SA/LSA/SSA-Data Privacy-Hyderabad/Bengaluru/Gurgaon/Mumbai

仕事内容

SCAM ALERT: Caution against fraudulent job offers!
More Info

×

SCAM ALERT
Caution against fraudulent job offers!

We have been informed of instances where jobseekers are led to believe of fictitious job opportunities with Deloitte India (“Deloitte”). In one or more such cases, false promises of actual or potential selection, or initiation or completion of the recruitment formalities appear to have been or are being made. Some jobseekers appear to have been asked to pay money to specified bank accounts of individuals or entities as a condition of their selection for a ‘job’ with Deloitte. These individuals or entities are in no way connected with Deloitte and do not represent or otherwise act on behalf of Deloitte.

We would like to clarify that:
At Deloitte, ethics and integrity are fundamental and not negotiable.
We are against corruption and neither offer bribes nor accept them, nor induce or permit any other party to make or receive bribes on our behalf.
We have not authorised any party or person to collect any money from jobseekers in any form whatsoever for promises of getting jobs in Deloitte.
We consider candidates on merit and that we provide an equal opportunity to eligible applicants.
No one other than designated Deloitte personnel (e.g., a Deloitte recruiter or Deloitte hiring partner) is permitted to extend any job offer from Deloitte.

Anyone who at any time has made or makes any payment to any party in exchange of promises of job or selection for a job with Deloitte or any matter related to this (including those for ‘registration’, ‘verification’ or ‘security deposit’) or otherwise engages with any such person who has made or makes fraudulent promises or offers, does so (or has done so) entirely at their own risk. Deloitte takes no responsibility or liability for any such unauthorised or fraudulent actions or engagements.
We encourage jobseekers to exercise caution.

Privacy Solution Advisor / Lead Solution Advisor/Senior Solution Advisor

Deloitte’s Cyber Risk Services have been recognized as a leader by a number of independent analyst firms. Kennedy Consulting Research & Advisory, a leading analyst firm, recently named Deloitte a global leader in cyber security consulting. Source: Kennedy Consulting Research & Advisory; Cyber Security Consulting 2013; Kennedy Consulting Research & Advisory estimates © 2013 Kennedy Information, LLC. Reproduced under license.

Your Role

Proactively identify and evaluate implementation of privacy initiatives through monitoring and testing. The role will undertake data protection & privacy impact assessments for relevant projects and with various functions and advise on mitigations to identified privacy risks.
Work with operations and functional teams to ensure data protection and privacy initiatives are understood and implemented
Pro-actively analyze existing operations policies, processes, systems, controls and training material to assess areas for improvement in respect of data protection and make recommendations for change
Work with legal team to identify regulatory requirements across jurisdictions related to privacy and data protection
Work with legal and other teams to translate regulatory requirements to process improvements and initiatives and drive through completion
Develop and support frameworks for monitoring and reporting ongoing compliance with regulation and standards
Support internal privacy and compliance audits
Review privacy impact assessments completed by the businesses
Manage day-to-day privacy issues, such as data security incident responses, data protection agreement consultation, privacy complaints and resolution, subject access requests, management of Regulatory notifications and International Data Transfers.
Research and analysis on developments in privacy law
Support in assessing and implementing privacy and/or data protection enhancements and automation tools and providers
Undertake privacy and/or data protection implementation and transformation projects and guide clients on their privacy compliance journey
Key stakeholder in the development and ongoing management of privacy program across geographies, including the Governance Framework, Policy set, compliance risks, compliance roadmap, training, retention, audit and reporting requirements.
Remain up to date with the requirements of legislation and conduct necessary gap analysis processes to identify and help build remedial work programs and highlight ongoing program risks.

The Team

Cyber Risk Services (CRS) group is part of the wider Technology Risk Service line within Advisory practice in Deloitte. We help “Fortune 500” clients solve business issues related to risk management, cyber threats, privacy, governance, business resilience, & process improvements. Learn more about our Cyber Risk Services practice.

Deloitte’s Cyber Strategy and Governance practice is focused on helping our clients to design and implement transformational programs to reduce and manage cyber threats. We help our clients to define their overall cyber strategy, design global, pan-enterprise programs that focus on mitigating threats, evaluate their objectives, priorities, strengths, and weaknesses and roll out large scale organizational changes to achieve goals.

