KPMG India logo

One Trust Data Privacy- Consultant

KPMG India
2 hours ago
Full-time
On-site
Bangalore, Karnataka, India
Consultant

About Us:

A leading professional services firm with over 135,000 people working together to deliver value in more than 140 countries by providing deep industry insights in Audit, Tax & Advisory. Recorded over US$20 billion dollars in revenue in 2008. The joint venture office (KGS – KPMG Global Services) of KPMG LLP, KPMG Europe and KPMG India is seeking enthusiastic business strategy professionals to help strategize, develop, and execute future growth plans.

Designation: 

Data Privacy Senior Consultant

Experience: 

Consultant: 4-7 years of experience in data privacy and cyber security

Language:

English

 

Certifications:

  • At least 1 or 2 of the below certifications:
    • CIPT, CIPM, CIPP/E/US
    • ISO 27701 Lead Auditor/Implementor 
    • CISSP
    • CDPSE
    • CDPO
    • DCPP
    • CISM

Skills:

  • Excellent Team player
  • Excellent communication and presentation skills
  • Excellent report writing skills 
  • Problem solving skills
  • Privacy by Design
  • DPIAs
  • Data Privacy Incident Management 
  • Privacy Impact Analysis
  • ISO 27701, PCI-DSS, HIPPA, SOX, GDPR 

 

Experience

  • Experience in international standards and local regulatory requirements related to data privacy and protection e.g. ISO 27701, GDPR, CCPA, ISO 27001, PCI DSS, IT Act/ Personal Data Protection Bill etc.
  • Proficient in the following areas of data privacy:
    • Development and review of data privacy and protection strategies
    • Data Protection Impact Assessments 
    • Development of data privacy framework including TOM, policies, procedures, and templates
    • Development & implementation of data privacy processes (e.g. Consent Management, DSAR requests, Data Privacy incident management, etc.)
    • Third-party privacy reviews
    • Audits against ISO 27701, GDPR, CCPA, ISO 27001, PCI DSS, PDPA, etc. 
  • Experience in using well-known products related to privacy management such as OneTrust/Securiti.ai, data discovery, data classification/labeling and data security will be an advantage
  • Good to have knowledge in following areas related data protection:
    • Data Discovery of structured/unstructured data
    • Data Classification and Labelling
    • Data Security cryptographic controls
    • Data Loss Prevention 
    • Digital Rights Management 
    • Endpoint Security

 

 

Responsibilities:

  • Execute projects related to data privacy gap assessments/Audits, building strategies, frameworks, solution designs and implementation related to data privacy and protection.
  • Be part of project communications involving technology partners and member firms
  • Documentation of project deliverables.
  • Ensure quality in project deliverables
  • Be part of all client presentations.
  • Assist PM’s and clients in all project management meetings including:
    • Privacy and information security
    • Gap analysis and impact analysis of regulations
    • Status updates
    • Audit / technical assessment reports
    • Design and implement unidirectional and bidirectional integrations using OneTrust APIs, web services, SFTP, and middleware tools.
    • Configure and customize OneTrust modules, including TPRM, Privacy, and ITRM.
    • Develop automation workflows to streamline data flows and risk processes.
    • Analyze business requirements and convert them into technical integration specifications.
    • Monitor integration performance, troubleshoot issues, and ensure high‑quality, secure data exchange.
    • Collaborate with cross‑functional teams, vendors, and stakeholders to ensure smooth delivery.
    • Document integration architectures, payload structures, and data mapping logic.
  • Develop, drive and review data privacy frameworks including TOMs, policies, procedures and templates, that align with data privacy laws and regulations.
  • Perform Data Privacy Impact Assessments to identify privacy issues early, reduce privacy risk and cost through corrective actions. 
  • Review and maintain the privacy management workflows that enables clients to identify, log, investigate and resolve data privacy-related issues in accordance with industry best practices.
  • Deliver quality deliverables to clients along with development of compliance risk assessments.
  • Participation in proposition of services to the client (proposal writing)
  • Provide privacy, data protection and information security trainings.
  • Adhere to project management guidelines
  • Adhere to the firm’s risk management guidelines.