Data Protection Compliance Specialist Grade VII
This range is provided by Cpl Healthcare. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.
Base Pay Range
Key Working Relationships
The Data Protection Compliance Specialist Grade VII will work closely and collaboratively with:
* Public Health Services Nationally
* Members of the public and Public Health staff who may contact the DPO office or Data Notification Service in relation to the May 2021 Cyber Attack and other data protection queries
* Other government departments and organisations who are working with the HSE on programmes of work who seek data protection advice
Purpose of the Post
The Grade VII Operational Compliance and Improvement will be a key member of the DPO Team leading on assigned programmes, specifically the Data Notification Service which is dealing with responding to those individuals notified as a result of the May 2021 Cyber Attack on the HSE. The role holder will also take an active role in the implementation of Privacy Engine across the HSE and its affiliate organisations, whilst constantly seeking quality improvement across all Public Health National Data Protection Office capabilities including but not limited to RoPA, DSARs and DPIA.
Principal Duties and Responsibilities
The position of Grade VII encompasses both managerial and administrative responsibilities which include the following:
Oversight/Monitoring and Assurance
* Supporting and coordinating the full life cycle of Data Subject Access Requests (DSARS) for the Data Notification Service
* Work towards full compliance in line with HSE data protection policy and GDPR legislation in the management of all DSAR requests related to the May 2021 Cyber Attack
* Understanding, adhering to, and following all standard operating procedure relating to Data Notification Service
* Managing complex data protection queries and complaints related to the May 2021 Cyber Attack
* Produce reports and data updates on the work related to the Data Notification Service
* Support the delivery of Privacy Engine in the HSE. This service supports the management of SARs, Data Breach reporting as well as a repository for DPIAs, DSA and RoPAs
* Assist the DPO in the management and delivery of the Privacy Engine across the HSE including but not limited to; embedding and improving the processes and business unit understanding and engagement of Records of Processing Activities (RoPA), Data Privacy Impact Assessments (DPIAs), Data Sharing Agreements (DSAs), Breach Management, Data Subject Rights Requests e.g. SARs and Personal Data Inventory processes.
* Provide SME input to review and challenge Records of Processing Activities completed and submitted by the various HSE organisations functions to ensure they meet appropriate quality guidelines.
* Provide SME input to review and challenge Data Privacy Impact Assessments completed and submitted by the various HSE organisations functions to ensure they meet appropriate quality guidelines.
* Provide SME input to review and challenge Data Sharing Agreements completed and submitted by the various HSE organisations functions to ensure they meet appropriate quality guidelines.
Administration
* Ensure the efficient management and administration of area of responsibility
* Execute assignments in accordance with agreed plans, budgets and deadlines
* Ensure deadlines are met and that service levels are maintained
* Prepare regular reports on the progress of work against the operational plan
* Provide accurate information to management in a timely manner, ensuring that administrative and financial records are readily available
* Inform management of ideas / solutions to maximise effective use of resources / improve service delivery
* Advise, promote and participate in the implementation of innovations in service delivery
* Participate in and lead project working groups, represent the HSE on committees as required
* Build and maintain relationships with key stakeholders to gather support for new initiatives
* Make decisions and solve problems in a timely manner and inform others of decisions that have implications for them, making sure team knows how to action them
* Gather information from a variety of sources to ensure decisions are in line local and national agreements
* Ensure regular two-way communication happens between line management and senior management
* Provide administrative support for meetings and attend as required
* Maximise the use of technology to advance the quality and efficiency of service provision
Human Resources / Supervision of Staff
* Supervise and enable other team members to carry out their responsibilities, ensuring appropriate delegation of responsibility and authority
* Review the conduct and completion of assignments of staff in accordance with the operational plan and expected quality standards
* Keep in touch with workloads of staff members to gauge levels of wellbeing and morale in the team
* Manage the performance of staff, dealing with underperformance in a timely and constructive manner
* Conduct regular staff meetings to keep staff informed and to hear views
* Create and promote a positive working environment among staff members, which contributes to maintaining and enhancing effective working relationships with other teams and disciplines
* Solve problems and ensure decisions are in line with local and national agreements
* Identify and agree training and development needs of team and design plan to meet needs
* Pursue and promote continuous professional development in order to develop leadership and management expertise and professional knowledge
Customer Service
* Promote and maintain a customer focused environment by ensuring service users are treated with dignity and respect
* Seek feedback from service users / colleagues to evaluate service and implement change
* Deal with escalated service user issues and queries as appropriate, providing them with expert knowledge and resolutions in a timely manner
Service Delivery and Service Improvement
* Promote and participate in the implementation and management of change
* Proactively identify inequities / inefficiencies in service administration and implement solutions to improve service delivery, in line with legislation and benchmarking against best practice structures
* Maintain a good understanding of internal and external factors that can affect service delivery including awareness of local and national issues that impact on own area of work
* Embrace change and adapt local work practices accordingly by finding practical ways to make policies work, ensuring team knows how to action changes
* Encourage and support staff through change processes
Frameworks and Policies
* Monitor the implementation of all relevant Data Protection Policy and Guidelines in relation to Privacy Risk.
* Review the effectiveness of relevant privacy risk management frameworks, policies, systems, processes and tools on an annual basis and embedding of these effectively with key stakeholders across the HSE.
* Ensure the above Frameworks and Tools facilitate the timely risk identification, assessment, mitigation, monitoring and reporting of Privacy Risk.
* Ensure that the Privacy Risk priorities are delivered in accordance with Risk Appetite.
* Provide insight into and support resolutions to existing and emerging privacy risks.
* Design and develop the Data Protection Policy, establishing business-wide principles and guidelines designed to mitigate privacy risks.
The above Job Specification is not intended to be a comprehensive list of all duties involved and consequently, the post holder may be required to perform other duties as appropriate to the post which may be assigned to him / her from time to time and to contribute to the development of the post while in office.
Seniority Level
Associate
Employment Type
Contract
Job Function
Information Technology and Other
Industries
Public Health
#J-18808-Ljbffr