King's College Hospital NHS Foundation Trust

Information Governance Manager

The closing date is 08 April 2026

Apply for this job

Job summary

King's College Hospital is looking for two full-time (2 x WTE1.00) Information Governance Managers to support the delivery of the Trust's Information Governance (IG) work programme.

(Please note that this is an office-based position.)

Main duties of the job

Acting as a professional manager, the postholder ensures the effective implementation of policies and procedures in line with established guidance.

The role operates within defined frameworks to provide operational support for Information Governance processes and compliance activities.

The postholder will bring substantial knowledge in managing all aspects of Information Governance, ensuring a coordinated approach across the Trust and partner organisations in accordance with statutory and local regulations. They will provide advice and guidance to managers and staff on Information Governance matters and liaise with stakeholders and external bodies as required.

Working collaboratively, the postholder will contribute to the development, maintenance, and delivery of the IG work programme, which includes:

Data Security and Protection Toolkit

Data Protection

UK GDPR

Common Law Duty of Confidentiality

Records Management

Data Security

Information Sharing

Freedom of Information

About us

The Trust provides a full range of local and specialist services across its five sites. The trust-wide strategy of Strong Roots, Global Reach is our Vision to be BOLD, Brilliant people, Outstanding care, Leaders in Research, Innovation and Education, Diversity, Equality and Inclusion at the heart of everything we do. By being person-centred, digitally-enabled, and focused on sustainability, we aim to take Team King's to another level.

We are at a pivotal point in our history and we require individuals who are ready to join a highly professional team and make a real, lasting difference to our patients and our people.

King's is committed to delivering Sustainable Healthcare for All via our Green Plan. In line with national Greener NHS ambitions, we have set net zero carbon targets of 2040 for our NHS Carbon Footprint and 2045 for our NHS Carbon Footprint Plus. Everyone's contribution is required in order to meet the goals set out in our Green Plan and we encourage all staff to work responsibly, minimising their contributions to the Trust's carbon emissions, waste and pollution wherever possible.

Details

Date posted

25 March 2026

Pay scheme

Agenda for change

Band

Band 7

Salary

£56,276 to £63,176 a year per annum inc HCA's

Contract

Permanent

Working pattern

Full-time

Reference number

213-CORP-7815684-A

Job locations

King's College Hospital NHS Foundation Trust

Denmark Hill

London

SE5 9RS


Job description

Job responsibilities

1. Provide Information Governance advice and support to staff across the organisation.

2. Assist the Information Governance senior management team with operational and strategic priorities.

3. Offer Information Governance perspectives on emerging cyber threats.

4. Review and help maintain key documentation, including privacy notices, Record of Processing Activities, and Information Asset Register.

5. Support and train Information Asset Owners to create and maintain an inventory of data and information assets in line with relevant legislation.

6. Advise and, where necessary, provide practical support for completing Data Protection Impact Assessments, ensuring accurate records for regulatory compliance.

7. Champion a positive Information Governance culture, promoting the principle that Information Governance is everyones responsibility.

8. Use the Data Security and Protection Toolkit to assure that information assets are secure and personal data is handled correctly.

9. Contribute to the development of organisational policies, standards, and guidelines for methods and tools.

10. Identify stakeholder communication needs and translate engagement strategies into actionable activities and deliverables.

11. Apply risk assessment and risk management principles to Information Governance decision-making.

12. Assess legal and best practice issues, promoting awareness of confidentiality and privacy laws.

13. Support the creation of performance measures to monitor Information Governance priorities effectively.

14. Assist in developing and monitoring organisational policies and processes related to Information Governance.

15. Track data security and protection trends, proactively assessing their impact on business strategies, benefits, and risks.

16. Evaluate risks to data confidentiality, integrity, and availability, supporting reviews of security controls and risk assessments, including post-breach analysis.

17. Consult and collaborate on policy development, ensuring Trust policies, procedures, privacy standards, and guidelines align with recognised Data Protection practices.

18. Consider risks associated with processing operations, considering their nature, context, and purpose.

19. Identify and manage risks related to personal data breaches or cyber incidents, activating agreed procedures, coordinating with third parties, and ensuring statutory timelines are met. Notify the Information Commissioners Office when legally required.

20. Contribute to formal reports for management on the effectiveness of controls and compliance with standards, regulations, and legislation.

21. Adapt responses to changing circumstances, new information, or evolving business requirements.

22. Direct others to complete specified tasks within defined timescales.

23. Align actions with Trust objectives and strategies, keeping the broader strategic context in mind.

24. Understand organisational hierarchy and culture, as well as supplier and partner structures, to identify decision-makers and influencers.

25. Engage stakeholders with confidence and professionalism, influencing and persuading effectively even without formal authority.

26. Make timely decisions, considering priorities, constraints, risks, and available resources.

27. Build relationships and maintain an open culture, communicating effectively across diverse backgrounds and adapting style to suit different audiences.

