Information Governance Officer

Application deadline date has been passed for this Job.
This job has been Expired
Security Jobs Today
  • Post Date: 10/01/2024
  • Applications 0
  • Views 23
Job Overview




Job title: Information Governance Officer

Job description: Company Description

  • Contract Type: Permanent 37.5 Hours Per Week
  • Salary: Circa £28,000 per annum
  • Location: Roebuck Lane, Smethwick B66 1BY
  • Days of Work: Monday – Friday

DPD UK is a member of Geopost who are a market leader in parcel delivery and e-commerce solutions, providing a broad range of delivery and innovative services for customers worldwide. DPD UK has a turnover of over £2 billion and our aim is to be the most sustainable delivery company in the UK. At DPD UK we also aim to deliver the best service, use the best technology and recruit and retain the best people in the industry.

DPD is a Valuable 500 company and a Disability Confident Employer.

Job Description

The role of Information Governance Officer (internally known as Data Protection Analyst) is to support the DPO and the Data Protection Team in the Information Security & Privacy work programme to ensure compliance with the requirements of DPD’s Information Security & Privacy Strategy, the data protection legislation, ISO27001 and ISO27701 accreditations.

Key Relationships:

  • Reports directly to the DPO
  • Liaises at all levels and departments throughout the organisation from the CEO, Directors, DPD staff, 3rd party suppliers, the Information Commissioner’s Office (ICO), DPD Group, Police and any other internal or external stakeholders in relation to data protection matters.

Key Tasks/Areas of Responsibility

  • To coordinate and maintain an accurate and up to date Record of Processing Activities (ROPA) and the DPD Retention Schedule.
  • To assist, support, coordinate and monitor a programme of induction, annual and refresher, information security and data protection training as well as regular communications for all internal and where necessary external stakeholders.
  • To assist, support, coordinate and monitor information security and data protection training programmes for specialised roles or functions with key data protection responsibilities.
  • To assist with reviewing, publishing, updating and monitoring DPD’s Privacy Notices to satisfy data processing requirements for all data subjects.
  • To assist, support and maintain a programme of privacy by design & default activities including data protection impact assessments (DPIAs), due diligence checks, appropriate data processing/sharing agreements and relevant safeguard mechanisms for international transfers where applicable.
  • To create reports for any associated data protection risks and work with applicable stakeholders internally and externally to ensure that actions are in place to mitigate them.
  • To be responsible for monitoring and progressing emails within the Data Protection Officer mailbox.
  • To provide advice and assistance to all key internal and external stakeholders in relation to any data protection related matter.
  • To be responsible for supporting, coordinating, progressing and monitoring activities related to an identified data breach incident, including preparation of reports, notification to the DPO, Senior Management, ICO and affected data subjects including support in the progression of remedial actions, formal review and closure.
  • To support and assist with regular reviews of DPD’s Information Security & Privacy policies, procedures and other formal documents which contain requirements for compliance with the data protection legislation and also ISO27001 and ISO27701.
  • To support and assist with regular reviews of DPD’s Data Protection Accountability Tracker and IT Security & Data Protection Governance Catalogue.
  • Support and contribute to continuously improve DPDs Information Security & Privacy Strategy across the organisation.
  • Assist the DPO and Data Protection Team with internal and external data protection audits including contributing to the maintenance of our ISO27001 and ISO27701 accreditation.
  • To assist DPD’s DPIA Leads and key stakeholders with ensuring that the supply chain (including business partners and third-party providers) are fully compliant with the data protection legislation, by means of DPIAs, regular reviews, on-site audits and performance evaluations.
  • To be the communication point between DPD and data subjects, specifically for those looking to exercise one or more of their rights under the data protection legislation. To ensure that all such requests are logged, progressed and completed within the timeframes specified by the data protection legislation.
  • To create regular, accurate reports to the DPO on all matters relating to data protection.
  • To provide updates in the form of KPIs and other agreed metrics from the activities that are related to the fulfillment of the role.
  • Any other duties as requested


Key Skills/Experience

  • Strong and professional knowledge of data protection legislation (Data Protection Act 2018, UK GDPR, PECR, EU GDPR and any other related data protection laws, national standards and guidance), experience of ISO27001 and ISO27701 (beneficial but not mandatory).
  • A professional, pragmatic and authoritative approach to support and assist DPD develop and implement the activities and controls needed to ensure information security and data protection legislation compliance, with an ability to clearly communicate the rationale and justification for each proposal.
  • Able to communicate effectively at all levels both in writing and orally: including the delivery of engaging an effective data protection training to all levels of personnel and contractors.
  • To have, maintain and develop detailed and expert knowledge of current data protection legislation and interpret it to internal and external stakeholders when providing advice and assistance.
  • To have previous experience of supporting the delivery of a successful data protection programme.
  • To have and be able to maintain the required levels of security clearance, such that the post holder has the required levels of access to DPD systems and data repositories in order to ensure that they can undertake the duties required by the role.
  • To have, and maintain, detailed knowledge of information security and data protection legislation best practice and risk management, such that (in conjunction with DPD Information Security Manager) security controls are selected and implemented to support data protection legislation compliance.
  • Experience working in a dedicated data protection role with prior experience in advising on data protection Issues across all areas of an organisation.
  • Contributes to new projects taken on; project management, support process design and implementation, supplier management for Information Security related work, including ‘Privacy by Design and Default and Data Protection.
  • Relevant professional qualification preferred (IAPP CIPP/E, CIPM, ISEB – Data Protection)

Additional Information

About our benefits

Alongside an excellent basic salary, we recognise that our people are at the heart of our business, without them we wouldn’t be able to deliver our award-winning service to all our customers.

  • Vitality At Work
  • Holiday trading
  • Enhanced maternity and paternity package
  • Free life assurance of 4 x salary on joining the pension scheme
  • Free onsite parking for all employees
  • Health Kiosks visiting every location
  • Discounted shopping from 100’s of retailers including up to 5% off your weekly supermarket shop
  • Milestone Days off to celebrate with your family and friends
  • Free eye tests and support with the cost of glasses

Joining DPD can lead to not just a stable job but also a career. DPD prides itself on recognising and developing talent alongside a desire to promote from within. As a continually growing and evolving organisation, we are proud to offer a great number of development and promotion opportunities.

If you identify with our aims and values and can help us deliver our customers’ promises, then this is the job for you! Apply today

Expected salary: £28000 per year

Location: Smethwick, West Midlands

Job date: Sat, 16 Dec 2023 23:44:50 GMT

Apply for the job now!

Job Detail
  • Offered Salary£20,000 - £30,000
  • Career LevelOfficer
  • GenderBoth
Shortlist Never pay anyone for job application test or interview.