About the Company

Intensive Care National Audit & Research Centre (ICNARC) is an independent, nationally and internationally respected, scientific, not-for-profit organisation (c65 staff in total), that uses accurate data to help improve the quality of critical care through audit, research and education.

About the Role

This is an exciting opportunity to make a significant contribution to the success of ICNARC. Reporting to the Chief Operating Officer and working closely with the Audit, Research and Statistics teams, this standalone role is responsible for ensuring that ICNARC data processing activities are compliant with the General Data Protection Regulation (GDPR) and other relevant regulations.

Key Responsibilities

• Operational leadership of activities related to Data Protection, including advising on emerging data protection risks and monitoring organisational compliance.
• Creating and regularly reviewing data-related policies and standards.
• Identifying, reviewing and evaluating existing data management procedures and implementing new procedures to embed GDPR standards.
• Providing advice on Data Protection Impact Assessments (DPIAs) and embedding best practice.
• Providing day-to-day privacy advice and acting as a single point of contact for privacy issues.
• Managing data privacy breaches, identifying root causes and mitigating risks.
• Ensuring queries from data subjects are addressed within legal timeframes.
• Building relationships with internal and external stakeholders, including data regulators and auditors.
• Delivering GDPR and data protection training to staff.
• Reporting to the Information Governance Sub Committee.
• Liaising with other organisations that process data on ICNARC's behalf.
• Managing the DPO inbox and responding to data subject rights requests.

Requirements

• In-depth knowledge of GDPR and UK data protection laws.
• Demonstrated experience in a similar Data Protection Officer role.
• Knowledge of data processing operations and computer security systems.
• Ethical, impartial, and able to report non-compliance.
• Strong technical skills and ability to assess risk.
• Ability to work autonomously and build relationships.
• Desirable: Experience in the health sector, knowledge of NDG data security standards, Section 251 applications, and National Data Opt-Out.

Benefits

• 25 days holiday per year (increasing to 30), plus option to buy/sell up to 5 days.
• Life assurance.
• Flexible working (expectation of at least 2 days per week in the office).
• Interest-free season ticket loan.
• Enhanced pension scheme (up to 8% employer contribution).
• Enhanced sick pay and maternity/adoption pay.
• Employee assistance programme.
• Access to benefits and discounts on Health & Wellbeing, Family, Technology, Exercise & Fitness.
• Support with further academic/professional development.

How to Apply

Please submit an up-to-date CV and cover letter highlighting how your experience aligns with the role, via the 'Apply now' button. For further information visit https://www.icnarc.org/about-us/vacancies/. Interviews will be held on a rolling basis; the advert may close early.