Information Governance Manager
The closing date is 08 April 2026
King's College Hospital is looking for two full-time (2 x WTE 1.00) Information Governance Managers to support the delivery of the Trust’s Information Governance (IG) work programme.
(Please note that this is an office‑based position.)
Main duties of the job
1. Act as a professional manager, ensuring the effective implementation of policies and procedures in line with established guidance.
2. Operate within defined frameworks to provide operational support for Information Governance processes and compliance activities.
3. Bring substantial knowledge in managing all aspects of Information Governance, ensuring a coordinated approach across the Trust and partner organisations in accordance with statutory and local regulations. Provide advice and guidance to managers and staff on Information Governance matters and liaise with stakeholders and external bodies as required.
4. Work collaboratively to contribute to the development, maintenance and delivery of the IG work programme, which includes:
* Data Security and Protection Toolkit
* Data Protection
* UK GDPR
* Common Law Duty of Confidentiality
* Records Management
* Data Security
* Information Sharing
* Freedom of Information
About us
The Trust provides a full range of local and specialist services across its five sites. The trust‑wide strategy of Strong Roots, Global Reach is our Vision to be BOLD, Brilliant people, Outstanding care, Leaders in Research, Innovation and Education, Diversity, Equality and Inclusion at the heart of everything we do. By being person‑centred, digitally‑enabled, and focused on sustainability, we aim to take Team King's to another level.
We are at a pivotal point in our history and we require individuals who are ready to join a highly professional team and make a real, lasting difference to our patients and our people.
King’s is committed to delivering Sustainable Healthcare for All via our Green Plan. In line with national Greener NHS ambitions, we have set net zero carbon targets of 2040 for our NHS Carbon Footprint and 2045 for our NHS Carbon Footprint Plus. Everyone’s contribution is required in order to meet the goals set out in our Green Plan and we encourage all staff to work responsibly, minimising their contributions to the Trust’s carbon emissions, waste and pollution wherever possible.
Job responsibilities
1. Provide Information Governance advice and support to staff across the organisation.
2. Assist the Information Governance senior management team with operational and strategic priorities.
3. Offer Information Governance perspectives on emerging cyber threats.
4. Review and help maintain key documentation, including privacy notices, Record of Processing Activities, and Information Asset Register.
5. Support and train Information Asset Owners to create and maintain an inventory of data and information assets in line with relevant legislation.
6. Advise and, where necessary, provide practical support for completing Data Protection Impact Assessments, ensuring accurate records for regulatory compliance.
7. Champion a positive Information Governance culture, promoting the principle that Information Governance is everyone’s responsibility.
8. Use the Data Security and Protection Toolkit to assure that information assets are secure and personal data is handled correctly.
9. Contribute to the development of organisational policies, standards, and guidelines for methods and tools.
10. Identify stakeholder communication needs and translate engagement strategies into actionable activities and deliverables.
11. Apply risk assessment and risk management principles to Information Governance decision‑making.
12. Assess legal and best practice issues, promoting awareness of confidentiality and privacy laws.
13. Support the creation of performance measures to monitor Information Governance priorities effectively.
14. Assist in developing and monitoring organisational policies and processes related to Information Governance.
15. Track data security and protection trends, proactively assessing their impact on business strategies, benefits, and risks.
16. Evaluate risks to data confidentiality, integrity and availability, supporting reviews of security controls and risk assessments, including post‑breach analysis.
17. Consult and collaborate on policy development, ensuring Trust policies, procedures, privacy standards and guidelines align with recognised Data Protection practices.
18. Consider risks associated with processing operations, considering their nature, context and purpose.
19. Identify and manage risks related to personal data breaches or cyber incidents, activating agreed procedures, coordinating with third parties and ensuring statutory timelines are met. Notify the Information Commissioners Office when legally required.
20. Contribute to formal reports for management on the effectiveness of controls and compliance with standards, regulations and legislation.
21. Adapt responses to changing circumstances, new information or evolving business requirements.
22. Direct others to complete specified tasks within defined timescales.
23. Align actions with Trust objectives and strategies, keeping the broader strategic context in mind.
24. Understand organisational hierarchy and culture, as well as supplier and partner structures, to identify decision‑makers and influencers.
25. Engage stakeholders with confidence and professionalism, influencing and persuading effectively even without formal authority.
26. Make timely decisions, considering priorities, constraints, risks and available resources.
27. Build relationships and maintain an open culture, communicating effectively across diverse backgrounds and adapting style to suit different audiences.
28. Monitor progress against targets, addressing issues promptly and escalating where necessary.
Person Specification
* Formal training qualification in IG (e.g. Foundation/Practitioner Certificate in Data Protection/GDPR) or experience working at a senior level in IG or a related area.
* Evidence of planning and delivering programmes and projects.
* Experience of developing and delivering IG training programmes.
* Experience presenting complex concepts (such as specialist IG advice) to internal and/or external stakeholders at all levels.
* Teamworking skills: evidence of collaborating with colleagues.
* Experience identifying, mitigating and managing information risks.
* Evidence of navigating organisational change, viewing it as an opportunity to learn and develop proactively.
Disclosure and Barring Service Check
This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions.
Address
King’s College Hospital NHS Foundation Trust
Salary
£56,276 to £63,176 a year per annum inc HCA’s
Contract
Permanent
Working pattern
Full‑time
Reference number
213-CORP-7815684-A
Job locations
King's College Hospital NHS Foundation Trust
#J-18808-Ljbffr