Head of Information Governance and Cyber Security

at  Norfolk and Norwich University Hospital

To create and implement the Trusts Information Governance and Cyber Security Strategy with responsibility and accountability for the development, implementation and delivery of the Trusts annual Information Governance and Cyber Security work programme, incorporating information quality assurance, records management, data protection, information/cyber security and Freedom of Information and develop good information governance and cyber security practices across the organisation. Provide specialist knowledge and support to the SIRO, Caldicott Guardian, Information Asset Owners, Department Heads, and Directors relating to the application of Information Governance and Cyber Security principles and processes relating to the security, integrity and confidentiality of patient and staff information. Act as the subject matter expert in data protection law and advise the Trust Management Board, the Board of Directors, Chairman, Caldicott Guardian, SIRO and the Executive Directors on data protection issues as and when necessary. Supporting the SIRO and Caldicott Guardian, and their deputies, to enable informed decision making in relation to all areas of Data Security and Protection Toolkit, Cyber Assurance Framework, Freedom of Information and Data Protection Act (DPA).
Act as the contact point for the Information Commissioners Office (ICO). This should include collating information which may be required by the ICO in the course of any investigation or enforcement action. Responsible for leading the development and implementation of mechanisms to monitor compliance against national IG & cyber standards and the requirements of UK Data Protection laws and other external performance assessments. Also to develop and design effective monitoring of KPIs and metrics.
Responsible for receiving, interpreting and communicating highly complex information regarding developments in national IG and cyber legislation, policy and best practice and ensuring this is embedded within the Trust. Convey highly complex and contentious IG/cyber related information, which may often be perceived to be a barrier to operational practice, to a wide range of audiences who may have limited knowledge of the subject matter. Act as an ambassador for Digital Health, Cyber and Information Governance service by developing and maintaining excellent working relationships with users across the organisation to deliver a high quality service and to achieve local requirements and national targets. Represent the Trust at organisational and national information governance & cyber groups to determine, influence and implement national and local policies, protocols and procedures.
Please refer to the Job Description for the full specification of responsibilities and requirements for this post

Please refer the Job description for details