Information Management Specialist - Ofgem|Meet.jobs
薪資
33.4k - 46.7k GBP Annually
技能需求
工作機會描述
Ofgem exists to ensure a safe, sustainable and affordable energy supply to the households and businesses of Great Britain. As the industry regulator we promote the highest standards of customer care and work with industry participants to be assured that our energy system and supporting infrastructure is safe, resilient and sustainable. Our work has never been more crucial.
As Information Management Specialist, you'll be a key member of our Cyber Security Profession. The team help to keep Ofgem's people, data, operations and facilities safe from harm. They also play a key part in improving security and resilience across the UK gas and electricity sector. You'll enjoy a varied role, supporting the security, privacy and success of a wide range of projects and activities - from regulatory schemes to smart metering.
Your key responsibility will be to support the definition, documentation, management, storage, processing, sharing, review and disposal of information assets. Playing a vital role in the delivery of a rolling assurance programme, you will work closely with information asset owners across Ofgem ,as well as with colleagues in departments as diverse as Legal, Data and line of Business. From compliance to reporting, you will make a real impact.
To join us, you will need a track record in data protection and information management. You have proven experience of stakeholder management, with the professional credibility and self-assurance to engage, advise and influence others. We will also expect you to have experience supporting the development of plans, and of carrying out dashboard reporting spanning metrics and trending. Now you're looking to broaden your experience - and you are looking in the right place.
We are serious about the professional development and support we offer staff, and will be encouraged to undertake and continue professional training and certification. You can also expect an excellent benefits package, great working environment and a shared sense of purpose.
We welcome candidates from all backgrounds, and especially welcome individuals from underrepresented groups. While this is a full-time role, flexible working patterns and job shares are welcome.
- Protecting Ofgem - Ensuring that Ofgem maintains appropriate levels of security, privacy, and resilience to protect our people, data, operations, and facilities from harm.
- Protecting the UK National Infrastructure - Acting as Joint Competent Authority for implementing the NIS Regulations, to improve security and resilience in the Downstream Gas and Electricity sector.
The Information Management Specialist's key responsibility is to provide support to help ensure that Ofgem's Information Assets are adequately defined, documented, managed, stored, processed, shared, appraised, reviewed and disposed of in accordance with legal and regulatory requirements, good practice, and in support of Ofgem's aims and objectives. This includes, but is not limited to:
- UK GDPR
- The Data Protection Act 2018 (DPA 2018) (and regulations made thereunder);
- The Privacy and Electronic Communications Regulations 2003;
- Guidance and codes of practice issued by any relevant regulatory authority;
- HMG Policy and standards;
- The Public Records Act;
- Sector specific aspects, such as the Utilities Act 2000, and specifically s.105.
The Information Management Specialist will work with Information Asset owners (IAOs) across Ofgem and other professional colleagues spanning (but not limited to) Legal, Cyber, Data, IT, Business Continuity, HR, and others as required to ensure appropriate input and support to the programme of work at both a macro and granular level, to:
Support the development, management and delivery of a rolling Assurance programme that encompasses and delivers:
o Pro-active engagement across all Ofgem Directorates;
o Rolling reviews of the content of Information Asset Registers/RoPAs and Retention Schedules;
o A view of compliance, that provides tangible and pragmatic recommendations for increasing compliance that are prioritised and tracked to completion;
o Regular dashboard reporting at both macro and micro levels, to feed into Risk Management and Governance reporting regimes, and spanning Team, Directorate and Corporate views, including cross-cutting trends and shared components such as data repositories;
o Feeding into weekly, monthly and quarterly reporting cycles;
o Reporting ad-hoc in relation to user progress and outcomes, as required by local and corporate management.
o Identification and response to OD changes, supporting the team to develop and migrate collateral, tracking and reporting mechanisms in line with organisational change and implementation of professions models.
Engagement and support to IAOs relating to both assurance of Information Assets, and issues arising operationally relating to aspects such as:
- Information Assets;
- Legal Gateways;
- Data Sharing Agreements;
Memoranda of Understanding; - Records Management;
- Public Records;
- Information Rights;
- Data Protection Impact Assessments.
The Information Management Specialist will formally report to the Data Protection Officer but will work closely with and take direction from the Departmental Records Officer as required to discharge their duties.
The Information Management Specialist's key responsibility is to provide support to help ensure that Ofgem's Information Assets are adequately defined, documented, managed, stored, processed, shared, appraised, reviewed and disposed of in accordance with legal and regulatory requirements, and good practice and in support of Ofgem's aims and objectives.
Accordingly, the Information Management Specialist role will interact with key personnel within SPaR, but also wider personnel across Ofgem, in relation to supporting the overall programme.
In order to discharge this effectively they will need to support engagement across Ofgem IAOs and be a subject matter expert in relation to legal and regulatory requirements, and good practice relating to information management. Training and Industry recognised Certification will be encouraged and supported.
It is expected that they will also develop (if not held already) Security knowledge and experience, both in relation to the Security component of information management, but also as part of their professional development.
