Job Description

Experience:

1) Audit experience

2) Knowledge of IG record management

3) GDPR and information security background

4) Data protection legislation knowledge

5) NHS / Healthcare experience (desirable)

• Educated to postgraduate, diploma/degree level or equivalent

• Auditor qualification, e.g. ISO 9001 (Quality Management Systems), ISO 27001 (Information Security), ISO 20000 (Service Management), Certified Information Systems Auditor (CISA) or Internal Auditor qualification e.g. Certified Internal Auditor or equivalent

Required Knowledge, Skills, and Abilities

• Knowledge and application of formal audit framework, e.g. ISO 19011:2011 Guidelines for Auditing Management Systems or Chartered Institute of Internal Auditors standards • Knowledge of quality management or other audit or assurance processes, tools and techniques • Knowledge and application of information governance, GDPR and Data Protection legislation (in health care setting would be an advantage) • Knowledge of records management, risk and issue management, information security or technical controls