We are looking for consultants with extensive consulting, technological and industry experience who will help our clients solve their complex business issues from strategy through execution. A Cybersecurity and Privacy consulting career will provide the opportunity to grow and contribute to our clients' business issues every day, applying a collection of information and Cyber security capabilities, including security and privacy strategy and governance, IT risk, security testing, technology implementation/operations, and cybercrime and breach response.
Privacy Compliance and Data Protection works with the areas of Privacy and/or Security Program Development and Strategy, Information and Operational Risk Management and Compliance, Data Use and Protection and Legal and Financial Services operational risk.
At PwC, our team members have subject matter expertise with US federal, state, and/or international privacy laws including but not limited to GLBA Reg P, TCPA, the EU General Data Protection Regulation, the APEC CBPR and other industry specific regulations such as NAIC.
Our team assists clients in the development of corporate privacy programs, including policies, procedures and training, supporting technology deployments, planning for and attaining BCRs, conducting large and small scale privacy risk assessments, development of Third Party Risk Management programs, and incorporating privacy by design principles into product development.
Position/Program Requirements
Minimum Year(s) of Experience: 10
Minimum Degree Required: Bachelor's degree
Degree Preferred: Juris Doctorate (JD) or Master of Laws (LLM) degree
Certification(s) Preferred: Certified International Privacy Professional (CIPP/US) and/or additional CIPP certification in government privacy (CIPP/G), European privacy (CIPP/E); preferred additional certification as Project Management Professional (PMP) and information security credentials such as the CISSP.
Knowledge Preferred:
Demonstrates thought leader-level knowledge with, and/or a proven record of success directing efforts in financial services, banking, capital markets and insurance industries by assisting in developing for clients global privacy compliance programs, conducting privacy and security assessments and managing vendors including the following areas:
- Federal, State or International data privacy laws, i.e. Reg P, Reg V, TCPA, FCRA, European Data Protection Directive (95/46/EC), MA 201 CMR 17.00, Children's Online Privacy and Protection Act (COPPA) and State Breach Disclosure Laws;
- Strategy, operations and management in functional and operational areas within the Financial Services Industries, emphasizing the intersection of privacy, security, compliance and risk; and,
- Project leadership and/or management of multiple large and complex engagements, including proposal response writing, pre-sale and initial scoping, SOW development, and final delivery and signoff activities.
Skills Preferred:
Demonstrates thought leader-level abilities with, and/or a proven record of success directing efforts to generate and maintain an annual book of business valued at $2 million+ within the Financial Services Industry, overseeing and managing concurrent multiple, complex projects including the following areas:
- Direct the identification and addressing of client needs-building, maintaining, and utilizing networks of client relationships and community involvement; communicating value propositions; managing resource requirements, project workflow, budgets, margins, billing and collection;
- Lead and supervise teams to create an atmosphere of trust and seek diverse views to encourage improvement and innovation; answer questions and provide direction to less-experienced staff, coach staff including providing timely meaningful written and verbal feedback;
- Provide opportunities to contribute to practice development through the development of new collateral and thought leadership pieces, as well as participation in sales and driving revenue;
- Develop methodologies and /or conduct audit and monitoring plans based on US Federal or State data protection and privacy laws and regulations, emphasizing effective privacy and data security awareness and education plans based on regulatory requirements and clients’ needs consistent with their policies and culture;
- Identify data privacy compliance risks and vulnerabilities-advising clients on relevant compliance and regulatory issues, assessing related risks and controls, and implementing related compliance supervisory and control solutions;
- Oversee and lead teams to execute privacy compliance assessments and conduct gap analyses against Federal, State and/or international data privacy laws: develop methodologies and tools to assist clients with developing and deploying their privacy compliance and data protection programs related to such laws and regulations;
- Develop protocols and controls to test clients' privacy policies and procedures, comparing clients operations to privacy-related regulatory requirements that result in developing practical recommendations and
improvements to reinforce adherence to, or proffering revisions that balance both regulatory compliance and business operational needs involving, policies and controls.
Now submit your application online and subscribe to email or follow us on twitter to get similar jobs in the future.
Posts
