EdTech Job – Information Rights Officer (IRO) at HEFESTIS Ltd

by | Sep 1, 2025 | 0 comments

EdTech Job – eLearning Designer Job in Sydney NSW – SEEK
  • UK Higher EdTech Jobs
  • Remote
  • £24,000 to £32,000 per annum which will be prorated for part time hours GBP / Year

Job Opportunity: Part-Time Information Rights Officer
(Permanent Contract, 3 Days Per Week – Flexible Working Patterns)

Salary: £24,000 – £32,000 per annum (pro-rata)
Location: Remote (with occasional on-site visits as required)

About Us

HEFESTIS is a not-for-profit shared service organisation collaboratively owned by member institutions in the UK university and college sector. Guided by our vision “to be the shared service partner of choice for sustainably delivering information and change management services across the UK Further and Higher Education sectors,” we provide solutions that drive compliance, efficiency, and resilience.

We successfully operate a Data Protection Service, offering Data Protection Officer (DPO) and Information Rights Officer (IRO) support on a shared service basis to members. DPOs deliver strategic advisory services, while IROs provide essential administrative coordination to ensure compliance. Together, our team reduces the risks associated with regulatory action and supports their institutions.

Currently, our growing Data Protection Service includes eleven professionals from diverse backgrounds such as records management and information governance, collectively providing deep expertise in data protection. Operating collaboratively and remotely, the team functions as a peer network that fosters professional growth and delivers remarkable outcomes for our members.

The Role

We are seeking a talented and motivated Information Rights Officer to support the administrative functions of the data protection frameworks across our member institutions. This role is ideal for an efficient administrator with strong stakeholder engagement skills, exceptional attention to detail, and a genuine interest in data protection and compliance.

You will work closely with an experienced HEFESTIS DPO, reporting both to the senior management team at the member institution and to the HEFESTIS Head of Service. The role will primarily be remote, however, occasional on-site visits may be necessary.

Key Responsibilities:
As an Information Rights Officer, you will:

  • Support staff in handling and fulfilling data subject rights requests, including Subject Access Requests (SARs) in a timely and appropriate manner.
  • Maintain accurate records of data protection activities, including logs for SARs, data security incidents/breaches, Freedom of Information requests (FOISAs), and other compliance-related documentation.
  • Promote best practices and foster a culture of compliance with data protection policies, processes, and procedures across member institutions.
  • Engage with stakeholders across departments to support compliance initiatives under the guidance of the DPO or institutional lead.
  • Assist the DPO in addressing day-to-day advisory requests from institutions and provide accurate and timely responses.
  • Contribute to investigations related to data incidents or breaches by collecting and analysing relevant information, providing recommendations, and supporting remediation activities as needed.
  • Aid the DPO in implementing scheduled programs of work to ensure compliance with regular data protection activities, including reviewing policies, procedures, privacy notices, and conducting assessments such as DPIAs (Data Protection Impact Assessments), LIAs (Legitimate Interest Assessments), and ROPAs (Records of Processing Activities).
  • Support audits and compliance reviews to identify areas of improvement and highlight good practices.
  • Assist institutions in responding to Freedom of Information requests.

About You

This role is ideal for individuals with prior experience in compliance analysis or data protection administration looking to pursue a career in data protection. You should be highly organised, dependable, self-motivated, and collaborative, capable of balancing responsibilities across the HEFESTIS team and gaining the trust and respect of stakeholders across institutional staff.

Essential Skills & Qualifications:

  • Experience in data protection administration, particularly handling Subject Access Requests and maintaining compliance records.
  • Demonstrated background in data protection, information governance, or records management, ideally supported by a recognised qualification.
  • Proven ability to manage and engage with stakeholders effectively.
  • Genuine enthusiasm for data protection and compliance-driven roles.

Beneficial Skills & Experience:

  • Participation in audits and compliance-related activities.
  • Understanding of the Higher and Further Education sector.
  • Prior experience working in or with public sector organisations.

Personal Attributes:

  • Excellent written and verbal communication skills.
  • Strong organisational skills with an attention to detail.
  • Sound judgement and ability to maintain confidentiality.

Terms and Benefits:

  • Contract: Part-time, Permanent (3 days per week). Flexible working patterns available.
  • Salary: £24,000 – £32,000 per annum, pro-rated for part-time hours.
  • Annual Leave: 26 days (plus 14 fixed/floating days), pro-rated for part-time hours.
  • Benefits: Membership of the company pension scheme, access to employee benefits suite, including cycle-to-work scheme and discounted gym memberships.

How to Apply

To apply, please submit your CV and a covering letter outlining your interest and suitability for the role to [email protected] using the ‘Apply’ button.

Application Deadline: 15th September 2025
Interview Dates: Virtual interviews will be held via Microsoft Teams on 25th or 26th September 2025.

Join HEFESTIS and contribute to our mission of delivering expert data protection services that make a lasting impact on the UK Further and Higher Education sectors!

Submit a Comment