Job description
Job Title: Head of Information Governance
Department: Information Governance Unit (IGU)
Grade: Grade 9
Salary range: £54,049 - £61,823 per annum
Working arrangements: The University supports hybrid working and anticipated that this role will be based on campus approximately 2/3 days a week to support business needs
Closing date: 21st February 2023
Potential interview date: TBD
A top information governance role at a global top 100 university.
The Department and role purpose
A globally outstanding centre of teaching and research, a collegiate community of extraordinary people, a unique and historic setting – Durham is a university like no other.
We’re looking for an outstanding information governance professional to be our appointed Data Protection Officer, responsible for implementing the information governance accountability framework and providing guidance and advice to our Senior Information Risk Owner and other stakeholders across the University. You will bring knowledge of information and records management, as well as a track record in building and leading high performing teams. You will also need to demonstrate the ability to work collaboratively with both academic and professional service colleagues from across the university. Whilst a background in Higher Education would be helpful, it’s your knowledge of relevant legislation and leadership skills that are of paramount importance, and your ability to transfer them to the university context.
With the support of a diverse group of exceptional peers, you will both be a challenger and challenged. We find it easy to be proud of the extraordinary people we have at Durham. We provide the inspiration; they achieve the extraordinary. We invite you to join us.
The Information Governance Unit (IGU) is located within the University Secretary’s Office.
Reporting to the University Secretary, the Head of Information Governance will be responsible for implementing the information governance accountability framework and information governance strategy. Overseeing a team of professional staff, they will also manage the development, maintenance and communication of policy, procedures, guidance and advice to stakeholders across the University to help embed good practice and legislative compliance in support of the University’s business objectives.
The team is presently working on the University's Information and Cyber Security Strategy working closely with Computing and Information Services, as well as carrying out a range of business-as-usual tasks including providing advice, reviewing data privacy impact assessments and responding to freedom of information requests and data rights requests.
Further information about the University can be found here.
Further information about the role and the responsibilities is at the bottom of this job description.
Working at Durham
- A competitive salary is only one part of the many fantastic benefits you will receive if you join the University: you will also receive access to the following fantastic benefits:
- 30 Days annual leave per year in addition to 8 public holidays and 4 customary days per year – a total of 42 days per year.
- The University closes between Christmas and New Year.
- Supportive of hybrid working with anticipated presence on campus in an excellent working environment 2/3 days a week.
- We offer a generous pension scheme, As a new member of staff you will be automatically enrolled into this University Superannuation Scheme (USS) which the University will add contributions of 21.4%.
- No matter how you travel to work, we have you covered. We have ample parking across campus, a cycle to work scheme which helps you to buy a bike and discount with local bus and train companies.
- There is a genuine commitment to developing our colleagues professionally and personally. There is a comprehensive range of development courses, apprenticeships and access to qualifications and routes to develop your career in the University. All staff have dedicated annual time to concentrate on their personal development opportunities.
- Lots of support for health and wellbeing including discounted membership for our state of the art sport and gym facilities and access to a 24-7 Employee Assistance Programme.
- On site nursery is available and children’s clubs in the summer holidays.
- Family friendly policies, including maternity and adoption leave, which are among the most generous in the higher education sector (and likely above and beyond many employers).
- The opportunity to take part in staff volunteering activities to make a difference in the local community
- Discounts are available via our benefits portal including; money off at supermarkets, high street retailers, IT products such as Apple, the cinema and days out at various attractions.
- A salary sacrifice scheme is also available to help you take advantage of tax savings on benefits.
- If you are moving to Durham, we can help with removal costs and we have a dedicated team who can help you with the practicalities such as house hunting and schools. If you need a visa, we cover most visa costs and offer an interest free loan scheme to pay for dependant visas.
Durham University is committed to equality diversity, inclusion and values
Our collective aim is to create an open and inclusive environment where everyone can reach their full potential and we believe our staff should reflect the diversity of the global community in which we work. As a University equality, diversity, and inclusion (EDI) are a key part of the University’s Strategy and a central part of everything we do. We also live by our values and our Staff Code of Conduct. At Durham we actively work towards providing an environment where our staff and students can study, work and live in a community which is supportive and inclusive. It’s important to us that all of our colleagues are aligned to both our values and commitment to EDI.
We welcome and encourage applications from members of groups who are under-represented in our work force including people with disabilities, women and black, Asian and minority ethnic communities. If you have taken time out of your career, and you feel it relevant, let us know about it in your application. If you are a candidate with a disability, we are committed to ensuring fair treatment throughout the recruitment process. We will make adjustments to support the interview process wherever it is reasonable to do so and, where successful, reasonable adjustments will be made to support people within their role.
What you need to demonstrate when you apply/Person Specification
When you apply it is important that you let us know what skills/experience you have from a similar role and/or what skills/experience you have which would make you right for this role. Further information about the role and responsibilities is at the end of this job description.
Where a criteria has an asterisk* next to it, it may be given additional weighting when your application is considered. Your application should cover the following criteria:
Essential Criteria
- Significant experience of leadership and management of information governance across a complex organisation
- Demonstrable evidence of developing and implementing relevant information management policies and processes within and across teams
- Demonstrable evidence of risk assessment of information governance practices across and organisation and producing and monitoring resulting actions plans.
