NHS
Senior Data Security & Privacy Manager
This job is now closed
Job Description
- Req#: M0048-25-0299?language=en&page=152&sort=publicationDateDesc
- Reporting to the Head of DSPR, operationally manage the Information Security and Data Privacy functions.
- Support the delivery of the DSPR Programme, including BAU activity to ensure Security and Privacy operate as enablers, ensuring compliance with regulatory and statutory legislation.
- Be a point of contact for specialist knowledge in Information Security and Data Protection, , providing expert guidance to the organisation and wider stakeholders.
- Work across NHSBT to lead on the design and implementation of our Data Privacy Framework
- Lead on the design, development of security supplier assurance framework to ensure full assurance across our supplier base.
- Lead on the development, policies, procedures and guidelines to embed Security and Privacy by
- Design across NHSBT Deliver specialist training and awareness activities in line with legislation across NHSBT
- Lead on investigation on security incidents, escalating to the Head of DSPR and DPO as appropriate.
- Lead on design and articulation of compliance indicators
- Represent Data Security and Privacy as required at key NHSBT committees and boards
- Lead on improvement areas as part of the wider strategic agenda.
- Line Management responsibility for DSPR
- Deputise for the Head of DSPR
- This role offers a hybrid working option, but you will be assigned a base location at one of NHSBTs main centres, which will be confirmed after the final interview outcome.
- 27 days annual leave (pro rata for part-time) plus Bank Holidays, increasing to 29 days after 5 years service and to 33 days after 10 years.
- NHS pension scheme. The NHS Pension Scheme is a defined benefit scheme (not dependent on investment returns) Further details and outline of benefits can be found at: www.nhsbsa.nhs.uk/pensions
- Weve fostered a culture of continuous learning where colleagues are well-led, engaged, and encouraged to grow. We support you in reaching your full potential, both in your current role and future career. Our Thrive program embodies our commitment to learning and development, offering a wide range of activities to support your personal and professional growth. Its open to everyone at NHSBT, ensuring you have the resources to succeed and shine in your role.
- This role offers a hybrid working option, but you will be assigned a base location at one of NHSBTs main centres, which will be confirmed after the final interview outcome.
- 27 days annual leave (pro rata for part-time) plus Bank Holidays, increasing to 29 days after 5 years service and to 33 days after 10 years.
- NHS pension scheme. The NHS Pension Scheme is a defined benefit scheme (not dependent on investment returns) Further details and outline of benefits can be found at: www.nhsbsa.nhs.uk/pensions
- Weve fostered a culture of continuous learning where colleagues are well-led, engaged, and encouraged to grow. We support you in reaching your full potential, both in your current role and future career. Our Thrive program embodies our commitment to learning and development, offering a wide range of activities to support your personal and professional growth. Its open to everyone at NHSBT, ensuring you have the resources to succeed and shine in your role.
- Accredited professional qualification at masters level or clear equivalent experience in one or more of the following areas to Masters level:
- Data Protection
- Information Risk Management
- Information Governance Practitioner
- General Data Protection Regulation
- GDPR/DPO awareness
- Demonstrates commitment to own continued professional development (CPD)
- Up to date knowledge of applicable legislation and relevant best practice within the public sector.
- Evidence of knowledge of successful change management processes.
- Experience in use of Data Privacy related systems provided by NHS Digital including DSP Toolkit and Data Privacy training Materials
- Previous contribution to successful governance in a clinical organisation.
- Previous experience in an IG/Data Privacy role.
- Experience of regulation through the ICO and/or NHS Digital
- Experience in updating refinement and execution IG/Data Privacy processes and procedures.
- Accredited professional qualification at masters level or clear equivalent experience in one or more of the following areas to Masters level:
- Data Protection
- Information Risk Management
- Information Governance Practitioner
- General Data Protection Regulation
- GDPR/DPO awareness
- Demonstrates commitment to own continued professional development (CPD)
- Up to date knowledge of applicable legislation and relevant best practice within the public sector.
- Evidence of knowledge of successful change management processes.
- Experience in use of Data Privacy related systems provided by NHS Digital including DSP Toolkit and Data Privacy training Materials
- Previous contribution to successful governance in a clinical organisation.
- Previous experience in an IG/Data Privacy role.
- Experience of regulation through the ICO and/or NHS Digital
- Experience in updating refinement and execution IG/Data Privacy processes and procedures.
Job summary
Are you ready to make a meaningful management impact in the world of Data Security and Privacy? NHSBT has the vision of Enabling a world where every patient receives the donation they need. This role will play a crucial part in achieving this vision by working within the Data Security, Privacy and Records Management (DSPR) function to manage the Data Security and Privacy teams ensuring that all NHSBT services, systems, and projects are secure and enable privacy by design.
