M/ SM, Consulting (Cyber Governance and Privacy)

Send your CV to CV@wwhcc.com now!

Our Client is A Big-4 Consulting Firm 

Responsibilities:

  • Data Protection & Privacy: to assess and consult clients on data privacy, implementation of data protection programs, to address confidentiality and security over customer, employee or patient data. You will gain insights into the design and operations of privacy programs and strategies in a variety of industries and learn how to design measurable programs to keep up with the ever changing regulatory landscape. 
  • Cyber Transformation: to better connect and integrate privacy and cybersecurity programs and strategies for our clients. You will gain experience applying risk management principles to a cybersecurity and privacy environment by leveraging cybersecurity and privacy frameworks / standards like ISO/IEC 27001:2013, 27018, NIST CSF, NIST 800-53, etc. You will design solutions to remediate gaps or enhance maturity of specific cybersecurity and privacy capabilities. And you will implement or improve cyber security management strategies and processes at the clients’ organization. 

Requirements:

  • Outstanding, up-to-date knowledge about current privacy and data protection challenges and trends; 
  • Knowledge of the current security environment and industry trends to identify engagement and client service issues, communicate this information to the engagement team and client management through written correspondence and verbal presentations  
  • Work closely with executives (senior managers and partners) to co-lead, motivate teams and provide leadership in client engagements;   
  • Foster relationships with client personnel to analyze, evaluate, and enhance information systems to develop and improve security at procedural and governance levels  
  • Deliver quality client services. Drive high-quality work products within expected timeframes and on budget  
  • Bachelor or Master Degree in Business Information Technology or Law, or equivalent education with touch points to Privacy and Cybersecurity topics 
  • 6 to 12 years of related work experience.   
  • Passion for consulting, privacy, and cybersecurity 
  • A proven track record in building new client relations and instigating projects
  • Knowledge of one or more of the following areas:  
  • Privacy  assessments and implementations; 
  • Privacy policies, standards, operating models, strategies and roadmaps 
  • Privacy-by-design; 
  • Privacy  awareness and training;
  • Privacy operations, e.g.  metrics and reporting;
  • Third party risk management;
  • Data retention and deletion policies or mechanisms;
  • Developing privacy-related automated procedures (e.g. data subjects requests, incident response, deletion and retention); 
  • Data transfers and transfer mechanisms. 
  • An industry recognized privacy certification, e.g. CIPP/E, CIPM, CIPT 
  • A solid knowledge of security frameworks and standards such as ISO 27001/2, NIST 800-53 and the connection with privacy operations and compliance 
  • Excellent knowledge of privacy regulations such as GDPR, CSL, DSL, PIPL, CCPA, etc. 
  • Excellent written and verbal communication skills in English, Cantonese or Mandarin 
  • Strong client services orientation and accustomed to taking a proactive role in engagements 
  • Flexible, responsible and self-confident personality, who feels comfortable in client’s environment 
  • Strong presentation and communication skills

Interested parties, please send your CV in MS Word format with an indication on present and expected salary to Mr. Lee via email at alee@wwhcc.com, thanks!