Senior Consultant - Cybersecurity, Privacy & Data Protection

at  KPMG

Overview:
At KPMG, you’ll join a team of diverse and dedicated problem solvers, connected by a common cause: turning insight into opportunity for clients and communities around the world.
Are you a talented individual with a proven track record on executing project deliverables.
Open to both Consultant or Senior Consultant levels
Join our rapidly expanding team, where you will be working with like-minded professionals helping our clients effectively solve their cybersecurity, privacy & data protection challenges today and prepare them for the ones tomorrow. This role offers you a unique opportunity to contribute to a diverse range of national and global initiatives including developing risk management and compliance programs, providing targeted advice, and implementation of cutting-edge technology solutions on a global scale.
Join our rapidly expanding team, where you will be working on diverse global projects, helping develop policies & programs, operationalize requirements, and facilitate regulatory compliance. This role offers a unique opportunity to contribute to a diverse range of initiatives, including, data protection, risk management, maturity assessment and implementation of cutting-edge privacy technologies.
As a valued member, you will be responsible for fieldwork and project delivery in a client facing environment and collaborate across our existing and new service offerings. If you’re passionate about Cybersecurity, Privacy & Data Protection and are eager to make a significant impact in a dynamic, fast-paced environment, we’d love to hear from you.
What you will do:

You will work as part of a team of problem solvers with extensive consulting and industry experience, helping our clients solve their complex business challenges from strategy to execution. Specific responsibilities include but are not limited to:

• Designing, implementing, and operationalizing cybersecurity and privacy risk management strategies, operating models, organizational capabilities, and safeguards.
• Conducting compliance and cybersecurity, privacy & data protection capability maturity assessments on organizational level and specific to existing or emerging technologies.
• Putting legal and regulatory requirements into business and technology context and providing actionable insights to businesses and technical teams (across Canada, EU, and USA).
• Advising on data governance, data lifecycle protection, data mapping, and wider aspects of information and data management.
• Implementing and managing data privacy management solutions across modules of, consent orchestration, data discovery & classification, data subject access requests, vendor assessment, records of processing activities and privacy impact assessments.
• Participating in the development and execution of advisory service plans, information risk management strategies, business cases, cost-benefit analysis, and benefits realization deliverables.
• Assisting with business and practice development efforts, proposals, marketing material, internal and external presentations, social engagement efforts, and white paper development.

What you bring to this role:

• A minimum of 2 to 4 years of relevant professional work experience.
• Preferably an advanced degree in business, computer science, science, law, or relevant degree subject, but we welcome people from all backgrounds if you have a passion for Cybersecurity, Privacy & Data Protection.
• Understanding and experience with application of principles, frameworks, and methodologies within the context of cybersecurity, privacy & data protection. This includes legal and regulatory requirements, GAPP, ISO27k family, ITIL, NIST CSF, NIST Privacy Framework, NIST RMF, etc.
• Experience in developing work products in a clear, organized structure, catering to a diverse audience across all enterprise functions.
• The ability to work independently with minimal supervision and effectively within a multi-disciplinary team.
• Excellent interpersonal communication skills (both verbal and written).
• Attention to detail and strong organizational skills with the ability to prioritize and manage workload effectively.
• A commitment to self-learning, continuous skill, and professional knowledge development.
• Industry relevant certifications from IAPP, ISO, ISACA, and/or OneTrust would be an asset.

You will work as part of a team of problem solvers with extensive consulting and industry experience, helping our clients solve their complex business challenges from strategy to execution. Specific responsibilities include but are not limited to:

• Designing, implementing, and operationalizing cybersecurity and privacy risk management strategies, operating models, organizational capabilities, and safeguards.
• Conducting compliance and cybersecurity, privacy & data protection capability maturity assessments on organizational level and specific to existing or emerging technologies.
• Putting legal and regulatory requirements into business and technology context and providing actionable insights to businesses and technical teams (across Canada, EU, and USA).
• Advising on data governance, data lifecycle protection, data mapping, and wider aspects of information and data management.
• Implementing and managing data privacy management solutions across modules of, consent orchestration, data discovery & classification, data subject access requests, vendor assessment, records of processing activities and privacy impact assessments.
• Participating in the development and execution of advisory service plans, information risk management strategies, business cases, cost-benefit analysis, and benefits realization deliverables.
• Assisting with business and practice development efforts, proposals, marketing material, internal and external presentations, social engagement efforts, and white paper development

What you bring to this role:

• A minimum of 2 to 4 years of relevant professional work experience.
• Preferably an advanced degree in business, computer science, science, law, or relevant degree subject, but we welcome people from all backgrounds if you have a passion for Cybersecurity, Privacy & Data Protection.
• Understanding and experience with application of principles, frameworks, and methodologies within the context of cybersecurity, privacy & data protection. This includes legal and regulatory requirements, GAPP, ISO27k family, ITIL, NIST CSF, NIST Privacy Framework, NIST RMF, etc.
• Experience in developing work products in a clear, organized structure, catering to a diverse audience across all enterprise functions.
• The ability to work independently with minimal supervision and effectively within a multi-disciplinary team.
• Excellent interpersonal communication skills (both verbal and written).
• Attention to detail and strong organizational skills with the ability to prioritize and manage workload effectively.
• A commitment to self-learning, continuous skill, and professional knowledge development.
• Industry relevant certifications from IAPP, ISO, ISACA, and/or OneTrust would be an asset