Data Privacy- Analyst
Pune, Maharashtra, India
KPMG India
KPMG is a global network of professional firms providing Audit, Tax and Advisory services.About Us:
A leading professional services firm with over 135,000 people working together to deliver value in more than 140 countries by providing deep industry insights in Audit, Tax & Advisory. Recorded over US$20 billion dollars in revenue in 2008. The joint venture office (KGS – KPMG Global Services) of KPMG LLP, KPMG Europe and KPMG India is seeking enthusiastic business strategy professionals to help strategize, develop, and execute future growth plans.
Designation: Data Privacy Analyst
Experience: Up to 3 years of experience in data privacy and cyber security
Language:
English
Certifications:
- At least 1 or 2 of the below certifications:
- CIPT, CIPM, CIPP/E/US
- ISO 27701 Lead Auditor/Implementor
- CISSP
- CDPSE
- CDPO
- DCPP
- CISM
Skills:
- Excellent Team player
- Excellent communication and presentation skills
- Excellent report writing skills
- Problem solving skills
- Privacy by Design
- DPIAs
- Data Privacy Incident Management
- Privacy Impact Analysis
- ISO 27701, PCI-DSS, HIPPA, SOX, GDPR
Experience
- Experience in international standards and local regulatory requirements related to data privacy and protection e.g. ISO 27701, GDPR, CCPA, ISO 27001, PCI DSS, IT Act/ Personal Data Protection Bill etc.
- Proficient in the following areas of data privacy:
- Development and review of data privacy and protection strategies
- Data Protection Impact Assessments
- Development of data privacy framework including TOM, policies, procedures, and templates
- Development & implementation of data privacy processes (e.g. Consent Management, DSAR requests, Data Privacy incident management, etc.)
- Third-party privacy reviews
- Audits against ISO 27701, GDPR, CCPA, ISO 27001, PCI DSS, PDPA, etc.
- Experience in using well-known products related to privacy management, data discovery, data classification/labeling and data security will be an advantage
- Good to have knowledge in following areas related data protection:
- Data Discovery of structured/unstructured data
- Data Classification and Labelling
- Data Security cryptographic controls
- Data Loss Prevention
- Digital Rights Management
- Endpoint Security
Responsibilities:
- Execute projects related to data privacy gap assessments/Audits, building strategies, frameworks, solution designs and implementation related to data privacy and protection.
- Be part of project communications involving technology partners and member firms
- Documentation of project deliverables.
- Ensure quality in project deliverables
- Be part of all client presentations.
- Assist PM’s and clients in all project management meetings including:
- Privacy and information security
- Gap analysis and impact analysis of regulations
- Status updates
- Audit / technical assessment reports
- Develop, drive and review data privacy frameworks including TOMs, policies, procedures and templates, that align with data privacy laws and regulations.
- Perform Data Privacy Impact Assessments to identify privacy issues early, reduce privacy risk and cost through corrective actions.
- Review and maintain the privacy management workflows that enables clients to identify, log, investigate and resolve data privacy-related issues in accordance with industry best practices.
- Deliver quality deliverables to clients along with development of compliance risk assessments.
- Participation in proposition of services to the client (proposal writing)
- Provide privacy, data protection and information security trainings.
- Adhere to project management guidelines
- Adhere to the firm’s risk management guidelines.
About Us:
A leading professional services firm with over 135,000 people working together to deliver value in more than 140 countries by providing deep industry insights in Audit, Tax & Advisory. Recorded over US$20 billion dollars in revenue in 2008. The joint venture office (KGS – KPMG Global Services) of KPMG LLP, KPMG Europe and KPMG India is seeking enthusiastic business strategy professionals to help strategize, develop, and execute future growth plans.
Job Requirements:
We are seeking enthusiastic & technically savvy professionals to support the current team with the execution and management of engagements in our current and future Client portfolio.
- Information Security Governance, Privacy and Compliance and Security Assessment experience with a focus on IT and IS Risk Assessments and program reviews / establishment.
- Understanding on ISO 27001/ NIST 800-53/ PCI-DSS
- Interacting with onshore engagements and clients directly performing Vendor or Third-party security assessments
- Business Continuity planning and Disaster Recovery implementation and review experience.
- Perform remote assessments independently.
- Independently write reports of the assessments based on the discussions during remote reviews.
