidance on IG best practices.

Why Join Us?

Make a meaningful difference in how patient and staff data is protected.
Enjoy opportunities for professional development and training.
Work in a role that values innovation, integrity, and collaboration

For additional information please see attached Job Description.

Job description

Job responsibilities

Your key responsibilities will include:

Leading on reviews of Data Protection Impact Assessments (DPIAs)
Support with the Data Security and Protection Toolkit (DSPT) submissions
Managing and reviewing Information Governance incidents
Reviewing and supporting Records of Processing Activities (ROPA)
Provide expert advice on GDPR, FOIA, DPA 2018, and other Information Governance legislation
Support IG Officers with complex Subject Access Requests and Freedom of Information Requests
Support policy compliance and the transparency information
Maintain accurate records and performance data.
Deliver training and guidance on IG best practices.

Why Join Us?

Make a meaningful difference in how patient and staff data is protected.
Enjoy opportunities for professional development and training.
Work in a role that values innovation, integrity, and collaboration

For additional information please see attached Job Description.

Person Specification

Qualifications

Essential

Degree level (or equivalent)
Qualification in Data Protection, Information Governance or Freedom of
Information Act

Desirable

Accredited Courses associated with Information Governance, Freedom of
Information Act, Subject Access

Experience

Essential

Evidence of significant experience working with Data Protection compliance.
Evidence of significant experience in system administration.
Advanced skills for keyboard use for producing reports, spreadsheets and correspondence.
Excellent verbal, telephone and written communication skills.
Ability to use own initiative and deal with competing priorities.
Works autonomously but can seek advice when necessary/manages a
discrete area of work.

Desirable

Expertise within specialism, underpinned by practical experience.
Management of team and line management responsibilities.

Knowledge

Essential

Detailed knowledge of UK GDPR the Data Protection Act
and Freedom of Information Act.
Significant experience of information handling and analysis gained in a work environment.

Desirable

Good understanding of the requirements of the Caldicott recommendations for handling data with the NHS.

Person Specification

Qualifications

Essential

Degree level (or equivalent)
Qualification in Data Protection, Information Governance or Freedom of
Information Act

Desirable

Accredited Courses associated with Information Governance, Freedom of
Information Act, Subject Access

Experience

Essential

Evidence of significant experience working with Data Protection compliance.
Evidence of significant experience in system administration.
Advanced skills for keyboard use for producing reports, spreadsheets and correspondence.
Excellent verbal, telephone and written communication skills.
Ability to use own initiative and deal with competing priorities.
Works autonomously but can seek advice when necessary/manages a
discrete area of work.

Desirable

Expertise within specialism, underpinned by practical experience.
Management of team and line management responsibilities.

Knowledge

Essential

Detailed knowledge of UK GDPR the Data Protection Act
and Freedom of Information Act.
Significant experience of information handling and analysis gained in a work environment.