Information Governance Officer

  • Post Date: October 5, 2022
  • Isle of Man
Job Description

Role Responsibilities:
– Develop and maintain effective systems to record, control and act upon all FOIA and DSAR requests for information received under the provisions of the FOIA and Data Protection legislation
– Develop and maintain effective systems to record and monitor key governance requirements, including records of :-
* data sharing/transfer agreements (DSA)
* data protection impact assessments (DPIA)
* processor contracts
* records transferred under the Public Record Act / documents destroyed under the Directorate’s records management policy
* data breaches
* staff IG training
– Assist with developing and maintaining the Directorate’s Information Asset Register (IAR)
– Assist with monitoring and maintaining the Directorate’s Record of Processing Activity (ROPA)
– Support delivery of the information governance framework and related governance policies and procedures for Public Health, including specific local IG policies as required
– Support workshops and data flow mapping activities to ensure information flows, inefficiencies, risks and data controls are captured
– Provide additional assistance to service areas in the completion of data protection impact assessments (DPIAs)
– Undertake a review of GDPR privacy notices, identifying and escalating areas for improvement
– Provide secretariat support for the Information Governance Group, including the IG risk register and actions log
– Develop efficient monitoring and oversight processes (including maintaining the Directorate’s Accountability Tracker) to allow regular reporting on IG and data processing activities. Escalating any instances of non-compliance to the Head of Corporate Services/DPO.
– Provide administrative support for DSARs and FoI requests, including regular management reports
– Identify and circulate IG /GDPR bulletins and guidance documents as part of an ongoing IG/GDPR training and awareness programme
– Provide support and administrative assistance to the Public Health Information security management system project (e.g. ISO27001/DSPT measurement toolkit)
– Establish/maintain a good working knowledge of the application of the FOIA, Data Protection legislation and associated developments

Skills & Experience Required:
– Knowledge and experience of data protection legislation, the Freedom of Information Act 2015 and Information Governance (or is able to demonstrate a core level of understanding and has a keen interest in increasing knowledge levels in these areas for personal development purposes)
– Excellent IT skills, including Microsoft Office applications
– Excellent communication and interpersonal skills – verbal, written and listening. Able to present information in a meaningful way

This role is for an initial period of 6 months but may be extended for a further 6 months