Job summary
- Main area
- Information Governance
- Grade
- NHS AfC: Band 7
- Contract
- Permanent
- Hours
- Full time - 37.5 hours per week (Please note this role is an office-based position.)
- Job ref
- 213-CORP-7815684-B
- Employer
- King's College Hospital NHS Foundation Trust
- Employer type
- NHS
- Site
- King's College Hospital NHS Foundation Trust
- Town
- London
- Salary
- £56,276 - £63,176 per annum inc HCA's
- Salary period
- Yearly
- Closing
- 28/06/2026 23:59
Employer heading
Information Governance Manager
NHS AfC: Band 7
King’s College Hospital NHS Foundation Trust is one of the UK’s largest and busiest teaching Trusts with a turnover of c£1.8 billion, 1.5 million patient contacts a year and more than 15,000 staff based across 5 main sites in South East London. The Trust provides a full range of local hospital services across its different sites, and specialist services from King’s College Hospital (KCH) sites at Denmark Hill in Camberwell and at the Princess Royal University Hospital (PRUH) site in the London Borough of Bromley.
We encourage all our staff to have a healthy work/life balance. In doing so, you can apply for flexible working from the beginning of your employment. We offer a range of options which are designed to suit different circumstances and priorities in line with service requirements.
Job overview
King's College Hospital is looking for a full-time Information Governance Manager to support the delivery of the Trust's Information Governance (IG) work programme.
Please note that this is an office-based position, meaning that you will need to work on site at King's College Hospital (SE5 9NY) multiple times per-week.
Additionally, the interviews will be face-to-face. This is non-negotiable and we will not be offering virtual interviews for this position. Previous applicants need not apply.
Main duties of the job
Acting as a professional manager, the postholder ensures the effective implementation of policies and procedures in line with established guidance.
The role operates within defined frameworks to provide operational support for Information Governance processes and compliance activities.
The postholder will bring substantial knowledge in managing all aspects of Information Governance, ensuring a coordinated approach across the Trust and partner organisations in accordance with statutory and local regulations. They will provide advice and guidance to managers and staff on Information Governance matters and liaise with stakeholders and external bodies as required.
Working collaboratively, the postholder will contribute to the development, maintenance, and delivery of the IG work programme, which includes:
· Data Security and Protection Toolkit
· Data Protection
· UK GDPR
· Common Law Duty of Confidentiality
· Records Management
· Data Security
· Information Sharing
· Freedom of Information
Working for our organisation
The Trust provides a full range of local and specialist services across its five sites. The trust-wide strategy of Strong Roots, Global Reach is our Vision to be BOLD, Brilliant people, Outstanding care, Leaders in Research, Innovation and Education, Diversity, Equality and Inclusion at the heart of everything we do. By being person-centred, digitally-enabled, and focused on sustainability, we aim to take Team King’s to another level.
We are at a pivotal point in our history and we require individuals who are ready to join a highly professional team and make a real, lasting difference to our patients and our people.
King’s is committed to delivering Sustainable Healthcare for All via our Green Plan. In line with national Greener NHS ambitions, we have set net zero carbon targets of 2040 for our NHS Carbon Footprint and 2045 for our NHS Carbon Footprint Plus. Everyone’s contribution is required in order to meet the goals set out in our Green Plan and we encourage all staff to work responsibly, minimising their contributions to the Trust’s carbon emissions, waste and pollution wherever possible.
Detailed job description and main responsibilities
1. Provide Information Governance advice and support to staff across the organisation.
2. Assist the Information Governance senior management team with operational and strategic priorities.
3. Offer Information Governance perspectives on emerging cyber threats.
4. Review and help maintain key documentation, including privacy notices, Record of Processing Activities, and Information Asset Register.
5. Support and train Information Asset Owners to create and maintain an inventory of data and information assets in line with relevant legislation.
6. Advise and, where necessary, provide practical support for completing Data Protection Impact Assessments, ensuring accurate records for regulatory compliance.
7. Champion a positive Information Governance culture, promoting the principle that Information Governance is everyone’s responsibility.
8. Use the Data Security and Protection Toolkit to assure that information assets are secure and personal data is handled correctly.
9. Contribute to the development of organisational policies, standards, and guidelines for methods and tools.
10. Identify stakeholder communication needs and translate engagement strategies into actionable activities and deliverables.
11. Apply risk assessment and risk management principles to Information Governance decision-making.
12. Assess legal and best practice issues, promoting awareness of confidentiality and privacy laws.
13. Support the creation of performance measures to monitor Information Governance priorities effectively.
14. Assist in developing and monitoring organisational policies and processes related to Information Governance.
15. Track data security and protection trends, proactively assessing their impact on business strategies, benefits, and risks.
16. Evaluate risks to data confidentiality, integrity, and availability, supporting reviews of security controls and risk assessments, including post-breach analysis.
17. Consult and collaborate on policy development, ensuring Trust policies, procedures, privacy standards, and guidelines align with recognised Data Protection practices.
18. Consider risks associated with processing operations, considering their nature, context, and purpose.
19. Identify and manage risks related to personal data breaches or cyber incidents, activating agreed procedures, coordinating with third parties, and ensuring statutory timelines are met. Notify the Information Commissioner’s Office when legally required.
20. Contribute to formal reports for management on the effectiveness of controls and compliance with standards, regulations, and legislation.
21. Adapt responses to changing circumstances, new information, or evolving business requirements.
22. Direct others to complete specified tasks within defined timescales.
23. Align actions with Trust objectives and strategies, keeping the broader strategic context in mind.
24. Understand organisational hierarchy and culture, as well as supplier and partner structures, to identify decision-makers and influencers.
25. Engage stakeholders with confidence and professionalism, influencing and persuading effectively even without formal authority.
26. Make timely decisions, considering priorities, constraints, risks, and available resources.
27. Build relationships and maintain an open culture, communicating effectively across diverse backgrounds and adapting style to suit different audiences.
28. Monitor progress against targets, addressing issues promptly and escalating where necessary.
Person specification
Consolidation of PS
Essential criteria
- Formal training qualification in IG (e.g. Foundation/Practitioner Certificate in Data Protection/GDPR) or experience working at a senior level in IG or a related area.
- Evidence of planning and delivering programmes and projects.
- Experience of developing and delivering IG training programmes.
- Experience presenting complex concepts (such as specialist IG advice) to internal and/or external stakeholders at all levels.
- Teamworking skills: evidence of collaborating with colleagues.
- Experience identifying, mitigating and managing information risks.
- Evidence of navigating organisational change, viewing it as an opportunity to learn and develop proactively.
Employer certification / accreditation badges
Applicant requirements
The postholder will have access to vulnerable people in the course of their normal duties and as such this post is subject to the Rehabilitation of Offenders Act 1974 (Exceptions) Order 1975 (Amendment) (England and Wales) Order 2020 and as such it will be necessary for a submission for Disclosure to be made to the Disclosure and Barring Service to check for any previous criminal convictions.
Documents to download
Further details / informal visits contact
- Name
- Ursula Evans
- Job title
- Information Governance Service Manager
- Email address
- [email protected]
List jobs with King's College Hospital NHS Foundation Trust in Administrative Services or all sectors