Head of Corporate Governance

Job description

Job responsibilities

Key Result Areas & Performance Indicators

Corporate Governance

To provide a professional and high quality support service to the Trust Board, its Committees and Executive Committees.

To advise on constitutional matters relating to corporate governance and compliance.

To oversee and manage the effective organisation of the Board and its committees including undertaking the highest quality minute taking, the management of the forward planner, papers, agendas, follow up actions and statutory and mandatory board registers.

To manage the FOI process

To provide support to the Charitable Funds Committee

To lead the management of the Board Assurance Framework, ensuring this is updated ahead of Board presentation and captures strategic objectives, risks, controls, and assurances.

Maintain corporate registers including Declarations of Interests and Gifts, Sponsorship and Hospitality

Identify and ensure compliance with appropriate standards and requirements for Board and committee operation including the Trusts Standing Orders and, with support of finance colleagues, Standing Financial Instructions.

Undertake performance improvement audits including the assessment of Committee effectiveness.

Ensure that arrangements are in place for the safe custody and application of the Trust Seal.

Maintain a register on the use of the Trust Seal and report its use at regular intervals as laid down in the Trusts Standing Orders.

Information Governance

Oversee the annual Data Security and Data Protection Toolkit return, ensuring high levels of compliance, setting out risks clearly and ensuring an action plan is in place and systems to provide assurances are established.

Responsible for the establishment, delivery and oversight of the Trusts Information Governance (IG) Strategy

Responsible for the Information Governance Work Programme, and the monitoring and delivery of agreed actions to achieve the Trusts Information Governance Strategy

Oversee project planning and monitoring delivery of the IG components at both service mobilisation and demobilisation.

Overseeing IG standards and practice, IG systems and data sharing flows across the Trust and with partner organisations.

Supplying expert advice to senior executive team on all areas of IG, including access to information, information sharing and transfer, IG policy, procedure and guidance, information for the public, training, Freedom of Information (FOI), Subject Access Requests, IG incident reporting and investigation, IG risk, records management

Responsible for IG training across the Trust, including face to face training at staff Induction days.

The role supports the Trusts Caldicott Guardian and SIRO with the implementation of policies and procedures to ensure that the Trust is compliant with Caldicott requirements and relevant codes of practice.

The role is an identified Registration Authority Manager at the Trust.

Key Relationships & Stakeholders

Trust Board

Senior Management Team

Communications and web teams

All other Trust staff

Information Commissioners Office

Central government bodies

Information governance staff in other NHS Trusts

Third parties requesting information this will include Members of the public, the Press and third party organisations

Key Responsibilities

Strategy

Responsible for the establishment, of the Trusts Information Governance (IG) Strategy and ensuring a process is in place for assurance of its delivery

Responsible for the Trusts risk and compliance strategy.

General

Responsible for the creation and maintenance of IG policies, procedures, guidance and training across the Trust. Designs, develops and delivers learning opportunities and is able to create and adapt material as required to suit different stakeholders. Specifies learning interventions and opportunities for individuals or groups of staff.

Responsible for the provision of advice and support on IG related matters across the Trust

Reviews information systems and processes to ensure that they are compliant with organisational strategy and corporate governance.

To build and manage a team- 2 x IG Managers, who provide subject matter expertise across the Trust. Actively participate in the recruitment and selection of staff and subsequent employment and induction of new staff.

Ensure efficient and effective use of the workforce and ensure that the structure and skill mix of the team reflects the activity demands and implement skill mix and staff deployment/changes as appropriate and review work allocation to meet the changing needs within the financial budget.

Communicate the Trust, Division, and Service objectives, future plans and current progress against plans to all team members and foster a sense of identity, common purpose and shared values in pursuit of goals and organisational objectives.

Ensure that the IG function delivers an effective service in line with the IG Strategy and against agreed service levels. Creates and maintains a catalogue of available services. In

consultation with the customer negotiates service level requirements and agrees service levels. Diagnoses service delivery problems and initiates actions to maintain or improve levels of service. Establishes and maintains operational methods, procedures and facilities in assigned area of responsibility and reviews them regularly for effectiveness and efficiency.

