Contract to start ASAP until 24-05-26 with a possible extension.

Responsibilities

To ensure that all requests for access to Council held information (including information related to individuals) and any other Data Subject Requests (invoking their rights under GDPR) are recorded, assigned to the relevant Department/Service and appropriately responded, to within the statutory timescale, leading on any response where the request covers more than one Service area.

To ensure that all requests from Departments / Services, to apply an exemption and/or extension, are dealt with in accordance with agreed policies and procedures referring only the most complex cases to the Information Governance Manager.

Responsible for ensuring that all internal databases are maintained and updated to enable ongoing update and review.

To escalate any outstanding matters to Information Asset Owners (Senior Management) giving professional advice, as appropriate, on behalf of the Corporate Information Governance Team.

To record and risk assess data security incidents considering all the different factors involved in the incident referring only high risk personal data breaches or other high risk incidents for the immediate attention of the Data Protection Officer or Information Governance Manager.

To provide advice and guidance to Incident Owners (Managers) assisting them in incident investigations and producing investigation reports and making appropriate improvement recommendations to Departments and Services.

To assist the Data Protection Officer in working with Information Asset Owners to develop comprehensive records management, including but not limited to, maintaining registers of information assets and transfers, including reviewing completed registers to identify high risk areas and to work with Departments and Services to mitigate these risks.

To liase with the Information Commissioners Officer (ICO) as appropriate and to record and monitor all recommendations made by the ICO and assist in ensuring that they are actioned accordingly.

To continuously develop own skills and enhance knowledge of information governance topics, including changes to legislation and ICO best practice guidance.

Assist and advise staff on the completion of data protection impact assessments and data sharing agreements with third parties, for approval by the DataProtection Officer.

Disclaimer: On applying for this vacancy, you agree that your personal details will be passed onto our client for their consideration of your suitability for the role. I acknowledge that it is my responsibility to notify iWork Recruitment Limited of any hirer who I do not want my details to be passed onto.

5289494-02-26