Neidio i'r prif gynnwys
Arhoswch, yn llwytho
  1. Sector
  2. Chwiliad swydd Gwasanaethau Gweinyddol
  3. Rhestr swyddi
  4. Manylion y swydd

Crynodeb o'r swydd

Prif leoliad
Data Security
Gradd
Civil Service: Senior Executive Officer (SEO)
Contract
Parhaol
Oriau
  • Llawnamser
  • Rhan-amser
  • Rhannu swydd
  • Gweithio hyblyg
37.5 awr yr wythnos
Cyfeirnod y swydd
919-LT-62190974-EXT
Cyflogwr
UK Health Security Agency
Math o gyflogwr
Public (Non NHS)
Gwefan
Core HQs
Tref
Birmingham, Leeds, Liverpool, London (Canary Wharf)
Cyflog
£40,661 - £50,472 per annum, pro rata
Cyfnod cyflog
Yn flynyddol
Yn cau
16/09/2025 23:59
UK Health Security Agency logo

Senior DSPT-CAF Compliance Advisor

Civil Service: Senior Executive Officer (SEO)

The United Kingdom Health Security Agency (UKHSA) is a system leader for health security; taking action internationally to strengthen global health security, providing trusted advice to government and the public and reducing inequalities in the way different communities experience and are impacted by infectious disease, environmental hazards, and other threats to health.

UKHSA’s remit, as an agency with a global-to-local reach, is to protect the health of the nation from infectious diseases and other external threats to health. As the nation’s expert national health security agency UKHSA will:

  • Prevent: anticipate threats to health and help build the nation’s readiness, defences and health security
  • Detect: use cutting edge environmental and biological surveillance to proactively detect and monitor infectious diseases and threats to health
  • Analyse: use world-class science and data analytics to assess and continually monitor threats to health, identifying how best to control and mitigate the risks
  • Respond: take rapid, collaborative and effective actions nationally and locally to mitigate threats to health when they materialise
  • Lead: lead strong and sustainable global, national, regional and local partnerships designed to save lives, protect the nation from public health threats and reduce inequalities.

Trosolwg o'r swydd

The DSPT-CAF (Data Security and Protection Toolkit – Cyber Assessment Framework) is the latest self-assessment tool that allows organisations to measure their performance against UK Government data security standards. All organisations that have access to NHS patient data and systems must use this toolkit to provide assurance that they are practising good data security and that personal information is handled correctly.

We are recruiting for a Senior DSPT-CAF Compliance Advisor to join our Information Management and Privacy Team. Reporting to the Assistant Head of DSPT-CAF Compliance, the post holder will work across UKHSA to ensure that our operations are conducted in accordance with the latest DSPT-CAF requirements. DSPT-CAF Compliance will enable UKHSA to deliver its mission and objectives, continuously improve its operations, and will help protect the organisation, its employees and the UK Government from information risk.

We aspire to build a positive compliance culture which makes it easy for everyone to do the right thing.

Prif ddyletswyddau'r swydd

For main duties of the job please see 'Detailed job description and main responsibilities' section below

Gweithio i'n sefydliad

We pride ourselves as being an employer of choice, where Everyone Matters promoting equality of opportunity to actively encourage applications from everyone, including groups currently underrepresented in our workforce.   

UKHSA ethos is to be an inclusive organisation for all our staff and stakeholders. To create, nurture and sustain an inclusive culture, where differences drive innovative solutions to meet the needs of our workforce and wider communities. We do this through celebrating and protecting differences by removing barriers and promoting equity and equality of opportunity for all.  

Please visit our careers site for more information https://gov.uk/ukhsa/careers

Swydd-ddisgrifiad a phrif gyfrifoldebau manwl

Compliance Review: building personal expertise in the relevant regulatory and compliance obligations of the DSPT-CAF. Identifying gaps, shortfalls and other challenges for escalation to the Assistant Head DSPT-CAF Compliance.

Controls / Risk Mitigation: evaluating the effectiveness of UKHSA policies and controls in support of the DSPT-CAF. Providing meaningful, timely advice on how to improve these controls and mitigate DSPT-CAF compliance risks.

Communication: providing clear analysis and advice in written and verbal form that persuades colleagues, influences management and changes attitudes on compliance across a wide range of stakeholders and internal customers.

Work and Team Management: as part of the DSPT-CAF team, balancing multiple competing priorities, working with line management to identify new areas of focus and projects to progress.

Flexibility: being responsive to the needs of the Data and Cyber Security Directorate, Chief Data Officer Group and UKHSA. This may involve additional compliance and assurance related tasks as directed.

Please note, knowledge of the DSPT-CAF tool, or previous versions of the DSPT would be a distinct advantage but is not essential.  

UKHSA is committed to fostering an environment that supports Diversity and Inclusion and all employees will be expected to contribute through their objectives to a positive working environment.

