Senior Information Governance Officer (Data Protection)

BSNI are working with Belfast City Council to recruit a Senior Information Governance Officer (Data Protection) – Legal. This role is temporary.

Employment type
Temporary
Number of people required
1
Target start date
20 Apr 2026
Duration
12 Weeks
Hours per week
37

Rate
PAYE: £23.37 per hour

Job location
Donegall Square, Belfast, BT1 5GS, United Kingdom
Work pattern
Working in office to complete training, then 3 days in office, 2 at home working remotely

Main purpose of job

Responsible to the Records Manager, who is the council’s Data Protection Officer, for:

the coordination of the council’s compliance with the Data Protection Act 2018, the General Data Protection Regulation (GDPR) and other access-to-information legislation and associated projects;
effectively managing, in a timely and efficient manner, a process of identifying and responding to all subject access requests received by Belfast City Council;
advising directors and other council officers on all aspects of complying with the relevant data protection legislation;
training and communication to elected members and all council staff on their duties in relation to data protection issues;
Maintaining awareness of and expertise in developments relating to data protection and updating as appropriate the related corporate policies and procedures, and
assisting with the review of new legislation and advising on the potential impact on the organisation’s compliance with data protection and other information governance legislation.

Summary of responsibilities and personal duties

Provide expert advice on the promotion of data protection compliance and best practice in setting and maintaining standards and procedures across the organisation, liaising with colleagues across the council involved in access to information issues.

Draft, review and update guidance for staff on data protection and related matters and communicate all data protection-related information to staff as required.

Draft, review and update public guidance on data protection and related matters, including how the council uses personal data and how to make a subject access request.

Analyse and define training needs in relation to data protection and to design and deliver appropriate, up to date training for all Council staff including temporary assignees and elected members.

Assist in the completion of the council’s Data Protection Registration with the Information Commissioner’s Office.

Assist with the provision of adequate privacy notices on all paper or electronic documents and other methods used to gather personal data by the council.

Assist with the preparation of the council’s responses to all subject access requests for information under the Data Protection Act and, or the GDPR, ensuring that identification is checked, and adequate information obtained from applicants regarding their request.

Provide advice on sensitive, high profile and, or complex data protection issues referred to the team via individual services or directors.

Manage and maintain the corporate personal data register and associated corporate processes.

Provide advice and guidance to staff on the internal and external disclosure and sharing of personal data.

Draft information sharing protocols and agreements and maintain a list of all such protocols in existence.

Provide advice on data controller/processor arrangements that involve personal data and assist with drafting more detailed specifications as required.

Assist with the investigation of breaches of security involving personal data and analyse any types of breaches of the Data Protection Act and, or the GDPR within the organisation, identifying significant trends and put forward recommendations to address issues.

Provide guidance and assist with carrying out Data Protection Impact Assessments on appropriate new, or amended systems, projects and services; assess and mitigate resultant risks and undertake associated registration with the Information Commissioner’s Office.

Conduct data protection compliance audits across the organisation, identifying key issues, trends and risks and assist with the preparation of reports to senior management on each department’s compliance with data protection legislation.
Monitor the implementation of data protection standards, policies and procedures within the organisation and analyse data and prepare reports as necessary.

Assist with the processing of Freedom of Information or Environmental Information Regulations requests and other information governance-related matters as required.
Liaise with the Information Commissioner’s Office, the external regulator for Data Protection, Freedom of Information, and related legislation.

Provide advice and guidance to senior managers across the organisation including Chief Officers on compliance with related information governance legislation which carries significant financial and reputational risk

Identify, analyse, and assess changes to legislation and ensure such changes are reflected in policies and procedures across the organisation.
Represent Belfast City Council at local and regional Information Governance meetings and forums and chair such meetings and forums as required.
Maintain a menu of services and library of electronic resources including procedures, guidance, training materials and other associated forms, templates and  web content.

Coordinate and produce performance and compliance information, statistics and reports for Senior Management in accordance with Council timetables.