• Responsible for the Trusts compliance with requests for information under the Freedom of Information Act, Environmental Information Regulations and General Data Protection This includes monitoring performance against statutory timescales.
• Assessment the Trusts performance, completes and overseas submission of the NHS Data Protection & Security Toolkit
• Manages a programme of work to manage historic and Trust records, including the establishment of an Information Asset This will involve overseeing the implementation of new Trust wide software to record and manage IARs and records of data processing activities.
• Manages information governance breaches reported through Datix, investigating and reporting breaches and, where necessary, reporting these through the Toolkit and/or to the Information Commissioners Office (ICO). Recommending and monitoring mitigating actions as
• Reports issues of non-compliance and proposes and monitors action for
• Maintains a database of information sharing agreements via the NHS Data Controller Console (DCC), reviewing and advising the Caldicott Guardian as appropriate, and signing off information sharing agreements on behalf of the
• Ensures that responses to requests for information under the GDPR, Access to Health Records Act, Freedom of Information Act and Environmental Information Regulations are handled promptly and responded to within statutory
• Responsible for the provision of accessible information to patients, staff and the public, including information available on the Trusts website and including responsibility for the FOI publication scheme
• Ensure that all requests for assistance from staff are responded to effectively and promptly, such that agreed service levels are
• Investigates data protection complaints and drafts responses as the Data Protection Officer
• Advises on risk management and records
• Has expert knowledge of relevant international standards, such as ISO 27001 and advises on compliance with
• Interprets relevant legislation and best practice and, in consultation with relevant stakeholders, devises new or revised policy, procedure and guidance for
• Reviews information systems for compliance with legislation and specifies any required Responsible for ensuring compliance with organisational policies and procedures and overall information management strategy.
• Reports review findings and recommendations for improvement in the effectiveness and efficiency of control of aspects of the total IT environment, and advise the Information Governance
• Works with minimal direction as a subject matter
• Is a member of the Trusts Information Governance Group and chair of the Access to Information Sub Group of the Information Governance
• Oversees the Trusts Registration Authority function, ensuring adequate resources are in place so that access to NHS spine systems is provided according to NHS

• Ensure that third party contracts with suppliers and service providers are compliant with data protection requirements
• Oversee the completion and submission of the NHS Data Protection & Security Toolkit
• Leads on IG related projects and/or provides IG expertise for Trust wide information sharing programmes and projects
• Leads on continued compliance/certification with the ISO 27001 Information Security
• Assesses and evaluates risks, including operational, reputational and financial risk due to information governance related Acquires a proper understanding of a problem or situation by breaking it down systematically into its component parts and identifying the relationships between these parts, selecting an appropriate method to resolve the issue and monitoring the result, such that learning is identified and absorbed.

Operational Delivery

Compliance with statutory timescales for requests for information

Timely submission of the NHS Data Protection & Security Toolkit

Compliance/certification with the ISO 27001 Information Security Standard

Oversee management of the Trusts Registration Authority Function

Quality Care & Governance

Trust policies, procedures and guidance

Relevant external policies

Person Specification

Qualifications

Desirable

• Educated to Masters level or further management knowledge or experience, or equivalent professional experience
• IG qualification

Experience

Essential

• Highly proficient corporate governance subject matter expert, with knowledge and experience.
• Extensive demonstrable experience of undertaking a Trust Secretarial role or equivalent in the NHS or similar organisation.
• Well-developed political awareness, influencing, negotiation and conflict resolution skills

Knowledge

Essential

• Highly knowledgeable on the GDPR and DPA 2018, Freedom of Information Act, Environmental Information Regulations, PECR and health and social care related laws where these relate to how personal information may be shared.
• Expert in the methods and techniques for risk management, business impact analysis, mitigating controls, resilience and Contingency arrangements relating to serious disruption to services.

Disclosure and Barring Service Check

This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.

Certificate of Sponsorship

Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab).

From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab).

Employer details

Employer name

London Ambulance Service NHS Trust

Address

Waterloo

220 Waterloo Road

London

SE18SD

Employer's website

https://www.londonambulance.nhs.uk/ (Opens in a new tab)