Warning
Mae'r hysbyseb swydd hon wedi dod i ben ac mae'r ceisiadau wedi cau.
Senior Information Management and Governance Officer
| Dyddiad hysbysebu: | 12 Gorffennaf 2024 |
|---|---|
| Cyflog: | £45,942 i £53,478 bob blwyddyn |
| Gwybodaeth ychwanegol am y cyflog: | Civil Service Pension, Flexible Working Hours, Hybrid Working |
| Oriau: | Llawn Amser |
| Dyddiad cau: | 14 Gorffennaf 2024 |
| Lleoliad: | Edinburgh, Scotland |
| Gweithio o bell: | Hybrid - gweithio o bell hyd at 5 ddiwrnod yr wythnos |
| Cwmni: | Scottish Funding Council |
| Math o swydd: | Parhaol |
| Cyfeirnod swydd: |
Crynodeb
This is a pivotal role at the heart of a public body which is responsible for a substantial portion of Scotland’s public funds. Reporting to the Assistant Director, Information Governance you will lead on SFC’s compliance within records management and information security activities. You will work in close partnership with senior leaders, including the Senior Information Risk Officer and Chief Information Officer, supporting the Assistant Director to deliver the Information Governance Framework and leading on associated activities. As an experienced information management practitioner, you will be skilled in dealing with sensitive, complex information at pace, building trusted relationships with colleagues across SFC, and you will exercise good judgement in responding to information security incidents and personal data breaches. You will be expected to work flexibly across the responsibilities of the information governance team, stepping in to provide cover and support when required to ensure deadlines are met. A keen understanding of the strategic context within which the SFC is working will be key to success in this role.
Oversee the development of SFC’s records management system, to ensure SFC’s records are effectively managed throughout their lifecycle.
Develop and maintain SFC’s Records Management Plan to ensure it reflects best practice, accurately reflects SFC’s systems and processes and is authorised by The Keeper.
Take a proactive and strategic approach to developing and maintaining effective coordination and liaison with our stakeholders and external partners.
Lead in the formulation, implementation and regular review of policy and guidance to ensure that information management policies meet all relevant legislation and cover all ways staff access and store information.
Develop and implement training and guidance to ensure colleagues are equipped to know how to use SFC’s records management system effectively and understand their responsibilities within records management.
Develop and maintain SFC’s information asset register to ensure that it is accurate and regularly reviewed and information asset owners understand their responsibilities.
Promote an information governance culture and an understanding of records management throughout the organisation.
Contribute, make recommendations and report to the Information Governance Oversight Group on information management development and compliance, including risks, trends, good practice, mitigation, and training.
As the subject expert lead, act in an advisory role for records management for all colleagues, including senior managers.
Information Security
Ensure the SFC’s information is processed legally, securely, efficiently and consistently to the highest standards.
Ensure the SFC has a robust framework for handling information in a confidential and secure manner.
Provide oversight and manage information security incidents and personal data breaches, working closely with key stakeholders, including the DPO, to assess and respond to personal data breaches, reporting to senior management and ICO where required.
Identify trends and ways to mitigate and reduce information incidents and data breaches.
Lead in the formulation and implementation of policy and guidance to ensure that information security policies meet all relevant legislation and cover all ways staff access and store information.
Contribute, make recommendations and report to the Information Governance Oversight Group on information security compliance, including risks, trends, good practice, mitigation, and training.
Working with IT colleagues, ensure that the organisation’s Data Loss Prevention software meets information governance requirements.
Ensure staff fully understand their responsibility within information security and follow relevant processes, evidenced through reporting and auditing.
Provide an efficient and effective senior contact point for queries, including complex ones in relation to information security.
Skills, Knowledge and Expertise
It is important through your CV / Cover Letter that you give evidence of proven experience of each of the following essential criteria:
Experience of leading within information management and evidence of supporting an organisation in meeting its requirements within relevant legislation.
An excellent understanding of the legal and regulatory landscape of all aspects of information governance (freedom of information, data protection for example) and how they apply to this role.
Evidence of project management experience, including successfully initiating, leading and driving projects.
Ability to demonstrate good judgement when analysing and responding to complex issues.
Excellent oral and written communication skills, including experience of drafting reports, policies, procedures, communications to staff (with varying degrees of expertise), and responses to information rights requests, for example.
Excellent interpersonal skills, including the ability to build effective relationships, work collaboratively and take account of others’ perspectives.
