Associate Consultant/ Consultant - Data Privacy and IT Security

Job Summary:

As an Associate Consultant/ Consultant at Grant Thornton, you will be a key player in helping clients navigate complex privacy regulations, data protection laws, and IT governance frameworks. This role requires technical skills in data privacy, security, data governance, data classification, etc.

Participate and support in client engagements related to data privacy, governance, and security, ensuring project delivery on time, within scope, and within budget.

Key Responsibilities:

• Support clients in the design and implementation of privacy programs, including data protection impact assessments (DPIAs), data inventory mapping, and risk assessments.
• Work with clients to develop and implement data governance frameworks.
• Participate in data classification engagements covering data discovery, data classification schema and implementation of data classification framework/ controls.
• Support the development and execution of clients IT security and privacy programs aligned with ISO 27001, ISO 27701, and other regulatory frameworks.
• Assist clients in achieving and maintaining ISO 27001 and ISO 27701 certification, including conducting internal audits, risk assessments, and supporting the creation of security documentation.
• Communicate effectively with senior stakeholders and advise on key issues related to privacy, security, and governance.
• Assist in developing awareness programs to ensure that employees understand and follow data protection policies and best practices.
• Stay up-to-date with emerging privacy and IT security regulations, industry trends, and evolving threats.

Required Qualifications:

• Overall experience
• Associate Consultant : 2-3 Years
• Consultant : 3-5 Years
• Possess a Bachelors degree or equivalent in Information Technology, Data Science, Business, or a related field.
• Certification in ISO 27000 series certification (ISO 27001, ISO 27701, or related) is preferred
• 2-3 years of experience in data privacy and governance; and information security roles.
• Hands-on experience with implementing data privacy and IT security frameworks in client environments.
• Demonstrated understanding of global data protection regulations.
• Experience in working with data classification tools and technologies.

Desired Skills:

• Strong analytical and problem-solving abilities.
• Excellent communication skills with the ability to interact with senior stakeholders.
• Project management experience and ability to lead multiple projects simultaneously.