Develop and implement a corporate CCTV Policy and associated action plan for the review and registration of assets associated with surveillance.
Deputise for the Records Manager as required.
Motivate and manage any staff, that may be assigned to the post holder, to ensure effective service delivery and to be responsible for reviewing and implementing a proper staff training and development programme.
Participate in all induction and in-service training provided by Belfast City Council and in the induction and support of all newly appointed staff and other human resource management policies and procedures, as appropriate, including, absence management, disciplinary and grievance procedure.
Participate as directed in the Council’s recruitment and selection procedures.
Act in accordance with the council and departmental policies and procedures including customer care, equal opportunities, health and safety, safeguarding and any pertinent legislation.
Undertake the duties in such a way as to enhance and protect the reputation and public profile of the council.
Undertake such other relevant duties as may from time to time be required.
This job description has been written at a time of significant organisational change and it will be subject to review and amendment as the demands of the role and the organisation evolve.  Therefore, the post-holder will be required to be flexible, adaptable and aware that s/he may be asked to perform tasks, duties and responsibilities which are not specifically detailed in the job description but which are commensurate with the role.  The post-holder should also be aware the location of this post in the organisation structure could be subject to change in the future.

Essential criteria

<Applicants must, as at the closing date for receipt of application forms and throughout the selection process, be current Belfast City Council employees or current Belfast City Council agency assignees.>

Qualification and, or experience

Applicants must, as at the closing date for receipt of application forms, either:

have a third level qualification in a relevant subject, or equivalent qualification; and be able to demonstrate on the application form, by providing personal and specific examples, at least one year’s relevant work experience in each of the following three areas:

or
be able to demonstrate on the application form, by providing personal and specific examples, at least two years’ relevant work experience in each of the following three areas:
providing expert advice to senior managers and staff on all aspects of data protection compliance and best practice;
designing and delivering training for senior managers and staff in relation to their duties regarding data protection issues; and
developing, reviewing and updating corporate policies and supporting guidance documentation for both staff and members of the public on data protection and related matters.
Special skills and attributes

Applicants must be able to demonstrate evidence of the following special skills and attributes which may be tested at interview:

Communication skills: the ability to demonstrate highly effective communication skills and be capable of influencing and persuading a wide range of people and organisations in formal and informal settings both orally and in writing.  The ability to compose internal and external reports at an operational level on a range of record management issues.

Team working and leadership skills: the capability to lead teams encouraging teams to work together to achieve aims and objectives.

Analytical and decision making skills: possess strong analytical skills and be capable of providing management with practical solutions to problems.  The ability to make decisions that will have an effect on the working of the records management service.

Organisational and work planning skills: the ability to prioritise, schedule and complete work within appropriate time scales, agreeing plans and monitoring progress on a continuous basis.

Change management and continuous improvement skills: the ability to demonstrate a commitment to organisational change and be able to demonstrate a track record of implementing change and continuous improvements in working practices.

Technical knowledge: knowledge of relevant legislation and any new developments in the field of records management including, but not limited to, Freedom of Information, Data Protection, Environmental Information Regulations to facilitate monitoring and auditing of agreed corporate guidelines and policy.

Customer focus skills: the ability to ensure that services are provided to the highest quality within agreed budgets and with a commitment to the principles of customer care.

Political sensitivity skills: an understanding of local government and how it operates with the ability to work in a political environment with awareness, sensitivity and commitment to working closely with elected politicians, partners and local organisations.

Short-listing criteria

In addition to the above qualification and, or experience, Belfast City Council reserves the right to short-list only those applicants who, as at the closing for receipt of application forms:

in the first instance, have a third level qualification in a relevant subject, or equivalent qualification; and can demonstrate on the application form, by providing personal and specific examples, at least two years’ relevant work experience in each of the aforementioned three areas; or can demonstrate on the application form, by providing personal and specific examples, at least three years’ relevant work experience in each of the aforementioned three areas; and
in the second instance, have a BSC Practitioner Certificate in Data Protection or an equivalent qualification

For more information contact Jessica or Debbie on 02895219313

BSNI are an acting recruitment agency.