In this exciting new role, you'll be at the forefront, reporting directly into the Head of DSPR and managing our Data Security and Privacy teams you will ensure that our data security and privacy practices align with regulatory requirements and industry standards. If you thrive in a high energy environment and are deeply committed to safeguarding people, assets, and our organisational reputation, and have people, management, technical skills, and data security and privacy expertise, we want you to be part of our close-knit team.
Your journey with us will involve managing, enhancing, and expanding our data security and privacy capabilities. This is a rewarding role in an organisation dedicated to saving and improving lives. Join us, and let's shape the future of Data Security and Privacy together at NHS Blood and Transplant.
This role offers a hybrid working arrangement. You will be assigned a base location at one of NHSBTs main centres subject to confirmation.
Main duties of the job
In this role you will play a key role in the Data Security, Privacy and Records Management (DSPR) team led by the Head of DSPR supporting all areas of the organisation.Your responsibilities will include:
About us
It takes all types of people to deliver the kind of service that saves and improves lives. At NHS Blood and Transplant, youll join a team of more than 6,000 people who are making a genuine difference to communities, families, friends, relatives and more across the UK. We play a unique and special role in the NHS by helping people do something extraordinary- donate blood, blood products, organs, tissues, or stem cells to save someone in need.
Our three core values are what set us apart. They guide and inspire everything we do.
By being caring, expertly meeting the needs of our patients and our people, and accepting nothing less than the best quality, we can do extraordinary work and help our people to do something extraordinary in their career, too. Three small words, one big difference - Caring, Expert and Quality. Together we'll save and improve more lives than ever.
You will join us on our journey to create an inclusive workplace and aim to reflect the diverse communities we work with, and we positively encourage applications from all sectors of the community.
Details
Date posted
23 May 2025
Pay scheme
Agenda for change
Band
Band 8a
Salary
£53,755 to £60,504 a year
Contract
Permanent
Working pattern
Full-time
Reference number
006525
Job locations
NHSBT
Liverpool Speke Blood Centre, 14 Estuary Banks, The Estuary Commerce Park, Speke
Liverpool
United Kingdom
L24 8RB
NHSBT
Bristol Filton, 500 North Bristol Park, Northway, Filton
Bristol
United Kingdom
BS34 7QH
NHSBT Colindale Blood Centre
Charcot Road, Colindale
London
NW9 5BG
NHSBT
Birmingham Blood Centre, Vincent Drive, Edgbaston
Birmingham
B15 2SG
NHSBT
Barnsley Blood Centre, Capitol Way, Dodworth
Barnsley
S75 3FG
NHSBT, Tooting Blood Centre
75 Cranmer Terrace, Tooting
London
SW17 0RB
NHSBT, Tooting Blood Centre
75 Cranmer Terrace, Tooting
London
SW17 0RB
Job descriptionJob description
Job responsibilities
Required to travel and spend time away from base, which will involve working irregular hours and overnight stays when required.
What we offer:
Please view the attached recruitment profile which is a summary of the detailed Job Description and Person Specification for the full personal attributes we require for the role. You will need to demonstrate these throughout the recruitment process.
Job responsibilities
Required to travel and spend time away from base, which will involve working irregular hours and overnight stays when required.
What we offer:
Please view the attached recruitment profile which is a summary of the detailed Job Description and Person Specification for the full personal attributes we require for the role. You will need to demonstrate these throughout the recruitment process.
Person SpecificationPerson Specification
Qualifications
Essential
Experience
Essential
Qualifications
Essential
Experience
Essential
Employer details
Employer name
NHS Blood and Transplant
Address
NHSBT
Liverpool Speke Blood Centre, 14 Estuary Banks, The Estuary Commerce Park, Speke
Liverpool
United Kingdom
L24 8RB
Employer's website
Employer details
Employer name
NHS Blood and Transplant
Address
NHSBT
Liverpool Speke Blood Centre, 14 Estuary Banks, The Estuary Commerce Park, Speke
Liverpool
United Kingdom
L24 8RB
Employer's website
About the company
National Health Service (NHS) is the umbrella term for the publicly-funded healthcare systems of the United Kingdom (UK). The founding principles were that services should be comprehensive, universal and free at the point of delivery—a health service based on clinical need, not ability to pay. Each service provides a comprehensive range of health services, free at the point of use for people ordinarily resident in the United Kingdom apart from dental treatment and optical care.
Notice
Talentify is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status.
Talentify provides reasonable accommodations to qualified applicants with disabilities, including disabled veterans. Request assistance at accessibility@talentify.io or 407-000-0000.
Federal law requires every new hire to complete Form I-9 and present proof of identity and U.S. work eligibility.
An Automated Employment Decision Tool (AEDT) will score your job-related skills and responses. Bias-audit & data-use details: www.talentify.io/bias-audit-report. NYC applicants may request an alternative process or accommodation at aedt@talentify.io or 407-000-0000.