Ability to work autonomously, take ownership of work, and prioritise tasks and time appropriately.
Experience of developing and implementing training and guidance.
Excellent organisational and planning skills, including the ability to work calmly and at pace and the flexibility to manage a diverse range of priorities.
Qualified to SCQF Level 9 (Degree) or equivalent experience.
Oversee the development of SFC’s records management system, to ensure SFC’s records are effectively managed throughout their lifecycle.
Develop and maintain SFC’s Records Management Plan to ensure it reflects best practice, accurately reflects SFC’s systems and processes and is authorised by The Keeper.
Take a proactive and strategic approach to developing and maintaining effective coordination and liaison with our stakeholders and external partners.
Lead in the formulation, implementation and regular review of policy and guidance to ensure that information management policies meet all relevant legislation and cover all ways staff access and store information.
Develop and implement training and guidance to ensure colleagues are equipped to know how to use SFC’s records management system effectively and understand their responsibilities within records management.
Develop and maintain SFC’s information asset register to ensure that it is accurate and regularly reviewed and information asset owners understand their responsibilities.
Promote an information governance culture and an understanding of records management throughout the organisation.
Contribute, make recommendations and report to the Information Governance Oversight Group on information management development and compliance, including risks, trends, good practice, mitigation, and training.
As the subject expert lead, act in an advisory role for records management for all colleagues, including senior managers.
Information Security
Ensure the SFC’s information is processed legally, securely, efficiently and consistently to the highest standards.
Ensure the SFC has a robust framework for handling information in a confidential and secure manner.
Provide oversight and manage information security incidents and personal data breaches, working closely with key stakeholders, including the DPO, to assess and respond to personal data breaches, reporting to senior management and ICO where required.
Identify trends and ways to mitigate and reduce information incidents and data breaches.
Lead in the formulation and implementation of policy and guidance to ensure that information security policies meet all relevant legislation and cover all ways staff access and store information.
Contribute, make recommendations and report to the Information Governance Oversight Group on information security compliance, including risks, trends, good practice, mitigation, and training.
Working with IT colleagues, ensure that the organisation’s Data Loss Prevention software meets information governance requirements.
Ensure staff fully understand their responsibility within information security and follow relevant processes, evidenced through reporting and auditing.
Provide an efficient and effective senior contact point for queries, including complex ones in relation to information security.
Skills, Knowledge and Expertise
It is important through your CV / Cover Letter that you give evidence of proven experience of each of the following essential criteria:
Experience of leading within information management and evidence of supporting an organisation in meeting its requirements within relevant legislation.
An excellent understanding of the legal and regulatory landscape of all aspects of information governance (freedom of information, data protection for example) and how they apply to this role.
Evidence of project management experience, including successfully initiating, leading and driving projects.
Ability to demonstrate good judgement when analysing and responding to complex issues.
Excellent oral and written communication skills, including experience of drafting reports, policies, procedures, communications to staff (with varying degrees of expertise), and responses to information rights requests, for example.
Excellent interpersonal skills, including the ability to build effective relationships, work collaboratively and take account of others’ perspectives.
Ability to work autonomously, take ownership of work, and prioritise tasks and time appropriately.
Experience of developing and implementing training and guidance.
Excellent organisational and planning skills, including the ability to work calmly and at pace and the flexibility to manage a diverse range of priorities.
Qualified to SCQF Level 9 (Degree) or equivalent experience.
Aelod balch o'r cynllun cyflogwyr Hyderus o ran Anabledd
Hyderus o ran Anabledd
Gwybodaeth am Hyderus o ran Anabledd
Yn gyffredinol, bydd cyflogwr Hyderus o ran Anabledd yn cynnig cyfweliad i unrhyw ymgeisydd sy'n datgan eu bod yn anabl ac yn bodloni'r meini prawf lleiaf ar gyfer y swydd fel y diffinnir gan y cyflogwr. Mae'n bwysig nodi, mewn rhai sefyllfaoedd recriwtio fel nifer fawr o ymgeiswyr, cyfnod tymhorol ac amseroedd prysur iawn, efallai y bydd y cyflogwr am gyfyngu ar y niferoedd cyffredinol o gyfweliadau a gynigir i bobl anabl a phobl nad ydynt yn anabl. Am fwy o fanylion ewch i Hyderus o ran Anabledd.