The post holder will play a key role in the Trust's provision of a robust and responsive Information Governance Service, which is in line with the latest legislation, national guidance, and Trust Policy.
The post holder will support the information governance manager to ensure the smooth running of the service, information governance meetings and take the lead on managing the completion of the annual cyber assessment framework submission.
Have the freedom to act on own initiative and organise own workload without supervision working to tight and often changing timescales.
Facilitation, including evidence gathering, of completion and submission of governance submissions such as the Data Security and Protection Toolkit (DSPT).
Production of staff information governance training reports and feed back to divisions regarding outstanding training.
Provide support and assistance to areas completing information governance related training.
Provide face to face information governance training and manage related administrative processes.
Provide advice and guidance to staff relating to information governance.
Ensure the smooth running of the information governance committee together with administrative support.
Curation of the ICT risk register.
St George's, Epsom and St Helier University Hospitals and Health Group cares for a population of four million people in South West London and North East Surrey. Our sites include St George's Hospital, one of 11 major trauma centres in the UK and the largest healthcare provider and major teaching hospital in the area; St Helier Hospital, home to the South West Thames Renal and Transplantation Unit and Queen Mary's Hospital for Children; and Epsom Hospital, home to the South West London Elective Orthopaedic Centre (SWLEOC).
After years of collaboration, our two Trusts became a hospitals group in 2021. While remaining as two separate Trusts, being a hospitals group will help us to collaborate more closely on research, and the development, education, and training of our 17,000-strong workforce.
Lead the coordination and evidence gathering of the DSPT toolkit.
To work on own initiative and organise own workload without supervision.
To assist the information governance manager with internal and external audits, for example of the DSPT submission and corrective actions
To assist the information governance manager with managing and monitoring of the ongoing completion and maintenance of information flow mapping and Records of Processing by departments for internal and external information flows and providing advice where necessary.
To coordinate and monitor the Trust's Information Governance reporting against national standards.
To assist the information governance manager with the development of training material, liaising with the corporate training department when required.
Contribute to the development of performance and governance strategies and the development and implementation of improvement programmes.
To work with the information governance manager to advise on the production of Data privacy impact Assessments (DPIAs) / sharing agreements and associated documentation.
Deliver face to face information governance training.
Develop training materials and liaise with the Corporate Training department.
Monitor training compliance and produce divisional reports on completion rates.
To work with the information governance manager to assist investigating officers with the investigation of IG related incidents. This may rarely include exposure to unpleasant conditions for example searching waste for confidential information discarded inappropriately.
To assist the information governance manager with the monitor and reporting of incidents to the regulator (Information commissioner).
To undertake risk assessments collaborating with the ICT management team, risk management team and information governance manager as required.
To provide advice and guidance regarding the completion of information governance processes such as the completion of Data Privacy Impact Assessments and records of processing.
Curate the ICT risk register.
To use a range of computer software and systems to meet the objectives of the information governance team.
Frequent concentration required to read and digest documentation, to update computer systems and to manage an unpredictable work pattern with interruptions from service users.
To be able to manage exposure to emotional and or distressing situations for example where an incident relates to safeguarding.
This advert closes on Friday 6 Mar 2026