Senior Data Privacy Consultant

Data Privacy- Consultant

About Us:

The Consulting business at KPMG Global Services (KGS) is a diverse team of more than 6400 professionals. We work with KPMG Firms worldwide to transform the businesses of clients across industries through the latest technology and innovation. Our technology professionals combine deep industry knowledge with strong technical experience to navigate through complex challenges and deliver real value for our clients.  Through your work, you’ll build a global network and unlock opportunities that you may not have thought possible with access to great support, vast resources, and an inclusive, supportive environment to help you reach your full potential.

The Cyber (Data Privacy) team is responsible for providing expert guidance and solutions to help clients navigate complex data privacy regulations and ensure compliance. They conduct comprehensive assessments of clients' data practices, design and implement robust privacy frameworks, and deploy leading data privacy management tools 

Designation: 

Data Privacy Senior Consultant

Experience: 

Consultant: 4-7 years of experience in data privacy and cyber security

Language:

English

 

Certifications:

• At least 1 or 2 of the below certifications:
  • CIPT, CIPM, CIPP/E/US
  • ISO 27701 Lead Auditor/Implementor 
  • CISSP
  • CDPSE
  • CDPO
  • DCPP
  • CISM

Skills:

• Excellent Team player
• Excellent communication and presentation skills
• Excellent report writing skills 
• Problem solving skills
• Privacy by Design
• DPIAs
• Data Privacy Incident Management 
• Privacy Impact Analysis
• ISO 27701, PCI-DSS, HIPPA, SOX, GDPR 

 

Experience

• Experience in international standards and local regulatory requirements related to data privacy and protection e.g. ISO 27701, GDPR, CCPA, ISO 27001, PCI DSS, IT Act/ Personal Data Protection Bill etc.
• Proficient in the following areas of data privacy:
  • Development and review of data privacy and protection strategies
  • Data Protection Impact Assessments 
  • Development of data privacy framework including TOM, policies, procedures, and templates
  • Development & implementation of data privacy processes (e.g. Consent Management, DSAR requests, Data Privacy incident management, etc.)
  • Third-party privacy reviews
  • Audits against ISO 27701, GDPR, CCPA, ISO 27001, PCI DSS, PDPA, etc. 
• Experience in using well-known products related to privacy management such as OneTrust/Securiti.ai, data discovery, data classification/labeling and data security will be an advantage
• Good to have knowledge in following areas related data protection:
  • Data Discovery of structured/unstructured data
  • Data Classification and Labelling
  • Data Security cryptographic controls
  • Data Loss Prevention 
  • Digital Rights Management 
  • Endpoint Security

 

 

1. Use leading Data Privacy related products/platforms for privacy management, data discovery, data classification/labeling and data security 
2. Configuring and managing OneTrust or similar data privacy management platforms to ensure compliance with Data Privacy requirements
   Proven expertise in configuring and customizing OneTrust privacy modules to meet specific client needs.
3. Work on projects related to data privacy gap assessments/Audits, building strategies, frameworks, solution designs and implementation 
   Participate in the development and review of data privacy and protection strategies 
4. Designing and maintaining detailed Records of Processing Activities (RoPA)
5. Demonstrated expertise in privacy compliance, including implementing and managing privacy impact assessments and data protection impact assessments within privacy management tools.
6. Development of data privacy framework, including TOM, policies, procedures, and templates
7. Development & implementation of data privacy processes (e.g., Consent Management, DSAR requests, Data Privacy incident management, etc.)
8. Exceptional communication and interpersonal skills, with the ability to explain complex technical concepts to non-technical stakeholders.
9. Deliver quality deliverables to clients along with the development of compliance risk assessments.
10. Provide privacy, data protection, and information security trainings.
11. Participation in the proposition of services to the client (proposal writing)
12. Adhere to project management guidelines while working and managing multiple projects concurrently.
13. Ability to work independently and manage client requirements while collaborating in a global environment in multiple time zones. 
    

 

Designation: 

Data Privacy Senior Consultant

Experience: 

Consultant: 4-7 years of experience in data privacy and cyber security

Language:

English

 

Certifications:

• At least 1 or 2 of the below certifications:
  • CIPT, CIPM, CIPP/E/US
  • ISO 27701 Lead Auditor/Implementor 
  • CISSP
  • CDPSE
  • CDPO
  • DCPP
  • CISM

Skills:

• Excellent Team player
• Excellent communication and presentation skills
• Excellent report writing skills 
• Problem solving skills
• Privacy by Design
• DPIAs
• Data Privacy Incident Management 
• Privacy Impact Analysis
• ISO 27701, PCI-DSS, HIPPA, SOX, GDPR 

 

Experience

• Experience in international standards and local regulatory requirements related to data privacy and protection e.g. ISO 27701, GDPR, CCPA, ISO 27001, PCI DSS, IT Act/ Personal Data Protection Bill etc.
• Proficient in the following areas of data privacy:
  • Development and review of data privacy and protection strategies
  • Data Protection Impact Assessments 
  • Development of data privacy framework including TOM, policies, procedures, and templates
  • Development & implementation of data privacy processes (e.g. Consent Management, DSAR requests, Data Privacy incident management, etc.)
  • Third-party privacy reviews
  • Audits against ISO 27701, GDPR, CCPA, ISO 27001, PCI DSS, PDPA, etc. 
• Experience in using well-known products related to privacy management, data discovery, data classification/labeling and data security will be an advantage
• Good to have knowledge in following areas related data protection:
  • Data Discovery of structured/unstructured data
  • Data Classification and Labelling
  • Data Security cryptographic controls
  • Data Loss Prevention 
  • Digital Rights Management 
  • Endpoint Security

 

 

Experience Level

Senior Level