Description:

At KPMG we are currently seeking Data Privacy Manager to join our Technology Risk & Cyber Consulting practice. This role mainly provides input and contributes to the planning and delivery of engagements related to the Data Privacy area.

Responsibilities:

• Support projects related to data privacy gap assessments/Audits, program design, building strategies, frameworks, solution designs, and implementation related to data privacy and protection tools.
• Support project communications involving technology partners and member firms.
• Ensure quality in project deliverables and documentation.
• Support client presentations.
• Support project management meetings including:
• Privacy and information security
• Gap analysis and impact analysis of regulations
• Status updates
• Audit / technical assessment reports
• Support the development of data privacy frameworks including TOMs, policies, procedures, and templates, that align with data privacy laws and regulations.
• Perform Data Privacy Impact Assessments to identify privacy issues early and reduce privacy risk and cost through corrective actions.
• Review and maintain the privacy management workflows that enable clients to identify, log, investigate and resolve data privacy-related issues in accordance with industry best practices.
• Support responses to client RFPs and pitches.
• Deliver quality deliverables to clients along with the development of compliance risk assessments.
• Provide privacy, data protection and information security trainings.
• Adhere to project management guidelines and financial budget management for engagements.
• Adhere to the firm’s risk management guidelines.

Requirements:

• An established consulting professional with strong experience in supporting projects focused on data protection and privacy regulations.
• Proven experience in international standards e.g., PDPA, GDPR, and any other Data Privacy regulations across the region.
• The ability to efficiently understand clients’ business models and to tailor relevant processes to privacy requirements.
• Proficient in the following areas of data privacy:
• Data Privacy current state/ maturity assessments
• Data Privacy Programme Design and implementation
• Report development and roadmap design
• Development and review of data privacy and protection strategies
• Data Protection Impact Assessments & Privacy by Design
• Development of data privacy framework including TOM, policies, procedures, and templates
• Development & implementation of data privacy processes (e.g. Consent Management, DSR requests, Data Privacy incident management, RoPA’s, DPIAs, Third Party Management, etc.)

Must have aleast 1 or 2 of the below certifications:

• CIPT, CIPM, CIPP/E/US
• ISO 27701 Lead Auditor/Implementor
• CISM