Job Description
Responsibilities: Execute projects related to data privacy gap assessments/Audits, building strategies, frameworks, solution designs and implementation related to data privacy and protection. Be part of project communications involving technology partners and member firms Documentation of project deliverables. Ensure quality in project deliverables Be part of all client presentations. Assist PM’s in all project management meetings including: Status updates Audit / technical assessment reports Develop, drive and review data privacy frameworks including TOMs, policies, procedures and templates, that align with data privacy laws and regulations Perform Data Privacy Impact Assessments to identify privacy issues early, reduce privacy risk and cost through corrective actions. Review and maintain the privacy management workflows that enables clients to identify, log, investigate and resolve data privacy-related issues in accordance with industry best practices. Participation in proposition of services to the client (proposal writing) Adhere to project management guidelines Adhere to the firm’s risk management guidelines.Experience Experience in international standards and local regulatory requirements related to data privacy and protection e.g. ISO 27701, GDPR, ISO 27001, PCI DSS, NDMO, etc. Proficient in the following areas of data privacy: Development and review of data privacy and protection strategies Data Protection Impact Assessments Development of data privacy framework including TOM, policies, procedures and templates Development & implementation of data privacy processes(e.g. Consent Management, DSAR requests, Data Privacy incident management, etc.) Third party privacy reviews Audits against ISO 27701, GDPR, ISO 27001, PCI DSS, NDMO, etc. Proficient in following areas related data protection: Data Discovery of structured/unstructured data Data Classification and Labelling Data Security cryptographic controls Data Loss Prevention Digital Rights Management Experience in using well known products related to privacy management, data discovery, data classification/labelling and data security will be an advantageCertifications: At least 1 or 2 of the below certifications: CIPT, CIPM, CIPP/E/US ISO 27701 Lead Auditor/Implementor CISSP CDPSE DCPP CISM Skills: Excellent Team player Excellent communication and presentation skills Excellent report writing skills Privacy by Design DPIAs Data Privacy Incident Management ISO 27701, PCI-DSS, HIPPA, SOX, GDPR