Consultant - Data Privacy (Arabic Speaking Preferred)

About
Responsibilities:

• Execute projects related to data privacy gap assessments/audits, building strategies, frameworks, solution designs, and implementation related to data privacy and protection.
• Be part of project communications involving technology partners and member firms.
• Document project deliverables and ensure quality in project deliverables.
• Assist project managers in all project management meetings, including status updates and audit/technical assessment reports.
• Develop, drive, and review data privacy frameworks, including TOMs, policies, procedures, and templates that align with data privacy laws and regulations.
• Perform Data Privacy Impact Assessments to identify privacy issues early and reduce privacy risks and costs through corrective actions.
• Review and maintain the privacy management workflows that enable clients to identify, log, investigate, and resolve data privacy-related issues in accordance with industry best practices.
• Participate in the proposition of services to the client (proposal writing).
• Adhere to project management guidelines and the firm’s risk management guidelines.

Requirements

• Experience in international standards and local regulatory requirements related to data privacy and protection, e.g., ISO 27701, GDPR, ISO 27001, PCI DSS, NDMO, etc.
• Proficient in the following areas of data privacy:
  • Development and review of data privacy and protection strategies
  • Data Protection Impact Assessments
  • Development of data privacy frameworks, including TOMs, policies, procedures, and templates
  • Development & implementation of data privacy processes (e.g., Consent Management, DSAR requests, Data Privacy incident management, etc.)
  • Third-party privacy reviews
  • Audits against ISO 27701, GDPR, ISO 27001, PCI DSS, NDMO, etc.
• Proficient in data protection areas such as:
  • Data discovery of structured/unstructured data
  • Data classification and labeling
  • Data security cryptographic controls
  • Data loss prevention
  • Digital rights management
• Experience in using well-known products related to privacy management, data discovery, data classification/labeling, and data security will be an advantage.

Certifications
At least 1 or 2 of the following certifications:

• CIPT, CIPM, CIPP/E/US
• ISO 27701 Lead Auditor/Implementor
• CISSP
• CDPSE
• DCPP
• CISM

Skills

• Excellent team player
• Excellent communication and presentation skills
• Excellent report writing skills
• Privacy by Design
• DPIAs
• Data Privacy Incident Management
• ISO 27701, PCI-DSS, HIPAA, SOX, GDPR
• Arabic speaker is a must

Experience Summary

• Associate: 1 year of experience in data privacy and cyber security
• Consultant: 2-4 years of experience in data privacy and cyber security
• Senior Consultant: 3-6 years of experience in data privacy and cyber security

Location
Dubai, United Arab Emirates