Business Protection Advisor

The Business Protection Advisor (BPA) is a shared role across a market, responsible for leading, driving, and, in some cases, implementing Information Protection & Security (IPS) activities in company entities under the supervision of the Division Business Protection Officer (BPO). He or she serves as a liaison between local site leadership and IPS leadership. Under general supervision from the BPO, they are responsible for performing a wide range of tasks that support the ongoing maturation of the IPS program, including: driving consistency and visibility of IPS risk management activities; working with business owners to protect patients and prevent data loss; and rounding with local leadership to reduce or eliminate risky behaviors. They are responsible for helping workforce members appropriately comply with the company's IPS requirements. This role requires extensive focus on building and expanding relationships with key stakeholders such as local leadership; workforce members; physicians; IT teams; business owners; vendors; and other people and entities who support IPS objectives and activities. What you'll do:

• Conduct risk assessments using corporate-provided tools and templates.
• Implement corrective action plans to address deficiencies.
• Ensure the designated committee (e.g., Security Committee, Ethics & Compliance Committee) receives, documents, tracks, investigates, and sponsors remediation of security control deficiencies, suspected IPS incidents, and complaints.
• Provide education and guidance to ensure these committees make informed, risk-based decisions necessary to balance business needs and security objectives.
• Represent IPS needs in strategic planning, budgeting, and work prioritization processes.
• Drive ongoing compliance with IPS policies, standards, and operational procedures.
• Work with local leaders to submit and approve exceptions to IPS standards.
• Lead audit response activities to address IPS issues identified by Internal Audit or external auditors (e.g., ISO, GDPR, Security audits).
• Manage incident response and investigation activities.
• Collaborate with business owners, IT, supply chain, and IPS stakeholders to secure vendor contracts, ensure security assessments and proper controls are in place. Documentation of vulnerabilities with mitigation actions, while ensuring vendor systems use approved connectivity, remote management, and monitoring.
  
  Strong Communication Skills; oral and writes modalities
• Experience of carrying out privacy and risk surveys/audits
• Delivering awareness and training; communication and presentation abilities
• Data Protection and Privacy; completion of DPA or DPIAs
• Ability to work under tight deadlines and prioritize responsibilities
  
  Originally founded over 50 years ago by Dr Thomas Frist, HCA has gone on to become one of the world's leading healthcare providers. In the UK, we're one of the largest providers of privately funded healthcare and have invested over £500 million in the latest treatments, technology, techniques, medication and facilities. Being part of a large multisite, established healthcare group we can offer you unrivalled opportunities for career progression through internal and external courses, as well as working conditions that prioritise both your mental and physical wellbeing.
By caring for our employees, we empower them to provide exceptional care for our patients. That's why we offer a host of flexible benefits that reflect the invaluable contribution they make every day. You'll be eligible for:
• 25 days holiday each year (plus bank holidays) increasing with service, with option to buy or sell leave to suit you.
• Private Healthcare Insurance for treatment at our leading hospitals.
• Private pension contribution which increases with length of service.
• Season Ticket Loan and Cycle to Work scheme.
• Group Life Assurance from day one.
• Critical illness cover.
• Enhanced Maternity and Paternity pay.
• Corporate staff discount for all facilities including Maternity packages at The Portland.
• Comprehensive range of flexible health, protection and lifestyle benefits to suit you.
• Discounts with over 800 major retailers.
Diversity and Inclusion Patients first. Colleagues always. That's the guiding philosophy behind our approach to Diversity, Equity, Inclusion and Belonging. We believe healthcare is built on a foundation of inclusion, compassion and respect for our patients and for each other. By working together with our colleagues we're creating a truly inclusive environment, where individual differences are celebrated and everyone can achieve their potential. We believe everyone should feel comfortable to bring their full self to work and be afforded the same opportunities. That's why we're happy to discuss flexible working arrangements to suit your needs as well as offer reasonable adjustments throughout our recruitment process, and in the workplace, to anyone that needs them.