Location
Romford

Hours
Full Time - 36 hours per week

Salary
£64,317–£71,319 per annum

About the Role
We are seeking a visionary and authoritative leader to take on the role of Head of Information Governance and Assurance—serving as the Council’s statutory Data Protection Officer (DPO). This is a critical post that shapes how Havering manages, protects, and governs its information assets in a complex and evolving digital landscape. This role provides strategic leadership and oversight of the Council’s information governance, assurance, and security functions. You will be responsible for setting and enforcing policies that ensure compliance with data protection legislation, information security standards, and best practice in records management. You will lead the development and implementation of enterprise-wide strategies for information assurance and cyber security, working closely with senior stakeholders, including SIROs and Caldicott Guardians. As DPO, you will act as the Council’s primary contact with the Information Commissioner’s Office (ICO) and lead responses to data breaches and information risk assessments.

Key Responsibilities
- Act as the Council’s statutory Data Protection Officer, ensuring compliance with all relevant legislation and standards.
- Lead the strategic development of information governance, assurance, and security policies and frameworks.
- Direct the Council’s approach to cyber security, including oversight of the Security Operations Centre.
- Promote a culture of compliance and transparency across the organisation through education, training, and stakeholder engagement.
- Lead the response to data breaches and coordinate risk assessments and mitigation strategies.
- Build and maintain strategic relationships with senior stakeholders across the Council and external regulatory bodies.
- Inspire and lead a team of Information Governance Specialists, fostering a culture of continuous improvement and professional development.

Experience
- Extensive experience in leading information governance and assurance functions at a strategic level.
- A proven track record of developing and implementing enterprise-wide strategies that align with organisational goals.

About you
- A degree or equivalent experience, with relevant certifications in data protection, information governance, or cyber security.
- A deep understanding of data protection legislation, information security frameworks, and risk management.
- Strong leadership and stakeholder management skills, with the ability to influence at the highest levels.

Qualifications
- Relevant certifications in data protection, information governance, or cyber security are desirable.