28. Monitor progress against targets, addressing issues promptly and escalating where necessary.

Job description

Job responsibilities

1. Provide Information Governance advice and support to staff across the organisation.

2. Assist the Information Governance senior management team with operational and strategic priorities.

3. Offer Information Governance perspectives on emerging cyber threats.

4. Review and help maintain key documentation, including privacy notices, Record of Processing Activities, and Information Asset Register.

5. Support and train Information Asset Owners to create and maintain an inventory of data and information assets in line with relevant legislation.

6. Advise and, where necessary, provide practical support for completing Data Protection Impact Assessments, ensuring accurate records for regulatory compliance.

7. Champion a positive Information Governance culture, promoting the principle that Information Governance is everyones responsibility.

8. Use the Data Security and Protection Toolkit to assure that information assets are secure and personal data is handled correctly.

9. Contribute to the development of organisational policies, standards, and guidelines for methods and tools.

10. Identify stakeholder communication needs and translate engagement strategies into actionable activities and deliverables.

11. Apply risk assessment and risk management principles to Information Governance decision-making.

12. Assess legal and best practice issues, promoting awareness of confidentiality and privacy laws.

13. Support the creation of performance measures to monitor Information Governance priorities effectively.

14. Assist in developing and monitoring organisational policies and processes related to Information Governance.

15. Track data security and protection trends, proactively assessing their impact on business strategies, benefits, and risks.

16. Evaluate risks to data confidentiality, integrity, and availability, supporting reviews of security controls and risk assessments, including post-breach analysis.

17. Consult and collaborate on policy development, ensuring Trust policies, procedures, privacy standards, and guidelines align with recognised Data Protection practices.

18. Consider risks associated with processing operations, considering their nature, context, and purpose.

19. Identify and manage risks related to personal data breaches or cyber incidents, activating agreed procedures, coordinating with third parties, and ensuring statutory timelines are met. Notify the Information Commissioners Office when legally required.

20. Contribute to formal reports for management on the effectiveness of controls and compliance with standards, regulations, and legislation.

21. Adapt responses to changing circumstances, new information, or evolving business requirements.

22. Direct others to complete specified tasks within defined timescales.

23. Align actions with Trust objectives and strategies, keeping the broader strategic context in mind.

24. Understand organisational hierarchy and culture, as well as supplier and partner structures, to identify decision-makers and influencers.

25. Engage stakeholders with confidence and professionalism, influencing and persuading effectively even without formal authority.

26. Make timely decisions, considering priorities, constraints, risks, and available resources.

27. Build relationships and maintain an open culture, communicating effectively across diverse backgrounds and adapting style to suit different audiences.

28. Monitor progress against targets, addressing issues promptly and escalating where necessary.

Person Specification

Consolidation of PS

Essential

  • Formal training qualification in IG (e.g. Foundation/Practitioner Certificate in Data Protection/GDPR) or experience working at a senior level in IG or a related area.
  • Evidence ofplanning and delivering programmes and projects.
  • Experience of developing and delivering IG training programmes.
  • Experience presenting complex concepts (such as specialist IG advice) to internal and/or external stakeholders at all levels.
  • Teamworking skills: evidence of collaborating with colleagues.
  • Experience identifying, mitigating and managing information risks.
  • Evidence of navigating organisational change, viewing it as an opportunity to learn and develop proactively.
Person Specification

Consolidation of PS

Essential

  • Formal training qualification in IG (e.g. Foundation/Practitioner Certificate in Data Protection/GDPR) or experience working at a senior level in IG or a related area.
  • Evidence ofplanning and delivering programmes and projects.
  • Experience of developing and delivering IG training programmes.
  • Experience presenting complex concepts (such as specialist IG advice) to internal and/or external stakeholders at all levels.
  • Teamworking skills: evidence of collaborating with colleagues.
  • Experience identifying, mitigating and managing information risks.
  • Evidence of navigating organisational change, viewing it as an opportunity to learn and develop proactively.

Disclosure and Barring Service Check

This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.

Certificate of Sponsorship

Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab).

From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab).

Additional information

Disclosure and Barring Service Check

This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.

Certificate of Sponsorship

Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab).

From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab).

Employer details

Employer name

King's College Hospital NHS Foundation Trust

Address

King's College Hospital NHS Foundation Trust

Denmark Hill

London

SE5 9RS


Employer's website

https://www.kch.nhs.uk/ (Opens in a new tab)

Employer details

Employer name

King's College Hospital NHS Foundation Trust

Address

King's College Hospital NHS Foundation Trust

Denmark Hill

London

SE5 9RS


Employer's website

https://www.kch.nhs.uk/ (Opens in a new tab)

Employer contact details

For questions about the job, contact:

Information Governance Service Manager

Ursula Evans

ursula.evans1@nhs.net

Details

Date posted

25 March 2026

Pay scheme

Agenda for change

Band

Band 7

Salary

£56,276 to £63,176 a year per annum inc HCA's

Contract

Permanent

Working pattern

Full-time

Reference number

213-CORP-7815684-A

Job locations

King's College Hospital NHS Foundation Trust

Denmark Hill

London

SE5 9RS


Supporting documents

Privacy notice

King's College Hospital NHS Foundation Trust's privacy notice (opens in a new tab)