Cwm Taf Morgannwg University Health Board

Information Governance Manager

Information:

This job is now closed

Job summary

An exciting opportunity has arisen for an experienced data protection professional to become the Information Governance Manager at Cwm Taf Morgannwg University Health Board.

This role will assist and support the Head of Information Governance in the development, implementation, establishment and ownership of the areas of Information Governance so that it strategically and operationally supports the clinical and business objectives of the Health Board. These areas include developing, implementing and monitoring of systems, policies and processes for:

  • Data Protection legislation
  • Caldicott Principles
  • Code of Confidentiality
  • Information Sharing
  • Privacy engineering

This role will demonstrate accountability against data protection legislation and provide assurance to the Head of Information Governance on the effectiveness of the Information Governance Framework and support the implementation of the Information Governance Strategy.

Working in a friendly, experienced Information Governance Team which sits within the Digital Directorate to provide support, training and guidance to the rest of the Health Board.

This post offers a great opportunity for development in the area of information governance as well as working with a variety of individuals across the NHS, with partner organisations and the public

Main duties of the job

As a professional working at corporate level across Cwm Taf Morgannwg University Health Board (CTMUHB) with considerable freedom to act and an ability to apply policy and procedures to different situations, the post holder(s) will play a key role in supporting and deputising for the Head of Information Governance (IG), and others on matters related to data protection and legislation.

The post holder will have expert/specialist knowledge in managing all IG arrangements and the ability to interpret, and advise on wider legislation in order to ensure a managed and co-ordinated approach to IG across the UHB and with partner organisations in line with statutory and local regulations and guidelines.

The post holder will also support the Head of IG by taking delegated responsibility for regulatory annual assessments, information asset management and privacy by design.

They will undertake organisational wide compliance audits and may devise and deliver targeted training within the identified areas above to groups of all levels of staff and students.

They will be required to identify gaps in Health Board IG compliance, proactively follow risk management procedures and advise on mitigation actions.

The ability to speak Welsh is desirable for this post; Welsh and/or English speakers are equally welcome to apply.

About us

Cwm Taf Morgannwg University Health Board is part of the NHS Wales family. Our Health Board provides primary, secondary and community health and wellbeing services to around 450,000 people living in three County Boroughs: Bridgend Merthyr Tydfil, and Rhondda Cynon Taf.

We live by our core values:

  • We listen, learn and improve
  • We treat everyone with respect
  • We all work together as one team

We are a proud local employer; around 80% of our 15000 workforce live within our region, making our staff not only our lifeblood of our organisation but of the diverse communities that we serve.

Details

Date posted

03 November 2023

Pay scheme

Agenda for change

Band

Band 7

Salary

£44,398 to £50,807 a year per annum

Contract

Permanent

Working pattern

Full-time

Reference number

110-AC353-1123

Job locations

Ynysmeurig House

Navigation Park

Abercynon

CF45 4SN


Job description

Job responsibilities

You will be able to find a full Job description and Person Specification attached within the supporting documents or please click Apply now to view in Trac

The post holder will:

  • Support the Head of Information Governance in the development, implementation and maintenance of a corporate information governance framework and supporting policies, procedures and standards to enable compliance with relevant UK law and NHS standards.
  • Provide specialist advice on IG throughout at CTMUHB both at a strategic and also an operational level.
  • Practice and manage independently as a professional data protection practitioner, acting on behalf of the UHB in dealings with data subjects, organisations, the ICO and other relevant bodies, with their own portfolio of work and cases.
  • Be responsible for contributing to the development, maintenance and delivery of the IG Work Plan.
  • Lead and co-ordinate the development, communication and implementation of robust IG policies, procedures and processes across the Health Board by working with colleagues to inform and strengthen the IG remit to deliver services efficiently, effectively, securely and confidentially. This will be based on related data protection legislation, standards and best practice.
  • Maintain a strong IG culture across the Health Board, including with all staff (including volunteers, students, honorary staff, agency, locum and other temporary staff and contractors) and external stakeholders.
  • Provide expert IG advice and contribute to projects, service evaluation, research and development across the Health Board to ensure that IG principles are embedded in the project from the start (privacy by design) and support other developments around information processing.
  • Lead on Data Protection Impact Assessments (DPIAs), devising and reviewing the process and templates, analysing, risk assessing, identifying mitigating actions, negotiating with staff and 3rd party companies on required amendments to data ownership and other contentious issues, and following approval processes. Escalate concerns as required to the Head of Information Governance.
  • Co-ordinate and support the development of Information Sharing Protocols in line with the Wales Accord on the Sharing of Information (WASPI), and manage the sharing of information within the organisation and with external partners.
  • Lead on the IG element of contracts, analysing, risk assessing, negotiating with 3rd party companies on required amendments to data ownership and other contentious issues, and following approval processes.
  • Lead on IG audits to ensure that IG policies and procedures are being adhered to.
  • Provide a high level outcome report to include assessment and evaluations of the Health Boards performance against KPIs, carrying out trend analysis and producing findings and recommendations.
  • Provide recommendations to Departments on IG improvements necessary.
  • Oversee the achievement of KPIs and ensure timescales are met.
  • Proactively contribute to work and support required when the IG Department or Health Board is audited by Internal Audit and External bodies, e.g. ICO.
  • Keep up to date on legislation relevant to information governance and ensure the Head of Information Governance and the Data Protection Officer is briefed on IG issues which may affect the Health Board.
  • Draft guidance documents, using research and own knowledge.
  • Interpret routine information requests and action accordingly.
  • Preparing and present statistics and papers for information governance and subcommittee meetings.
  • Advise staff, in person as well as by email, Microsoft Teams and telephone, on all aspects of IG, where diplomacy and a problem solving ability likely to be required due to adverse staff reactions and service pressure considerations.
  • Support all functions of the IG department, support new developments and prioritise for the department as they arise within the remit of the post.
  • Flexibility is essential as areas of Lead responsibilities change over time amongst the team depending on prioritisation requirements and team needs.
  • Prioritise own work, work as part of a team and use own initiative to problem solve, working largely autonomously, referring issues to the Head of IG, the Caldicott Guardian and the Data Protection Officer when required when required.
  • Provide cover for other members of the IG Team as necessary, including deputising for the Head of IG/Data Protection Officer when required.
  • Maintain the professional image of the information governance department and to act as a model of good practice with appropriate discretion in any sensitive areas of work.
  • Provide advice and assistance to hosted bodies and managed GP Practices.
  • Provide expert advice and analysis as part of the informatics design group, architecting the UHBs informatics systems.

