Data Privacy: Consultant & Senior Consultant

Role & responsibilities

• Experience in developing, implementing or architecting data privacy and information governance based policies, frameworks.
• Great working knowledge of data protection and privacy laws and regulations (e.g. EU GDPR, etc.) and industry standards and frameworks, such as GAPP and BCR
• Able to efficiently understand client organizations and their business model and to tailor-make relevant processes to data privacy requirements
• Basic knowledge of project management tools and methodologies
• Creative thinking ability and good analytical skills
• Ability to keep confidential and sensitive information safe
• Strong research and communications skills
• Strong understanding of information security regulatory requirements and compliance issues
• Good working knowledge of computers and common software packages including analytical tools
• Good verbal and business communications skills
• Notable customer consulting and collaboration skills
• Experience in service delivery, team handling and working with all levels of staff

Preferred candidate profile

• Identify existing privacy gaps at our clients businesses which they may need to focus on
• Create custom privacy programs to help clients with their business and provide implementation support
• Conduct Privacy Impact Assessments for the clients across the globe in diverse industries
• Assist clients understanding and dealing with the new data privacy regulations such as GDPR, DPDPA, CPRA, etc.
• Help implement policies and procedures to help client protect their data (e.g. PII, personal sensitive data, etc.)
• Create an incident response and forensic plan to tackle data breaches that could make clients susceptible to privacy regulation penalties
• Wherever needed render services on behalf of clients to help them with privacy regulations
• From an information governance perspective, help clients identify and classify their information using various frameworks. Provide assistance in creating data maps and advice on the redundancy of data within their organizations.
• Define technical and business requirements for data privacy and information governance solutions.
• Define information security processes and policies which secure and enable the business.

• Certifications such as , ISO 27701, CIPM, CIPT, CIPP/E, CISM, CISSP, and/or HCISSP, as well as involvement in industry related organizations (e.g. IAPP, ISACA, (ISC) ) are added advantages