- Perform second level quality review of the reports written by peers/junior resources
Soft Skills:
- Strong client interaction skills, both written and verbal
- Highly Fluent in English – verbal and written
Additional Qualification:
- Prior consulting experience with big 4 or large clientele is preferable.
- CISA/ CISSP/ CISM/ CIPP/ ISO 27001 is preferable.
KPMG is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances.
About Us:
A leading professional services firm with over 135,000 people working together to deliver value in more than 140 countries by providing deep industry insights in Audit, Tax & Advisory. Recorded over US$20 billion dollars in revenue in 2008. The joint venture office (KGS – KPMG Global Services) of KPMG LLP, KPMG Europe and KPMG India is seeking enthusiastic business strategy professionals to help strategize, develop, and execute future growth plans.
Designation: Data Privacy Analyst
Experience: Up to 3 years of experience in data privacy and cyber security
Language:
English
Certifications:
- At least 1 or 2 of the below certifications:
- CIPT, CIPM, CIPP/E/US
- ISO 27701 Lead Auditor/Implementor
- CISSP
- CDPSE
- CDPO
- DCPP
- CISM
Skills:
- Excellent Team player
- Excellent communication and presentation skills
- Excellent report writing skills
- Problem solving skills
- Privacy by Design
- DPIAs
- Data Privacy Incident Management
- Privacy Impact Analysis
- ISO 27701, PCI-DSS, HIPPA, SOX, GDPR
Experience
- Experience in international standards and local regulatory requirements related to data privacy and protection e.g. ISO 27701, GDPR, CCPA, ISO 27001, PCI DSS, IT Act/ Personal Data Protection Bill etc.
- Proficient in the following areas of data privacy:
- Development and review of data privacy and protection strategies
- Data Protection Impact Assessments
- Development of data privacy framework including TOM, policies, procedures, and templates
- Development & implementation of data privacy processes (e.g. Consent Management, DSAR requests, Data Privacy incident management, etc.)
- Third-party privacy reviews
- Audits against ISO 27701, GDPR, CCPA, ISO 27001, PCI DSS, PDPA, etc.
- Experience in using well-known products related to privacy management, data discovery, data classification/labeling and data security will be an advantage
- Good to have knowledge in following areas related data protection:
- Data Discovery of structured/unstructured data
- Data Classification and Labelling
- Data Security cryptographic controls
- Data Loss Prevention
- Digital Rights Management
- Endpoint Security
Responsibilities:
- Execute projects related to data privacy gap assessments/Audits, building strategies, frameworks, solution designs and implementation related to data privacy and protection.
- Be part of project communications involving technology partners and member firms
- Documentation of project deliverables.
- Ensure quality in project deliverables
- Be part of all client presentations.
- Assist PM’s and clients in all project management meetings including:
- Privacy and information security
- Gap analysis and impact analysis of regulations
- Status updates
- Audit / technical assessment reports
- Develop, drive and review data privacy frameworks including TOMs, policies, procedures and templates, that align with data privacy laws and regulations.
- Perform Data Privacy Impact Assessments to identify privacy issues early, reduce privacy risk and cost through corrective actions.
- Review and maintain the privacy management workflows that enables clients to identify, log, investigate and resolve data privacy-related issues in accordance with industry best practices.
- Deliver quality deliverables to clients along with development of compliance risk assessments.
- Participation in proposition of services to the client (proposal writing)
- Provide privacy, data protection and information security trainings.
- Adhere to project management guidelines
- Adhere to the firm’s risk management guidelines.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits CCPA CIPP CISA CISM CISSP Compliance Endpoint security GDPR Governance ISO 27001 NIST NIST 800-53 PCI DSS Privacy Risk assessment Risk management Security assessment SOX Strategy
Perks/benefits: Career development Medical leave
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Penetration Tester jobs
- Open Security Operations Engineer jobs
- Open Cloud Security Architect jobs
- Open Principal Security Engineer jobs
- Open Information Security Specialist jobs
- Open Information Security Officer jobs
- Open Senior Cyber Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Senior Product Security Engineer jobs
- Open IT Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Penetration Tester jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Cybersecurity Consultant jobs
- Open Senior Network Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Security Consultant jobs
- Open Security Operations Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open IT Security Analyst jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open SOC-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open DoD-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open APIs-related jobs
- Open SaaS-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Java-related jobs
- Open TS/SCI-related jobs