Information Governance Consultant

at  NHS Midlands and Lancashire Commissioning Support Unit

We have exciting opportunities in our Information Governance (IG) Service at Midlands and Lancashire Commissioning Support Unit.
Our IG Consultants work in collaboration with stakeholders, providing advice on all aspects of Information Governance’s and ensuring the delivery of local work plans.
They provide specialist advice and guidance in relation to all aspects of Information Governance for the CSU and its customers, including but not limited to Local Area Teams, Primary Care and Private Contractors and work across an assigned geographical locality, providing cross-cover into other localities within the CSU footprint as required.
They supporting the Strategic IG Lead to develop and implement robust business processes in respect of the above function for the CSU and its customers to meet their statutory and legal requirements and act as a source of complex knowledge and experience in relation to all aspects of information governance, implementing the service in a practical way, whilst communicating specialist knowledge in a clear, concise and factual manner.
Where essential criteria is met, a preference for shortlisting and interview will be given to those people in scope of the current Organisational Change consultation. Once the shortlisting/ interviews have taken place for those in scope of the consultation, if any roles remain vacant, applications from outside of the current Organisational Change consultation will then be considered.

Review information risk assessments and ensure high-level information risks are reported to the Senior Information Risk Owner (SIRO).

• Provide advice and guidance on Data Protection Impact Assessments and their completion.
• Development and review of Data Processing Agreements and Sharing Agreements as required, including the co-ordination and administration of the register of contracts and agreements.
• Implementation and delivery of compliance spot check audits, Information Security Audits and Confidentiality audits.

To attend and actively contribute to information governance meetings, or meetings with responsibility for information governance (including audit committees or equivalent), as required to support the DSP Toolkit delivery, including supporting the approval of the annual improvement plan, policies and procedures and development of any associated reports and risks.

• To attend and actively contribute to multi agency networks/meetings, including strategic networks, to represent both ML and its customers as applicable.

The NHS is a world-renowned institution and an exciting place to work, full of challenges and opportunities.
NHS Midlands and Lancashire is one of the biggest & best-performing commissioning support units in the country, with among the highest levels of staff and customer satisfaction. We work together as a team of over 1,600 expert staff based across the Midlands and North West to make a difference – for our customers, patients and communities.
Offering a full range of professional services to Integrated Care Boards (ICBs), hospital trusts, local authorities, integrated care systems (ICSs) and other public bodies across the country, our NHS values underpin everything we do.
Joining our inclusive and innovative team comes with a range of benefits including flexible & agile working arrangements, pension scheme and generous annual leave allowance.
With training schemes / support networks, you will be empowered to play a leading role in the future of healthcare. As a member of NHS staff you will receive plenty of discounts too.
Please note for any NHS candidates in substantive roles applying for fixed terms contract positions (both for internal and external applicants), these have to be agreed on a secondment basis. Prior to applying for the position, you must discuss with your current Line Manager and HOS to ask permission to be released on a secondment basis, should you be successful in your application
Key Responsibilities
Be responsible for the delivery of the Information Risk Work Programme for the CSU and our customers, working closely with the
Compliance Team.
Completion of Information Asset Management and Data Flows.
Following submission of Information Asset Registers and Data Flows, be responsible for the final approval ensuring accuracy and continuity
of the records for all services.
Support Information Asset Owners with the completion of Information Risk action plans, review those plans against whether they will mitigate or reduce the risk sufficiently and submit to the Senior Information Risk Owner including a recommendation as to what action should be taken.
Assessment of Systems and Software used by the organisation and our customers.
Review information risk assessments and ensure high-level information risks are reported to the Senior Information Risk Owner (SIRO).
Provide advice and guidance on Data Protection Impact Assessments and their completion.
Development and review of Data Processing Agreements and Sharing Agreements as required, including the co-ordination and administration of the register of contracts and agreements.
Implementation and delivery of compliance spot check audits, Information Security Audits and Confidentiality audits.
See job description for full details

Please refer the Job description for details