Deloitte Senior Consultant/Specialist, Office of Confidentiality & Privacy in Dallas, Texas
Confidentiality and Privacy / Risk Management
This position will support operational processes of the Deloitte U.S. Firms Office of Confidentiality and Privacy. The Office of Confidentiality and Privacy is part of the Risk and Regulatory Affairs organization within Deloitte LLP. Key responsibilities of this position are to safeguard Deloitte and client confidential information to protect, preserve, and enhance our reputation while fostering a positive culture for our employees.
Location any U.S. Deloitte office
Related experience reviewing privacy impact assessments or other risk assessments
Related certifications CIPP, CIPM, CIPT, CISA, or CISSP
- At least 3 years of relevant experience (e.g., privacy impact assessments, risk assessments, data privacy, or system auditing)
Work you ll do
Key responsibilities of this position are working as a liaison between the business and technology teams to review privacy and confidentiality risk associated with planned technologies.
Review Privacy Impact Assessment: Upon receipt, review the assessment responses that explain how personally identifiable information (PII) will be protected within the new or updated Deloitte or vendor system. Leveraging the training and ongoing support that will be provided, conduct the following key tasks:
Identify insufficient responses: Locate responses that do not align with Deloitte policies or standards. Learn how to identify privacy risk and related mitigations.
Consult with submitter or interviewee: Communicate residual risks or gaps with the submitter of the assessment. Request the submitter to strengthen the privacy controls and/or documentation. Collaborate with various teams during this process (e.g., Information Security, business representatives, Office of General Counsel).
Determine appropriate next steps: Approve or decline the assessment, and escalate issues as needed.
Conduct Confidentiality Assessment: Learn how to conduct a verbal confidentiality assessment to understand how Confidential Information (CI) will be protected within the new or updated Deloitte or vendor system or Deloitte process.
Identify risk: Observe demonstrations of new or updated technologies to locate areas of privacy and confidentiality risk.
Consult with project team and business leadership: Communicate risks or gaps with the project team and business leaders. Request the project team to explain how risk can be mitigated prior to deployment.
Determine appropriate next steps: Collaborate between business leaders and project team to determine whether changes will be made or whether alternative solutions are viable.
- Technical aptitude and willingness to learn
Ability to work as a self-starter; ability to track and resolve reviews within your own portfolio and escalate to leadership as necessary
Ability to remain responsive while tackling new and high-risk reviews
Ability to identify process improvements to overall process
Assist with other team initiatives:
- Assist in various projects related to mitigating privacy and confidentiality risk for the firm. For example, assessing confidentiality and privacy risk with third parties, new technologies in the marketplace, assessing and helping to deploy new technology safeguards.
Category: Risk Management
As used in this document, Deloitte means Deloitte LLP and its subsidiaries. Please see www.deloitte.com/us/about for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.