Job Description
About KPMG in India
KPMG entities in India are professional services firm(s). These Indian member firms are affiliated with KPMG International Limited. KPMG was established in India in August 1993. Our professionals leverage the global network of firms, and are conversant with local laws, regulations, markets and competition. KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Jaipur, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, Vadodara and Vijayawada.
KPMG entities in India offer services to national and international clients in India across sectors. We strive to provide rapid, performance-based, industry-focused and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment.
TempHtmlFile
Data Privacy
Job Title
Function: IT Advisory in Risk Consulting
Location:
Position Summary
The position will require candidates to assist organizations in establishing enterprise privacy governance framework and driving privacy initiatives. It is a techno functional role in Data Privacy and Data Protection. Candidates will be required to develop creative solutions in privacy space for key stakeholders. The position requires candidates to be aware of global privacy regulatory landscape, understand and interpret regulatory clauses into privacy requirements and provide tailor made recommendations to organizations. The role requires understanding of latest technology and tools available in the market.
The position will involve leading and executing engagements, create quality deliverables for various Data Privacy and Data Protection activities for stakeholders. The position interacts with Senior Management across organizations.
Roles and Responsibilities
- Assist key stakeholder consultations regarding operational impact of data protection related laws, regulations, client contractual requirements, broad data industry practices and consider the resulting changes in organizations policies, procedures, systems, training, awareness, and monitoring activities
- Design / re-design processes and privacy controls to ensure compliance with laws, regulations, and internal standards in the most efficient, streamlined and customer centric way
- Recommend creative solutions and participate in discussions regarding the recommendations with various stakeholders
- Execute and provide a sustainable privacy framework based on different regulations / standards / industries / client requirements, and assess privacy risks
- Draft / update policies, guidelines, procedures, and documentation as required based on external or internal changes for our clients based on different regulations / standards / industries
- Define privacy metrics and corresponding dashboards for monitoring and reporting purposes
- Assist in the coordinating and reporting of various Data Protection activities to stakeholders in clients. In that regard, the position interacts with executive level personnel and client account teams or functional groups
- Assist in developing various awareness communications, training, and workshop materials
- Assist in research, Point of Views (PoVs) and Thought Leaderships on Data Privacy and Data Protection
- Develop Data Flow Diagrams (DFDs) and Data Inventory for organizations
- Conducts Data Protection / Privacy Impact Assessments (PIAs)
- Propose solutions for improvement and/or develop new approaches and / or policies / guidance by leveraging their knowledge of existing processes and business experience by considering Privacy as a design
- Maintain and expand current knowledge of field of expertise and communicates new developments and resulting impact to clients and team members
- Develop relationships and builds a network of people within the team and across the firm
- Conduct assessments / surveys (e.g. on privacy impact / risk & controls) / data gathering and analysis on applications, products, processes, documentation and third parties to evaluate compliance with laws, regulations, and internal standards
Knowledge And Skills Requirements
- Ability to learn and understand the firm and data protection polices as well as familiarity with other risk management initiatives
- Ability to manage tasks and activities in a timely manner and be responsible for specific outcomes
- Strong knowledge of data privacy and protection regulation (Example: GDPR, PDPB, PDPA, APP, CCPA to name a few)
- Demonstrate knowledge on data protection solutions such as DLP, DRM, Cloud Security, Encryption, MDM to name a few
- Demonstrate knowledge on data privacy solutions such as One Trust, Privacy.AI to name a few
- Requires a solid understanding of firm's business and area wide privacy issues and concerns
- Requires an understanding the high-level technology issues surrounding information security as well as the firm's application architecture for those applications which process personal or client confidential data
- Basic knowledge of privacy tools, project management tools and methodologies
- Problem solving, flexibility and initiative
- Ability to keep confidential sensitive information
- Strong research and communications skills
- Expected to interface with executive leaders and must be able to demonstrate expanded knowledge of one or more functional areas while communicating processes, identifying, and providing solutions for mitigating risk factors associated with quality & risk management initiatives
- May take responsibility for a discreet component(s) of a project and work independently with periodic feedback
- Assist in the training of Associates and/or Intern to familiarize these individuals with firm processes and policies and enable these members to handle more complex issues
Other Requirements
Job Requirements
Education
- Bachelor's degree or equivalent work experience
- Legal degree
Certification Requirements
- DSCI Certified Privacy Professional
- DSCI Certified Privacy Lead Assessor
- Certified Information Privacy Manager
- Certified information Privacy Professional/ Asia
- Certified information Privacy Professional/ Canada
- Certified information Privacy Professional/ Europe
- Certified information Privacy Professional/ US
- Certified Information Privacy Technologist
Equal employment opportunity information
KPMG India has a policy of providing equal opportunity for all applicants and employees regardless of their color, caste, religion, age, sex/gender, national origin, citizenship, sexual orientation, gender identity or expression, disability or other legally protected status. KPMG India values diversity and we request you to submit the details below to support us in our endeavor for diversity. Providing the below information is voluntary and refusal to submit such information will not be prejudicial to you.
Qualifications
TempHtmlFile
Data Privacy and Protection - BE, LLB or LLM
Certifications - IAPP Privacy
