Deloitte Jobs

Job Information

Deloitte Confidentiality & Privacy - Technology & Data Risk Manager in Charlotte, North Carolina

Confidentiality & Privacy - Technology & Data Risk Manager

Confidentiality & Privacy is seeking an experienced Manager to contribute to strategic priorities and mitigation of confidentiality and privacy risks across the Deloitte US Firms. This role will primarily support the operational processes in evaluating technologies for confidentiality and privacy risks and may also participate in key strategic priorities. The successful candidate will be expected to quickly build subject matter expertise in the US Firms' confidentiality and privacy policies while providing impactful contributions to technology risk management. He or she will be expected to participate and manage confidentiality and privacy initiatives designed to safeguard confidential information and protect Deloitte's brand and reputation.

Work you'll do:

  • Lead Confidentiality and Privacy Impact Assessments. Review systems in development, being procured, or undergoing changes to evaluate for vulnerabilities and/or gaps in established controls, recommend mitigation measures. Update and track activities methodically with relentless attention to quality, accuracy, and timeliness.

  • Conduct risk assessment of established and emerging technologies such as artificial intelligence, , internet of things, metaverse technologies and privacy impacting hardware devices, and follow-up on progress of remediation activities.

  • Review and advise on technical requirements, vendor solutions, and data protection features of applications and systems utilized and/or delivered by the Deloitte US Firms.

  • Serve as the subject matter expert who business teams can turn to and rely on for timely and impactful guidance regarding confidentiality, privacy, technology, and risk.

  • Coordinate with leadership and key stakeholders to complete assessments.

  • Prepare and present analyses for leadership/management.

  • Develop in-depth understanding of the US Firms' businesses and enabling areas to provide quick response and guidance based on potential risks to Deloitte.

  • Lead projects to develop, implement or enhance the US Firms' confidentiality and privacy risk program.

  • Contribute to the design, development, and deployment of technology solutions to enhance confidentiality and privacy processes and mitigate risk.

The successful candidate will possess:

  • Demonstrated track record in sound judgment, investigation, strong attention to detail, and persistence in following/driving assessments to conclusion.

  • Excellent organizational, communications (oral and written), problem solving, and interpersonal skills.

  • Strong client service orientation - our stakeholders expect and deserve high quality work products and effective resolution of identified issues.

  • Executive presence, strong facilitation skills.

  • Remain calm while retaining your ability to influence others in high pressure situations.

  • Highly collaborative work ethic with demonstrated agility and strong teaming skills.

  • Strong project management skills while exhibiting an ability to multi-task across various initiatives and activities.

  • Quick and eager learner to apply new skills and technologies in a results-oriented manner.

    US Confidentiality & Privacy Strategic Priorities and Team

US Confidentiality & Privacy serves as a trusted advisor to the US Firms Businesses and Enabling Areas, providing guidance and consultation regarding confidentiality and privacy requirements and leading practices to support client service and internal operations in mitigating risk, responding to incidents, and implementing solutions. C&P's strategic priorities include:

  • Advising and consulting on confidentiality and privacy risks

  • Monitoring and facilitating compliance with regulatory and legal obligations

  • Helping to secure Confidential Information and preventing data loss

  • Assisting in the response and management of confidentiality and privacy incidents and insider violations


  • BA/BS in computer science, management information systems, cybersecurity, or related field or significant privacy industry experience required.

  • 7+ years of related experience, including a minimum of 5 years in Risk Management, technology risk, privacy, or cyber security. Prior experience in project delivery or quality management strongly preferred.

  • Experience of U.S. privacy legislation such as HIPAA, CAN-SPAM, COPPA, FCRA, GLBA, stated privacy laws, state data breach laws and the capability to apply regulatory requirements within an operational context.

  • Certified International Privacy Professional (CIPP), Certified Information Privacy Manager (CIPM), Certified Information Privacy Technologist (CIPT), Certified Information Security Systems Professional (CISSP), or Certified Information Systems Auditor (CISA) certification preferred.

  • Limited immigration sponsorship may be available

  • Ability to travel 0-10%, on average, based on the work you do and the clients and industries/sectors you serve.


  • Demonstrated track record of adding value through a combination of deep technical expertise, professional judgment, and process/program/project ownership.

  • Experience with privacy platform software preferred.

  • Experience and proficiency in MS Office products to include Word, PowerPoint, Excel, and Teams.

  • Experience of technologies used to collect, share, access and use personal data such as cookies, web beacons, data warehouse, and web analytic and decision support software.

    The Team

Risk & Brand Protection (R&BP)

At Deloitte, we are stewards of reputation-ours and our clients. That's why we foster a culture that protects, preserves, and enhances our reputation. With your help, we will distinguish Deloitte as the clear leader in professional services, making us the first choice for clients and talent.

Confidentiality & Privacy

Confidentiality & Privacy (C&P), led by the Chief Confidentiality & Privacy Officer is a steward for Deloitte's reputation. In that role, C&P is responsible for the development and deployment of a comprehensive program to mitigate confidentiality and privacy risks across the Deloitte US Firms. The team is highly collaborative, and individual contributions are measured relative to team contributions. C&P is organized around key service areas, which include:

  • Privacy Risk & Compliance

  • Insider Risk

  • Incident Management

  • Strategy & Engagement

  • Technology & Data Risk

Information for applicants with a need for accommodation:

You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.


All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.