Data Protection Specialist

Would you like to support and deputise for the Head of Data Protection, ensuring that provision of expert data protection advice to the organisation is delivered in a timely and compliant manner?
If so, we are looking for a Data Protection Specialist to join us at the Maritime and Coastguard Agency (MCA) and we'd love to hear from you!
The Maritime and Coastguard Agency (MCA) implements the government’s maritime safety policy in the United Kingdom and works to prevent the loss of life and occurrence of pollution on the coast and at sea.
Safer lives. Safer Ships. Cleaner Seas.
Our vision is to be a world-leading organisation, accelerating the transition to sustainable shipping with non-negotiable safety standards. We put our people, our customers and our planet at the heart of everything we do.
We are committed to giving all our colleagues purpose, professionalism and pride in what we do. We work in supportive, diverse and inclusive teams.
We want everyone to feel valued and supported to achieve their potential at MCA.
This culture of inclusion is underpinned by our staff networks groups covering, Women’s, LGBTQI+, Race, Carers, Mental Wellbeing and volunteer Respect Ambassadors., Whilst we welcome applications from candidates seeking part time/flexible working hours, there will be a business requirement for candidates to work a minimum of 30 hours for specific locations. For further information please contact HR.Resourcing@mcga.gov.uk
Who are the Data Protection Team?
The Data Protection team works as part of the Maritime and Coastguard Agency’s (MCA’s) Corporate Governance framework to inform the Agency’s compliance with Data Protection and Information Access Legislations.
The team provides independent, expert advice and guidance to the Agency, its staff, volunteers and third parties. The team act as a point of contact for individuals whose personal data the MCA process and ensure lawful and compliant processing and disclosure of personal information under the relevant legislations.
The function acts to ensure that the MCA’s Executive Officers and Board are adequately informed and advised of Data Protection and Information Access risks, best practice and relevant updates or changes to the regulatory landscape.
What is the purpose of a Data Protection Specialist?
The Data Protection Specialist will support and deputise for the Head of Data Protection, ensuring that provision of expert data protection advice to the organisation is delivered in a timely and compliant manner.
The role will support the Head of Data Protection in carrying out the delegated statutory tasks of the Department for Transport (DfT) Data Protection Officer (DPO), to facilitate and support the MCA’s compliance with Data Protection Legislations, ensuring a sensible and proportionate approach is taken to help the department do its business in a way that inspires staff and public trust and confidence.
Your responsibilities include but are not limited to:
+ Manage the Data Protection Impact Assessment (DPIA) process, ensuring the agency undertakes DPIAs when required. Advise on and assess risks identified in Data Protection Impact Assessments, working with stakeholders to mitigate risks. Assist in the management of referrals to the DPO and Information Commissioner Office (ICO) where residual risk remains high.
+ Manage the Data Protection risk register identifying data protection compliance risks alongside other business risks. Escalating these risks to the Head of Data Protection, the DPO and MCA Senior Information Responsible Officer (SIRO) in accordance with internal risk escalation procedures.
+ Maintain the record of processing activities (ROPA) log, ensuring capture and record of associated privacy notices, Data Protection Impact Assessments (DPIAs), Data Sharing Agreements and compliance activities that relate to the processing activity.
+ Assist the Head of Data Protection in responding to formal complaints received from data subjects, managing the logging and recording of complaints processed and assisting with complaint investigations.
+ Review and maintain the MCA’s Privacy Notices, ensuring data subjects are accurately informed about MCA processing and the rights available to them. Ensuring relevant and accessible Privacy Notices are in place where required.
+ Monitor compliance with data protection legislations for the MCA, undertaking regular audit activities to assess the MCA’s protection of personal data, including the assignment of responsibilities, awareness raising and training of staff involved in processing activities. Provide regular data protection compliance updates to the Head of Data Protection for representation to the DPO and the MCA SIRO. Highlight areas of concern and assist in preparing action and mitigation plans.
For further information about the role and responsibilities, please see the attached role profile., This role will be based in the Southampton HQ (or relevant office). MCA supports flexible working and operates a hybrid working model between home and office for this role, giving you greater flexibility over where and when you work.
The expectation is that you will spend a minimum 60% of your working time based at your principal workplace or out on official business. Details of the arrangement will be discussed further with your line manager.

