Sue Hill Recruitment are pleased to be working in partnership with Childrens Hearings Scotland in their recruitment for a hybrid working Information Governance Officer. Benefits: Auto-enrolment into Lothian Pension Scheme with generous employer contribution (25% in 23-24). Hybrid/Remote Enhanced sickness absence benefit, dependent on length of service up to a maximum of 26 weeks full pay and 26 weeks half pay Full list of benefits available on request Please note that You may be required to travel across Scotland (hybrid) and work on occasion outside CHS normal working hours to meet the requirements of the job As Information Governance & Data Protection Officer, you will take an operational lead in advising and assisting CHS colleagues and community members in achieving best practice in information governance and data protection, as well as supporting the organisation in meeting its statutory IG obligations, particularly those outlined in the GDPR, DPA, FOISA, and PRSA by acting as Data Protection Officer. You will enhance their existing processes and polices ensuring compliance and best practice is applied across the organisation.You will have the opportunity to shape the way we approach records management and apply data protection principles across all their projects and process improvement initiatives. Key Responsibilities The Information Governance officer and DPO will Oversee and ensure ongoing compliance with information governance, records and data protection legislation, providing on-going evidence of compliance with the statutory requirements as set out in the PRSA and CHS Records Management Plan. Lead on and support CHS staff and Community to carry out Data Protection Impact Assessments, offering advice and proactive solutions to queries. The InformationGovernance and DPO will Play a key role in the corporate governance of CHS by ensuring that all projects, including digital development, have data protection by design and default built in. Manage information security incident resolution including recording, investigating and reporting of information security incidents and identifying vulnerabilities in our systems and practices. Draft responses to requests for information and leading on responding to requests submitted under Freedom of Information (Scotland) Act, 2002 and Environmental Information (Scotland) Regulations 2004. The Information Governance Officer will be Managing requests submitted under Data Protection legislation, such as Subject Access Requests. Manage statutory reporting to regulators, principally the Information Commissioners Office and the Scottish Information Commissioner. The Information Governance and DPO will w ork with colleagues to ensure a risk-based approach to the application of data protection principles across all areas of the business and lead on auditing CHSs compliance with IG policies and practice.