San Francisco Bay Area, CA.
JPI is seeking highly talented privacy Senior Consultants to join one of our partners in their Intellectual Property and Technology group, Technology, Sourcing and Commercial subgroup in the San Francisco office.
This is the most common entry position into this field for those with an advanced degree and/or varied experience in the privacy and risk management field. Position interacts with clients on a day-to-day basis and takes part in managing the client relationship. Performs complex analysis and manages various aspects of the project. Assists clients in identifying risks and developing strategic solutions for managing them. Works with internal team to build and implement a pragmatic and integrated solutions to privacy and risk issues. Incumbents are generally in this position for three years before moving into more senior-level roles.
The client service professional should have a broad range of consultative risk management skills in the areas of evaluating and identifying controls to manage and mitigate privacy and data protection risk, specifically
- Identifying privacy and data protection risks, requirements and controls
- Performing data inventory, mapping and analysis activities
- Assisting clients with designing and implementing privacy and data governance programs, processes and controls
- Supporting client training and awareness programs
Core competencies should include the planning, execution, and delivery of engagements across the broad disciplines of conducting risk assessments, policy, standards, and procedures development, Privacy by Design (PbD) evaluation, cloud and shared control environment assessments, operating model design, and metrics and reporting dashboards.
The candidate should be familiar with laws, regulations, and industry standards such as California Consumer Privacy Act (CCPA), General Data Protection Regulation (GDPR), PCI DSS (Payment Card Industry Data Security Standard), Health Information Portability and Accountability Act (HIPAA), Gramm-Leach-Bliley Act (GLBA) National Institute of Standards & Technology (NIST) SP800-53 and Cybersecurity Framework, and International Organization for Standardization (ISO) series 27001/2, 27005, 31000.
Prior Big 4 or consulting experience preferred with excellent verbal and written communication skills.
Experience with Microsoft Office Suite including Visio with emphasis on PowerPoint to storyboard client engagements and Excel for analysis.
Relevant certifications: CISSP, CIPP, CISA
Prior Experience: 3-5 years
Travel required, 30-40% (max)
We are looking for Sr. Consultant candidates who:
- Are comfortable with owning and delivering smaller projects more independently without significant oversight from management,
- Have ability to develop creative solutions to complex problems and manage execution, and
- Able to manage multiple and often competing deadlines and client needs
- 3-5 years of experience with relevant certifications: CISSP, CIPP, CISA
JPI is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.