Behaviours
We'll assess you against these behaviours during the selection process:
+ Seeing the Big Picture
+ Making Effective Decisions
+ Leadership
+ Communicating and Influencing
+ Managing a Quality Service, As part of your application, you will be required to complete a CV and a Personal Statement. Further details around what this will entail are listed on the application form.
Within your CV and Personal Statement please demonstrate your knowledge and experience of:
+ Data protection requirements and best practices.
+ Working collaboratively and inclusively with stakeholders of varying levels.
+ Presentation and public speaking ability, particularly with regard to delivery of training and reporting to senior executives.
+ Managing diverse teams of people, motivating them to deliver challenging and sometimes conflicting objectives.
Your Personal Statement will be limited to a maximum of 1000 words.
It is essential when submitting your Personal Statement that you provide as much detail as possible, and utilise the full word count given, against the essential criteria outlined above as this will be used in conjunction with your CV to assess candidate suitability to move to the next round in the recruitment process.
Sift and Interview Dates:
The sift is due to take place w/c 6th January 2024.
Interviews/assessments are likely to be held w/c 20th January 2024.
This interview will be conducted face to face at our Southampton office. Further details of which will be provided to you should you be selected for interview.
We will try to meet the dates set out in the advert. There may be occasions when these dates will change. You will be provided with sufficient notice of the confirmed dates.
The selection process will be designed specifically for the role. As a result, your assessment will include:
+ An interview.
+ A presentation.
You’re encouraged to become familiar with the role profile, as you may be assessed against any of the criteria recorded within.
Reasonable Adjustments
As a Disability Confident Leader employer, we are committed to ensuring that the recruitment process is fair, accessible and allows all candidates to perform at their best. If a person with a visible or non-visible disability is substantially disadvantaged, we have a duty to make reasonable changes to our processes., A candidate is not eligible to apply for a role within the Civil Service if the application is made within a 5-year period following a dismissal for carrying out internal fraud against government.
For further information on National Security Vetting please visit the following page https://www.gov.uk/government/publications/demystifying-vetting.
Feedback will only be provided if you attend an interview or assessment.

Security
Successful candidates must undergo a criminal record check.
Successful candidates must meet the security requirements before they can be appointed. The level of security needed is security check (opens in a new window).See our vetting charter (opens in a new window).
People working with government assets must complete baseline personnel security standard (opens in new window) checks.

Nationality requirements
This job is broadly open to the following groups:
+ UK nationals
+ nationals of the Republic of Ireland
+ nationals of Commonwealth countries who have the right to work in the UK
+ nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) (opens in a new window)
+ nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS)
+ individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020
+ Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service
Further information on nationality requirements (opens in a new window)

Working for the Civil Service
The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants.
We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window).
The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.
The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.

Diversity and Inclusion
The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see the Civil Service People Plan (opens in a new window) and the Civil Service Diversity and Inclusion Strategy (opens in a new window).

Apply and further information
This vacancy is part of the Great Place to Work for Veterans (opens in a new window) initiative.
The Civil Service welcomes applications from people who have recently left prison or have an unspent conviction. Read more about prison leaver recruitment (opens in new window).
Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.

+ Considerable experience in data protection, successfully obtained Data Protection Practitioners Certificate, or have sufficient comparable prior experience and knowledge to undertake this soon after starting the role.
+ Experience in information security principals and standards and be able to apply this alongside data protection legislation to advise data and security professionals in developing data management standards and processes.
+ A history of working collaboratively and inclusively with external organisations and other stakeholders, sharing information and knowledge to achieve common aims.
+ Excellent communication skills, both verbal and written, highly skilled in the delivery and absorption of information with colleagues at all levels.
+ Excellent presentation and public speaking ability, particularly with regard to delivery of training and reporting to senior executives.
+ A background in managing diverse teams of people, motivating them to deliver challenging and sometimes conflicting objectives.
+ Experience in information access legislation; the Freedom of Information Act 2000, Environmental Information Regulations 2004, the subject access provisions under UK GDPR/ DPA and the exemptions and application of those requirements.
+ Understanding of the information access and data protection regimes, including understanding of records management regulations and best practices.
+ Experience in risk management methodologies.

Alongside your salary of £42,848, Maritime and Coastguard Agency contributes £12,413 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides.
Being part of our brilliant Civil Service means you will have access to a wide range of fantastic benefits. We offer generous annual leave, attractive pension options, flexible working, inclusive working environments and much more to support a healthy work/life balance.