Senior DSPT-CAF Compliance Advisor

Birmingham, Leeds, Liverpool, London- Canary Wharf (Core HQs)

Job Summary

We pride ourselves as being an employer of choice, where Everyone Matters promoting equality of opportunity to actively encourage applications from everyone, including groups currently underrepresented in our workforce. UKHSA ethos is to be an inclusive organisation for all our staff and stakeholders. To create, nurture and sustain an inclusive culture, where differences drive innovative solutions to meet the needs of our workforce and wider communities. We do this through celebrating and protecting differences by removing barriers and promoting equity and equality of opportunity for all.

Job Description

The DSPT-CAF (Data Security and Protection Toolkit – Cyber Assessment Framework) is the latest self-assessment tool that allows organisations to measure their performance against UK Government data security standards. All organisations that have access to NHS patient data and systems must use this toolkit to provide assurance that they are practising good data security and that personal information is handled correctly.

We are recruiting for a Senior DSPT-CAF Compliance Advisor to join our Information Management and Privacy Team. Reporting to the Assistant Head of DSPT-CAF Compliance, the post holder will work across UKHSA to ensure that our operations are conducted in accordance with the latest DSPT-CAF requirements. DSPT-CAF Compliance will enable UKHSA to deliver its mission and objectives, continuously improve its operations, and will help protect the organisation, its employees and the UK Government from information risk. We aspire to build a positive compliance culture which makes it easy for everyone to do the right thing.

Compliance Review : building personal expertise in the relevant regulatory and compliance obligations of the DSPT-CAF. Identifying gaps, shortfalls and other challenges for escalation to the Assistant Head DSPT-CAF Compliance.

Controls / Risk Mitigation: evaluating the effectiveness of UKHSA policies and controls in support of the DSPT-CAF. Providing meaningful, timely advice on how to improve these controls and mitigate DSPT-CAF compliance risks.

Communication: providing clear analysis and advice in written and verbal form that persuades colleagues, influences management and changes attitudes on compliance across a wide range of stakeholders and internal customers.

Work and Team Management: as part of the DSPT-CAF team, balancing multiple competing priorities, working with line management to identify new areas of focus and projects to progress.

Flexibility : being responsive to the needs of the Data and Cyber Security Directorate, Chief Data Officer Group and UKHSA. This may involve additional compliance and assurance related tasks as directed.

Please note, knowledge of the DSPT-CAF tool, or previous versions of the DSPT would be a distinct advantage but is not essential. UKHSA is committed to fostering an environment that supports Diversity and Inclusion and all employees will be expected to contribute through their objectives to a positive working environment.

The DSPT-CAF (Data Security and Protection Toolkit – Cyber Assessment Framework) is the latest self-assessment tool that allows organisations to measure their performance against UK Government data security standards. All organisations that have access to NHS patient data and systems must use this toolkit to provide assurance that they are practising good data security and that personal information is handled correctly.

We are recruiting for a Senior DSPT-CAF Compliance Advisor to join our Information Management and Privacy Team. Reporting to the Assistant Head of DSPT-CAF Compliance, the post holder will work across UKHSA to ensure that our operations are conducted in accordance with the latest DSPT-CAF requirements. DSPT-CAF Compliance will enable UKHSA to deliver its mission and objectives, continuously improve its operations, and will help protect the organisation, its employees and the UK Government from information risk. We aspire to build a positive compliance culture which makes it easy for everyone to do the right thing.

Compliance Review : building personal expertise in the relevant regulatory and compliance obligations of the DSPT-CAF. Identifying gaps, shortfalls and other challenges for escalation to the Assistant Head DSPT-CAF Compliance.

Controls / Risk Mitigation: evaluating the effectiveness of UKHSA policies and controls in support of the DSPT-CAF. Providing meaningful, timely advice on how to improve these controls and mitigate DSPT-CAF compliance risks.

Communication: providing clear analysis and advice in written and verbal form that persuades colleagues, influences management and changes attitudes on compliance across a wide range of stakeholders and internal customers.