Qualifications and Experience Required

Work experience: 4 to 8 years
Experience in specific industry verticals is preferred and a thorough understanding of privacy and data protection specific compliance requirements within those verticals.
Understanding and knowledge of industry standards and industry frameworks (e.g., AICPA/GAPP, PCI, OECD, FIPP, APEC Privacy Framework Etc).
Understanding of security and privacy laws and regulations both US and Global (e.g., GDPR, MCCs, BCRs, HIPAA, GLBA, PCI, CCPA, CPRA).
Experience in performing data privacy risk assessments/privacy impact assessments (PIAs).
Experience in developing data protection and privacy strategies and roadmaps.
Experience in planning and implementation of data protection and privacy controls.
Experience in developing data protection and privacy policies, standards, and procedures.
Experience on Privacy Enhancement and Automation tools such as OneTrust, BigID
Experience in creating data privacy notice and consent forms, third party/vendor contracts.
Excellent documentation and communication skills.

Preferred

B.Tech/B.E/MS/MBA
Experience on operating and implementing Privacy Enhancement and Automation tools such as OneTrust, BigID
Professional certifications related to GDPR, Privacy (e.g., CIPP) or others such as CISA / ISO27001 LA etc are preferable
CIPP/CISSP
Functional and nonfunctional privacy requirements definition and documentation experience

How you’ll grow

At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in exactly the same way. So, we provide a range of resources including live classrooms, team- based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India

Benefits

At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you.

Deloitte’s culture

Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte.

Corporate citizenship

Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people, and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world.

About Deloitte

Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee (“DTTL”), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as “Deloitte Global”) does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the “Deloitte” name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms.

Copyright © 2021 Deloitte Development LLC. All rights reserved.

Qualifications and Experience Required

Work experience: 4 to 8 years
Experience in specific industry verticals is preferred and a thorough understanding of privacy and data protection specific compliance requirements within those verticals.
Understanding and knowledge of industry standards and industry frameworks (e.g., AICPA/GAPP, PCI, OECD, FIPP, APEC Privacy Framework Etc).
Understanding of security and privacy laws and regulations both US and Global (e.g., GDPR, MCCs, BCRs, HIPAA, GLBA, PCI, CCPA, CPRA).
Experience in performing data privacy risk assessments/privacy impact assessments (PIAs).
Experience in developing data protection and privacy strategies and roadmaps.
Experience in planning and implementation of data protection and privacy controls.
Experience in developing data protection and privacy policies, standards, and procedures.
Experience on Privacy Enhancement and Automation tools such as OneTrust, BigID
Experience in creating data privacy notice and consent forms, third party/vendor contracts.
Excellent documentation and communication skills.

Preferred

B.Tech/B.E/MS/MBA
Experience on operating and implementing Privacy Enhancement and Automation tools such as OneTrust, BigID
Professional certifications related to GDPR, Privacy (e.g., CIPP) or others such as CISA / ISO27001 LA etc are preferable
CIPP/CISSP
Functional and nonfunctional privacy requirements definition and documentation experience

\“Deloitte\” is the brand under which tens of thousands of dedicated professionals in independent firms throughout the world collaborate to provide audit, consulting, financial advisory, risk management and tax services to selected clients. These firms are members of Deloitte Touche Tohmatsu Limited DTTL, a UK private company limited by guarantee. Each member firm provides services in a particular geographic area and is subject to the laws and professional regulations of the particular country or countries in which it operates. DTTL does not itself provide services to clients. DTTL and each DTTL member firm are separate and distinct legal entities, which cannot obligate each other. DTTL and each DTTL member firm are liable only for their own acts or omissions and not those of each other. Each DTTL member firm is structured differently in accordance with national laws, regulations, customary practice, and other factors, and may secure the provision of professional services in its territory through subsidiaries, affiliates and/or other entities.
In the United States, Deloitte LLP is the member firm of DTTL. Like DTTL, Deloitte LLP does not provide services to clients. Instead, services are primarily provided by the subsidiaries of Deloitte LLP, including:
Deloitte & Touche LLP
Deloitte Consulting LLP
Deloitte Financial Advisory Services LLP
Deloitte Tax LLP

Requisition code: E22HYDSSAPB-Privacy