Job description

Job responsibilities

You will be able to find a full Job description and Person Specification attached within the supporting documents or please click Apply now to view in Trac

The post holder will:

  • Support the Head of Information Governance in the development, implementation and maintenance of a corporate information governance framework and supporting policies, procedures and standards to enable compliance with relevant UK law and NHS standards.
  • Provide specialist advice on IG throughout at CTMUHB both at a strategic and also an operational level.
  • Practice and manage independently as a professional data protection practitioner, acting on behalf of the UHB in dealings with data subjects, organisations, the ICO and other relevant bodies, with their own portfolio of work and cases.
  • Be responsible for contributing to the development, maintenance and delivery of the IG Work Plan.
  • Lead and co-ordinate the development, communication and implementation of robust IG policies, procedures and processes across the Health Board by working with colleagues to inform and strengthen the IG remit to deliver services efficiently, effectively, securely and confidentially. This will be based on related data protection legislation, standards and best practice.
  • Maintain a strong IG culture across the Health Board, including with all staff (including volunteers, students, honorary staff, agency, locum and other temporary staff and contractors) and external stakeholders.
  • Provide expert IG advice and contribute to projects, service evaluation, research and development across the Health Board to ensure that IG principles are embedded in the project from the start (privacy by design) and support other developments around information processing.
  • Lead on Data Protection Impact Assessments (DPIAs), devising and reviewing the process and templates, analysing, risk assessing, identifying mitigating actions, negotiating with staff and 3rd party companies on required amendments to data ownership and other contentious issues, and following approval processes. Escalate concerns as required to the Head of Information Governance.
  • Co-ordinate and support the development of Information Sharing Protocols in line with the Wales Accord on the Sharing of Information (WASPI), and manage the sharing of information within the organisation and with external partners.
  • Lead on the IG element of contracts, analysing, risk assessing, negotiating with 3rd party companies on required amendments to data ownership and other contentious issues, and following approval processes.
  • Lead on IG audits to ensure that IG policies and procedures are being adhered to.
  • Provide a high level outcome report to include assessment and evaluations of the Health Boards performance against KPIs, carrying out trend analysis and producing findings and recommendations.
  • Provide recommendations to Departments on IG improvements necessary.
  • Oversee the achievement of KPIs and ensure timescales are met.
  • Proactively contribute to work and support required when the IG Department or Health Board is audited by Internal Audit and External bodies, e.g. ICO.
  • Keep up to date on legislation relevant to information governance and ensure the Head of Information Governance and the Data Protection Officer is briefed on IG issues which may affect the Health Board.
  • Draft guidance documents, using research and own knowledge.
  • Interpret routine information requests and action accordingly.
  • Preparing and present statistics and papers for information governance and subcommittee meetings.
  • Advise staff, in person as well as by email, Microsoft Teams and telephone, on all aspects of IG, where diplomacy and a problem solving ability likely to be required due to adverse staff reactions and service pressure considerations.
  • Support all functions of the IG department, support new developments and prioritise for the department as they arise within the remit of the post.
  • Flexibility is essential as areas of Lead responsibilities change over time amongst the team depending on prioritisation requirements and team needs.
  • Prioritise own work, work as part of a team and use own initiative to problem solve, working largely autonomously, referring issues to the Head of IG, the Caldicott Guardian and the Data Protection Officer when required when required.
  • Provide cover for other members of the IG Team as necessary, including deputising for the Head of IG/Data Protection Officer when required.
  • Maintain the professional image of the information governance department and to act as a model of good practice with appropriate discretion in any sensitive areas of work.
  • Provide advice and assistance to hosted bodies and managed GP Practices.
  • Provide expert advice and analysis as part of the informatics design group, architecting the UHBs informatics systems.