- Educated to degree level (or equivalent experience).
- Professional practitioner with specialist knowledge and expertise used to influence events and activities within the organisation.
- Continuing professional development, including to maintain professional recognition.
- Extensive knowledge and experience of ensuring compliance with regulatory and organisational policy and guidelines.
- Experience of providing specialist advice and guidance to a range of customers and colleagues, including more senior colleagues.
- Ability to contribute to planning at operational and strategic levels.
- Excellent oral and written communication skills and the ability to develop effective working relationships, both internally and externally.
- Excellent digital competence with experience in using core digital tools including internet, email, digital communication tools, Microsoft 365 applications, digital booking system, project planning, financial systems, recruitment tools, auditing tools, eLearning authoring tools.
- Experience of being able to network effectively and develop strong and productive working relationships, to influence perceptions of the University.
- Demonstrable ability to provide specialist advice and influence others at operational at strategic levels.
- Track record of cross-functional management and development experience and/or an enhanced management qualification applied across a large service team or teams.
How to apply
To progress to the assessment stage, candidates must evidence each of the essential criteria required for the role in the person specification above. It will be at the discretion of the recruiting panel as to whether they will also consider any desirable criteria, but we would urge candidates to provide evidence for all criteria. Please don’t forget to check if there is any weighted criteria (see above).
While some criteria will be considered at the shortlisting stage, other criteria may be considered later in the assessment process, such as questions at interview.
Submitting your application
We prefer to receive applications online. We will update you about your application at various points throughout the selection process, via automated emails from our e-recruitment system. Please check your spam/junk folder periodically to make sure you have not missed any of our updates.
What you need to submit
- A CV: and
- A supporting statement which outlines how you meet all of the criteria within the Person Specification.
Contact details
For a chat about the role or any further information please contact Dr Amanda Wilcox, University Secretary ([email protected]).
Typical Role Requirements
Service Delivery
- Be the University’s registered Data Protection Officer.
- Maintain oversight of the University’s information governance accountability framework, leading on the creation, review, design, implementation and monitoring of information governance and records management policy and service level standards.
- Lead on the delivery of the information and data protection aspects of the Information and Cyber Security Strategy.
- Drive the University’s GDPR compliance, providing expert guidance, advice and problem-solving skills to stakeholders.
- Deputise for strategic managers and take responsibility for the feasibility analysis, development, planning and implementation of information and records management activities.
- Provide leadership and influence the governance of service activities, processes and transactions to meet regulatory and professional service and policy standards.
- Provide information governance expertise in support of the University’s Digital Strategy.
- Provide support / assurance to the University’s Senior Information Risk Owner.
- Contribute to wider quality and regulatory audit process for stakeholder systems and services.
- Budget responsibility for allocating and managing expenditure of consumable and capital items.
Planning and Organising
- Provide professional information governance and expert leadership at a significant operational level and contribute to strategic planning to meet organisational objectives.
- Influence and contribute to operational and strategic scoping and resource planning across a range of activities, developing and presenting complex business plans and strategy documents where required.
- Set service metrics and expected levels of efficiency of service delivery.
Teamwork and Team Development
- Responsible for the management and leadership of people across Information Governance Unit, setting operational and strategic objectives for discrete areas.
- Lead and motivate the team with innovative thinking and a service-based, pragmatic, solutions-focussed approach.
- Devolve key responsibilities to experienced team members to ensure succession and encourage skills development.
Communication/Networking
- Build and lead an influential network of contacts both internally and externally to influence the development of service provision.
- Provide leadership within project teams to shape and determine specifications and key deliverables, problem solve and guide implementation.
- Lead internal and external business meetings, working groups and committees at operational and strategic service level to influence governance, organisational policy and standards for the service.
- Create opportunities to promote services via internal and external events and activities.
- Build an Information Governance network for accountability and ownership locally, embedding the Senior Information Asset Owner structures.
- Provide leadership with relationship building with external agencies and service providers, identify and develop opportunities to increase influence in keeping with strategic objectives.
- Working in partnership with peers and specialists across the organisation to implement change management projects (meeting security and privacy by design requirements) across service areas to ensure a smooth and effective transition.
Knowledge and Experience
- Conduct horizon scanning and research with internal and external stakeholders, local government, professional bodies and sector agencies to provide briefings and reports on information risks, governance and records management.
- Responsible for the overall design of a set of learning activities as part of a wider skills development programme.
- Deliver professional development learning activities designing individual workshops, sessions and a programme of activities in support of the University’s information governance framework.
- Analyse and interpret complex data sources, to provide business intelligence and business forecasts seeking opportunities for business improvement and efficiency.
- Any other reasonable duties.
Specific role requirements:
As the University’s named Data Protection Officer, this post holder may need to be available outside of normal office hours to provide advice or respond to information security incidents or events.
Please note that in submitting your application Durham University will be processing your data. We would ask you to consider the relevant University Privacy Statement https://www.durham.ac.uk/about-us/governance/information-governance/privacy-notices/job-applicants/ which provides information on the collation, storing and use of data.