Essential Criteria:

  • Compliance or assurance experience, including supporting reviews/investigations.
  • Good knowledge and understanding of data protection law, including GDPR and the Data Protection Act.
  • Established written and verbal communication skills, including the ability to influence attitudes on compliance and persuade others to do the right thing.
  • Stakeholder engagement skills, including the ability to influence and adapt communication style to suit the audience.
  • Good attention to detail and analytical skills.
  • Ability to deliver at pace, work independently using initiative when appropriate and effectively manage multiple competing priorities.
  • IT skills and competence in core Microsoft apps including Word, Excel and PowerPoint.
  • Experience of working well with others, operating with integrity and openness, valuing diversity, and respecting the contribution of others.

Desirable Criteria:

  • Experience using the DSPT-CAF toolkit or its predecessors.
  • Adaptability, flexibility and ability to cope with uncertainty and change.
  • Excellent organisation and planning skills.
  • Experience/knowledge of information security.
  • Willingness to work towards a relevant qualification or professional membership e.g. of the International Association of Privacy Professionals would be desirable.

Selection Process Details:

This vacancy is using Success Profiles and will assess your Behaviours, Experience and Technical skills.

Stage 1: Application & Sift 

Success profiles

You will be required to complete an application form. You will be assessed on the listed 8 essential criteria, and this will be in the form of a: 

  • Application form (‘Employer/ Activity history’ section on the application)
  • 750 word supporting statement. 

This should outline how your skills, experience and knowledge provide evidence of your suitability for the role, with reference to the essential criteria. 

The Application form and supporting statement will be marked together.

Longlisting: In the event of a large number of applications we will longlist into 3 piles of:

  • Meets all essential criteria 
  • Meets some essential criteria
  • Meets no essential criteria 

The pile 'meets all essential criteria' will proceed to shortlisting.

Shortlisting: In the event of a large number of applications we will shortlist on the lead criteria of 

  • Compliance or assurance experience, including supporting reviews/investigations.
  • Good knowledge and understanding of data protection law, including GDPR and the Data Protection Act.

Desirable criteria may be used in the event of a large number of applications/large amount of successful candidates.

If you are successful at this stage, you will progress to interview & assessment.
 
Please do not exceed 750 words.  We will not consider any words over and above this number.

Feedback will not be provided at this stage.

Stage 2: Interview

Success profiles

You will be invited to a single remote interview. 

Behaviours, technical skills and experience will be tested at interview. 

The Behaviours tested during the interview stage will be:

  • Changing and Improving (Lead behaviour)
  • Communicating and Influencing
  • Working Together
  • Managing a Quality Service

Interviews dates to be confirmed.

Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.

Selection Process

Please note you will not be able to upload your CV. You must complete the application form in as much detail as possible. Please do not email us your CV. 

Eligibility Criteria

External- Open to all external applicants (anyone) from outside the Civil Service (including by definition internal applicants).  

Location

This role is being offered as hybrid working based at any of our core HQs. We offer great flexible working opportunities at UKHSA and operate using a hybrid working model where business needs allow. This provides us with greater flexibility about how and where we work, to get the best from our workforce. As a hybrid worker, you will be expected to spend a minimum of 60% of your contractual working hours (approximately 3 days a week pro rata, averaged over a month) working at one of UKHSA's core HQ’s (Birmingham, Leeds, Liverpool and London)

Our core HQ offices are modern and newly refurbished with excellent city centre transport link and benefit from benefit from co-location with other government departments such as the Department for Health and Social Care (DHSC).

Security Clearance Level Requirement  

Successful candidates must pass a disclosure and barring security check.  

Successful candidates must meet the security requirements before they can be appointed. The level of security needed is Basic Personnel Security Standard 

Manyleb y person

Application form and supporting statement

Meini prawf hanfodol
  • Application form and supporting statement

Behaviours

Meini prawf hanfodol
  • Changing and Improving (Lead Behaviour)
  • Communicating and Influencing
  • Working Together
  • Managing a Quality Service
Purple SpaceApprenticeships logoNo smoking policyAge positiveImproving working livesMindful employer. Being positive about mental health.Disability confident employerThe Employers Network for Equality & Inclusion (enei) is the UK's leading employer network covering all aspects of equality and inclusion issues in the workplace.Carer Confident -AccomplishedHappy to Talk Flexible Working

Dogfennau i'w lawrlwytho

Gwneud cais ar-lein nawr

Rhagor o fanylion / cyswllt ar gyfer ymweliadau anffurfiol

Enw
Lisa Tweedie
Teitl y swydd
Resourcing Support Officer
Cyfeiriad ebost
[email protected]
Gwybodaeth i gefnogi eich cais

For additional information relating to the role, please contact Sandip Ghattaure [email protected]

Rhestr swyddi gyda UK Health Security Agency yn Gwasanaethau Gweinyddol neu bob sector

Gwneud cais ar-lein nawrAnfonwch hysbysiadau ataf am swyddi gwag tebyg
  1. Sector
  2. Chwiliad swydd Gwasanaethau Gweinyddol
  3. Rhestr swyddi
  4. Manylion y swydd