Capco - Data Privacy Consultant - Cyber Security

Data Privacy Consultant

Location : Riyadh, Saudi Arabia (On-site)

Experience : 12+ Years

Employment Type : Full-time

Job Overview :

We are seeking a highly experienced and dedicated Data Privacy Consultant to join our team in Riyadh. This full-time, on-site role is critical for overseeing privacy regulations, developing robust privacy policies, ensuring stringent data privacy compliance, and implementing effective cybersecurity measures. The ideal candidate will possess deep expertise in global data protection laws, with a strong preference for experience in the banking sector and Saudi Arabian regulations.

Key Responsibilities :

- Oversee the implementation and adherence to various privacy regulations, including GDPR, CCPA, and ideally KSA's PDPL (Personal Data Protection Law) and NCA (National Cybersecurity Authority) frameworks.

- Develop, review, and enhance comprehensive privacy policies and procedures to align with evolving regulatory landscapes and organizational requirements.

- Ensure stringent data privacy compliance across all operations, involving assessments of data sharing, data transfer, and data residency practices.

- Implement and manage robust cybersecurity measures and controls to protect sensitive data, including Data Loss Prevention (DLP) and other security technologies.

- Conduct thorough Cybersecurity Risk Assessments focusing on data privacy, identifying vulnerabilities and recommending mitigation strategies.

- Work with data minimization techniques, data scrambling, obfuscation, data reclassification, and data masking to enhance privacy.

- Operationalize privacy by integrating privacy-by-design principles into new and existing systems and processes.

- Facilitate and govern controlled data sharing and cross-border data transfer activities, ensuring full legal and regulatory compliance.

- Provide expert consultation and guidance to various stakeholders on data privacy best practices and regulatory requirements.

Qualifications :

- 12+ years of experience in data privacy, data protection, or a related cybersecurity role.

- Extensive knowledge of Privacy Regulations and Privacy Policies.

- Deep expertise in Data Privacy and Privacy Compliance, including practical application.

- Strong Cybersecurity skills, particularly related to data protection controls.

- Proven experience working with various data protection laws and regulations (e.g., GDPR, CCPA).

- Bonus points for direct experience with KSAs PDPL and NCA.

- Strong analytical and problem-solving skills to address complex data privacy challenges.

- Excellent communication and interpersonal abilities, particularly strong English language skills (written and verbal).

- CISSP, CIPP, or other relevant certifications are a plus.

- Bachelor's degree in Information Technology, Computer Science, or a related field.