With the increasing complex global privacy regulatory environment, companies are working to implement privacy programs to address compliance and reduce the risk of a breach of personal information, while focusing on the customer experience. Grant Thornton’s Cyber Risk practice helps companies address these issues within our Privacy and Data Protection discipline. We focus on helping clients transform and sustain their privacy programs through automation, process re-engineering and managed services. Our goal is not only to help clients address one-time compliance needs, but to make privacy an essential part of the enterprise value chain, continuously monitoring data privacy risks and enhancing competitive advantage in the marketplace.
Our Privacy and Data Protection discipline offers an opportunity for you to leverage your privacy and information security knowledge, assessment and program implementation experience to broaden your business and project management skills in a rewarding and challenging environment. Our clients include Fortune 500 companies across sectors such as Technology, Financial Services, Life Sciences, and Retail sectors, giving you insights into the leading privacy programs around the world. The Privacy and Data Protection Senior Associate will contribute to a positive and collaborative working environment through building relationships with team members, interfacing directly with clients on privacy projects, and leading the planning and day to day execution of projects. Responsibilities include engagement planning, project management, , creation of high quality deliverables, leading client meetings, building client relationships, research and developing thought leadership.
Essential Duties and Responsibilities
Adhere to the highest degree of professional standards and strict client confidentiality.
Ability to manage multiple engagements and competing priorities in a rapidly growing, fast-paced, interactive, results-based team environment.
Ability to communicate in an organized and knowledgeable manner in written and verbal means – including delivering clear requests for information, developing responses to client requests, and communicating conflicts and risks.
Deep understanding of global privacy and data protection regulations, such as EU’s GDPR and US laws such as CCPA, CPRA, CDPA, CPA, HIPAA, GLBA.
Apply current knowledge of privacy and data protection trends and to issues and other opportunities for improvement.
Assist clients in planning and executing remediation plans identified in assessment activities.
Proactively interact with key client management to gather information, resolve problems and make recommendations for improvements.
Collaborate with team members at all levels in the development and marketing of the privacy service offering.
Develop high quality deliverables through collaboration with clients and team members to address needs and demonstrate an understanding of clients’ business.
Additional duties as assigned.
Bachelor’s degree in Cybersecurity, Information Technology, Computer Science or a related field is required. A Masters or JD degree is preferred.
3+ years of related work experience in a similar consulting practice or function, servicing cross- industry clients at a national level.
Certification(s) Preferred: Obtained or demonstrates an active pursuit of one or more of the following certifications: Certified Information Privacy Professional (CIPP), Certified Information Privacy Technologist (CIPT), Information Systems Security Professional (CISSP), or other related certifications.
Experience working with leading privacy regulations to perform privacy assessments and support privacy program implementations.
Experience preparing reports and other deliverables that contain strategy, project, or technical analysis and findings in connection with consulting engagements and communicating those results to the team and client.
Knowledge of privacy technology solutions and experience implementing and sustaining tools such as OneTrust, WireWheel, Securiti.ai, BigID is a plus.
Experience in project management and the ability to clearly communicate privacy and data protection issues verbally on both a formal and informal basis to all levels of client staff.
Exceptional client service and communication skills, with a demonstrated ability to develop and maintain outstanding client relationships.
Demonstrates creative thinking and problem-solving skills, and advanced knowledge of MS Office Word, Excel, Visio, and PowerPoint.
Ability to work additional hours as needed and travel on a regular basis to clients as required.