Data Privacy- Consultant

About Us:

The Consulting business at KPMG Global Services (KGS) is a diverse team of more than 6400 professionals. We work with KPMG Firms worldwide to transform the businesses of clients across industries through the latest technology and innovation. Our technology professionals combine deep industry knowledge with strong technical experience to navigate through complex challenges and deliver real value for our clients.  Through your work, you’ll build a global network and unlock opportunities that you may not have thought possible with access to great support, vast resources, and an inclusive, supportive environment to help you reach your full potential.

The Cyber (Data Privacy) team is responsible for providing expert guidance and solutions to help clients navigate complex data privacy regulations and ensure compliance. They conduct comprehensive assessments of clients' data practices, design and implement robust privacy frameworks, and deploy leading data privacy management tools 
 

Designation: 

Data Privacy Senior Consultant

Experience: 

Consultant: 4-7 years of experience in data privacy and cyber security

Language:

English

Certifications:

• At least 1 or 2 of the below certifications:
  • CIPT, CIPM, CIPP/E/US
  • ISO 27701 Lead Auditor/Implementor 
  • CISSP
  • CDPSE
  • CDPO
  • DCPP
  • CISM

Skills:

• Excellent Team player
• Excellent communication and presentation skills
• Excellent report writing skills 
• Problem solving skills
• Privacy by Design
• DPIAs
• Data Privacy Incident Management 
• Privacy Impact Analysis
• ISO 27701, PCI-DSS, HIPPA, SOX, GDPR 

Experience

• Experience in international standards and local regulatory requirements related to data privacy and protection e.g. ISO 27701, GDPR, CCPA, ISO 27001, PCI DSS, IT Act/ Personal Data Protection Bill etc.
• Proficient in the following areas of data privacy:
  • Development and review of data privacy and protection strategies
  • Data Protection Impact Assessments 
  • Development of data privacy framework including TOM, policies, procedures, and templates
  • Development & implementation of data privacy processes (e.g. Consent Management, DSAR requests, Data Privacy incident management, etc.)
  • Third-party privacy reviews
  • Audits against ISO 27701, GDPR, CCPA, ISO 27001, PCI DSS, PDPA, etc. 
• Experience in using well-known products related to privacy management such as OneTrust/Securiti.ai, data discovery, data classification/labeling and data security will be an advantage
• Good to have knowledge in following areas related data protection:
  • Data Discovery of structured/unstructured data
  • Data Classification and Labelling
  • Data Security cryptographic controls
  • Data Loss Prevention 
  • Digital Rights Management 
  • Endpoint Security