Work and Team Management: as part of the DSPT-CAF team, balancing multiple competing priorities, working with line management to identify new areas of focus and projects to progress.

Flexibility : being responsive to the needs of the Data and Cyber Security Directorate, Chief Data Officer Group and UKHSA. This may involve additional compliance and assurance related tasks as directed.

Please note, knowledge of the DSPT-CAF tool, or previous versions of the DSPT would be a distinct advantage but is not essential. UKHSA is committed to fostering an environment that supports Diversity and Inclusion and all employees will be expected to contribute through their objectives to a positive working environment.

Person specification

Essential Criteria

• Compliance or assurance experience, including supporting reviews/investigations.
• Good knowledge and understanding of data protection law, including GDPR and the Data Protection Act.
• Established written and verbal communication skills, including the ability to influence attitudes on compliance and persuade others to do the right thing.
• Stakeholder engagement skills, including the ability to influence and adapt communication style to suit the audience.
• Good attention to detail and analytical skills.
• Ability to deliver at pace, work independently using initiative when appropriate and effectively manage multiple competing priorities.
• IT skills and competence in core Microsoft apps including Word, Excel and PowerPoint.
• Experience of working well with others, operating with integrity and openness, valuing diversity, and respecting the contribution of others.

Desirable Criteria

• Experience using the DSPT-CAF toolkit or its predecessors.
• Adaptability, flexibility and ability to cope with uncertainty and change.
• Excellent organisation and planning skills.
• Experience/knowledge of information security.
• Willingness to work towards a relevant qualification or professional membership e.g. of the International Association of Privacy Professionals would be desirable.

Alongside your salary of £40,661, UK Health Security Agency contributes £11,779 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides.

Learning and development tailored to your role

An environment with flexible working options

A culture encouraging inclusion and diversity

A Civil Service pension with an employer contribution of 28.97%

Selection process details

This vacancy is using Success Profiles and will assess your Behaviours, Experience and Technical skills.

Stage 1: Application & Sift

Success profiles Required

You will be required to complete an application form. You will be assessed on the listed 8 essential criteria, and this will be in the form of a: Application form (‘Employer/ Activity history’ section on the application) 750 word supporting statement. This should outline how your skills, experience and knowledge provide evidence of your suitability for the role, with reference to the essential criteria. The Application form and supporting statement will be marked together.

Longlisting: In the event of a large number of applications we will longlist into 3 piles of: Meets all essential criteria Meets some essential criteria Meets no essential criteria The pile 'meets all essential criteria' will proceed to shortlisting.

Shortlisting: In the event of a large number of applications we will shortlist on the lead criteria of Compliance or assurance experience, including supporting reviews/investigations. Good knowledge and understanding of data protection law, including GDPR and the Data Protection Act. Desirable criteria may be used in the event of a large number of applications/large amount of successful candidates. If you are successful at this stage, you will progress to interview & assessment. Please do not exceed 750 words. We will not consider any words over and above this number. Feedback will not be provided at this stage.

Stage 2: Interview

Success profiles

You will be invited to a single remote interview. Behaviours, technical skills and experience will be tested at interview.

The Behaviours Tested During The Interview Stage Will Be

• Changing and Improving (Lead behaviour)
• Communicating and Influencing
• Working Together
• Managing a Quality Service

Interviews dates to be confirmed. Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.

Selection Process

Please note you will not be able to upload your CV. You must complete the application form in as much detail as possible. Please do not email us your CV.

Eligibility Criteria

External- Open to all external applicants (anyone) from outside the Civil Service (including by definition internal applicants).

Location

This role is being offered as hybrid working based at any of our core HQs. We offer great flexible working opportunities at UKHSA and operate using a hybrid working model where business needs allow. This provides us with greater flexibility about how and where we work, to get the best from our workforce. As a hybrid worker, you will be expected to spend a minimum of 60% of your contractual working hours (approximately 3 days a week pro rata, averaged over a month) working at one of UKHSA's core HQ’s (Birmingham, Leeds, Liverpool and London) Our core HQ offices are modern and newly refurbished with excellent city centre transport link and benefit from benefit from co-location with other government departments such as the Department for Health and Social Care (DHSC).

