DVSA, Digital, Graham Watts - Department for Transport Careers

What is it like working in DVSA Digital? 

I started working for DSA (Driving Standards Agency) in 2004. This was a predecessor to DVSA when it was formed in 2014. I joined as an Administrative Assistant as part of the theory test unit. I took up a role handling Freedom of Information requests and then moved into data protection compliance. I became the Information Audit and Risk Manager in March 2018.

I like working here as every day is different in the world of compliance. One day we could be providing advice on managing risks around handling personal data or responding to customer requests. And another day, we could be updating or reviewing policies, auditing a supplier or responding to an incident.

As well as working with colleagues throughout DVSA, I also enjoy the variety of stakeholders we work with across Government and within our supply chain.

What is the most exciting part of this role? 

The Information Risk Manager will have to be inquisitive, understand DVSA’s vision and strategy, what services and systems we have, what wider government standards we must follow and what data we process. All of this will then help inform what risks and threats there are to DVSA and customer data and how best we can mitigate them.

The role will also look for continuous improvement opportunities and how we can embed them within DVSA.

Why would you join our team? 

If you would enjoy getting to thoroughly know what DVSA does, learn about the services and systems we have and work with other teams and our supply chain to understand DVSA’s information risk posture this might be the role for you.

You’ll have the chance to make this role your own. Through immersing yourself in DVSA activities and understanding the consolidated threat and risk picture, you will then be able to confidently present this to senior managers and the Audit and Risk Committee.

You will be working directly with other security and data protection professionals in a supportive and inclusive environment. You will also have a chance to develop other security and data protection skills, for example auditing, handling security incidents or informing policy.