Your Role: Senior Data Protection Consultant
As a senior consultant, you will serve as a strategic advisor to our clients, leading engagements across privacy governance, compliance readiness, and risk management.
Key Responsibilities:
- Design, implement, and oversee privacy and data protection programs tailored to client needs.
- Evaluate clients’ privacy and security controls, identifying gaps and building actionable roadmaps.
- Monitor compliance, maintain activity logs, liaise with PDPA, escalate breaches, uphold independence, and get accredited
- Lead privacy gap assessments, PIAs, RoPA, DPIAs, and audits across diverse sectors.
- Provide strategic guidance on regulations, including PDPA, GDPR, CCPA, the Act, and emerging global laws.
- Develop and review privacy policies, training materials, and compliance documentation.
- Drive implementation of ISO 27001, ISO 27701, NIST, and other global frameworks.
- Support incident response planning, breach notification, and Data Subject Rights processes.
- Conduct internal audits, risk assessments, and ISMS documentation in alignment with certification requirements.
- Collaborate with cross-functional client teams to deliver end-to-end privacy solutions.
- Contribute to cybersecurity initiatives, including GRC strategy, policy development, and audit readiness.
Requirements
- 2+ years of hands-on experience in data privacy, protection, or cybersecurity consulting.
- Strong understanding of global privacy laws such as PDPL, GDPR, CCPA, and others.
- Solid grasp of ISO 27001, 27701, NIST, and related standards.
- Experience in privacy assessments, compliance projects, ISMS implementation, and client communication.
- Certifications such as CIPP/E, CIPM, CIPT, ISO/IEC 27001 LA/LI, and ISO/IEC 27701 (preferred).
- Excellent written and verbal communication skills, client-facing confidence, and analytical thinking.
- A mindset that is solution-oriented, collaborative, and growth-driven.
Must Have
- The candidate must be fully competent.
- Must hold at least a Bachelor’s Degree in Information Technology
- Possess a recognized professional certification in information security, cybersecurity, or information security audit. Alternatively, candidates with a minimum of two years of practical experience in any of these fields will also be considered.
- Should have a good reputation, with no final conviction for crimes involving breach of trust, honor, or professional ethics, unless legally reinstated.
- Must not have been dismissed from previous employment due to disciplinary actions or had their professional license revoked/suspended based on a disciplinary ruling.
- Passport or CPR Copy