Future location

UKHSA is investing in a new state-of-the-art National Biosecurity Centre in Harlow, Essex, which will eventually bring together teams currently based at Canary Wharf, Colindale and Porton Down. For more details, please see: Huge biosecurity centre investment to boost pandemic protection - GOV.UK The new facilities will start becoming operational in the mid-2030s, with full completion by 2038. Staff will move in phases as facilities become available. If you're appointed to a role currently based at Canary Wharf, Colindale or Porton Down, please note that we'll continue investing in these sites for the next decade. As we get closer to the transition, we'll provide full information about relocation support available to staff.

Security Clearance Level Requirement

Successful candidates must meet the security requirements before they can be appointed. The level of security needed is Basic Personnel Security Standard.

Reasonable Adjustments

The Civil Service is committed to making sure that our selection methods are fair to everyone. To help you during the recruitment process, we will consider any reasonable adjustments that could help you. An adjustment is a change to the recruitment process or an adjustment at work. This is separate to the Disability Confident Scheme. If you need an adjustment to be made at any point during the recruitment process you should contact the recruitment team in confidence as soon as possible to discuss your needs. You can find out more information about reasonable adjustments across the Civil Service here: Reasonable Adjustments , Civil Service Careers

International Police check

If you have spent more than 6 months abroad over the last 3 years you may need an International Police Check. This would not necessarily have to be in a single block, and it could be time accrued over that period.

Artificial Intelligence (AI)

Artificial Intelligence can be a useful tool to support your application, however, all examples and statements provided must be truthful, factually accurate and taken directly from your own experience. Where plagiarism has been identified (presenting the ideas and experiences of others, or generated by artificial intelligence, as your own) applications may be withdrawn and internal candidates may be subject to disciplinary action. Please see our candidate guidance for more information on appropriate and inappropriate use.

Link Below

Artificial intelligence and recruitment , Civil Service Careers

Internal Fraud check

If successful for this role as one aspect of pre-employment screening, applicant’s personal details – name, national insurance number and date of birth - will be checked against the Cabinet Office Internal Fraud Hub and anyone included on the database will be refused employment unless they can show exceptional circumstances. Currently this is only for External candidates to the Civil Service.

Careers website

Please visit our careers site for more information UKHSA Hub , Civil Service Careers

Feedback will only be provided if you attend an interview or assessment.

Security

People working with government assets must complete baseline personnel security standard (opens in new window) checks. People working with government assets must complete baseline personnel security standard (opens in new window) checks.

Nationality requirements

This Job Is Broadly Open To The Following Groups

• UK nationals
• nationals of the Republic of Ireland
• nationals of Commonwealth countries who have the right to work in the UK
• nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) (opens in a new window)
• nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS)
• individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020
• Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service

Further information on nationality requirements (opens in a new window)

Working for the Civil Service

The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants. We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window). The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.

The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants. We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window). The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.

Diversity and Inclusion

The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see the Civil Service People Plan (opens in a new window) and the Civil Service Diversity and Inclusion Strategy (opens in a new window). The Civil Service welcomes applications from people who have recently left prison or have an unspent conviction. Read more about prison leaver recruitment (opens in a new window).

Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.

Contact point for applicants

Job Contact Name : Lisa Tweedie

Email : lisa.tweedie@ukhsa.gov.uk

Recruitment team Email : recruitment@ukhsa.gov.uk

Further information

The law requires that selection for appointment to the Civil Service is on merit on the basis of fair and open competition as outlined in the Civil Service Commission's Recruitment Principles. If you feel your application has not been treated in accordance with the Recruitment Principles, and you wish to make a complaint, in the first instance, you should contact UKHSA Public Accountability Unit via email: Complaints@ukhsa.gov.uk If you are not satisfied with the response you receive from the Department, you can contact the Civil Service Commission: Visit the Civil Service Commission website: https://civilservicecommission.independent.gov.uk

http://www.healthjobsuk.com/vacancy/7400408