Person Specification

Qualifications and/or Knowledge

Essential

  • In depth specialist knowledge of information governance and the use of information across the NHS acquired through Degree or equivalent, plus additional specialist knowledge acquired through training and relevant experience to Master's degree level or equivalent.
  • Knowledge of relevant legislation related to information governance, good practice guidelines and frameworks
  • Knowledge of relevant areas of responsibilities detailed in policies and standard operating procedures

Desirable

  • Previous experience of working with a health environment.
  • Knowledge of risk management and investigation processes
  • BCS qualified practitioner status in GDPR.
  • Knowledge of privacy engineering.

Experience

Essential

  • Proven relevant experience of working in information governance or related area
  • Experience in dealing with complex information governance issues.
  • Appropriate use of knowledge/ evidence based practice in written or analytical presentation of work.

Desirable

  • Previous experience working in a senior governance role in either the NHS or the Public Sector.
  • Experience of writing policies and guidance.

Aptitude and Abilities

Essential

  • Confident communication and time management skills both written and oral.
  • Ability to use own initiative to resolve problems as they occur
  • Ability to work with discretion, sensitivity and maintain confidentiality at all times.
  • Ability to produce reports that evaluate and present complex data in a high standard and understandable way.
  • Ability to consider data protection matters from both the privacy and security by design, architectural and legislative compliance perspectives.

Desirable

  • Ability to speak Welsh.
Person Specification

Qualifications and/or Knowledge

Essential

  • In depth specialist knowledge of information governance and the use of information across the NHS acquired through Degree or equivalent, plus additional specialist knowledge acquired through training and relevant experience to Master's degree level or equivalent.
  • Knowledge of relevant legislation related to information governance, good practice guidelines and frameworks
  • Knowledge of relevant areas of responsibilities detailed in policies and standard operating procedures

Desirable

  • Previous experience of working with a health environment.
  • Knowledge of risk management and investigation processes
  • BCS qualified practitioner status in GDPR.
  • Knowledge of privacy engineering.

Experience

Essential

  • Proven relevant experience of working in information governance or related area
  • Experience in dealing with complex information governance issues.
  • Appropriate use of knowledge/ evidence based practice in written or analytical presentation of work.

Desirable

  • Previous experience working in a senior governance role in either the NHS or the Public Sector.
  • Experience of writing policies and guidance.

Aptitude and Abilities

Essential

  • Confident communication and time management skills both written and oral.
  • Ability to use own initiative to resolve problems as they occur
  • Ability to work with discretion, sensitivity and maintain confidentiality at all times.
  • Ability to produce reports that evaluate and present complex data in a high standard and understandable way.
  • Ability to consider data protection matters from both the privacy and security by design, architectural and legislative compliance perspectives.

Desirable

  • Ability to speak Welsh.

Disclosure and Barring Service Check

This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.

Certificate of Sponsorship

Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab).

From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab).

Additional information

Disclosure and Barring Service Check

This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.

Certificate of Sponsorship

Applications from job seekers who require current Skilled worker sponsorship to work in the UK are welcome and will be considered alongside all other applications. For further information visit the UK Visas and Immigration website (Opens in a new tab).

From 6 April 2017, skilled worker applicants, applying for entry clearance into the UK, have had to present a criminal record certificate from each country they have resided continuously or cumulatively for 12 months or more in the past 10 years. Adult dependants (over 18 years old) are also subject to this requirement. Guidance can be found here Criminal records checks for overseas applicants (Opens in a new tab).

Employer details

Employer name

Cwm Taf Morgannwg University Health Board

Address

Ynysmeurig House

Navigation Park

Abercynon

CF45 4SN


Employer's website

https://joinctm.wales/ (Opens in a new tab)

Employer details

Employer name

Cwm Taf Morgannwg University Health Board

Address

Ynysmeurig House

Navigation Park

Abercynon

CF45 4SN


Employer's website

https://joinctm.wales/ (Opens in a new tab)

Employer contact details

For questions about the job, contact:

Head of Information Governance

Claire Northwell

claire.northwell@wales.nhs.uk

Details

Date posted

03 November 2023

Pay scheme

Agenda for change

Band

Band 7

Salary

£44,398 to £50,807 a year per annum

Contract

Permanent

Working pattern

Full-time

Reference number

110-AC353-1123

Job locations

Ynysmeurig House

Navigation Park

Abercynon

CF45 4SN


Supporting documents

Privacy notice

Cwm Taf Morgannwg University Health Board's privacy notice (opens in a new tab)