Senior Data Privacy Consultant

Job Description

Role Overview

We are looking for a Senior Data Privacy Consultant with a strong background in data protection, regulatory compliance, and quality auditing to join our expanding Data Privacy & Cybersecurity team. This full-time role is ideal for a compliance-driven professional who is passionate about building and managing data privacy programs for clients across Europe, with deep expertise in GDPR, ISO standards, and global privacy laws.

Key Responsibilities

• Design and implement customized data privacy frameworks aligned with client-specific business goals and compliance obligations.
• Conduct privacy impact assessments and gap analyses, offering strategic roadmaps for privacy maturity and improvement.
• Lead compliance audits and ensure continuous improvement of privacy and information security controls.
• Interpret and apply data privacy legislation including EU GDPR, UK GDPR, CCPA, and global privacy frameworks.
• Utilize expertise in ISO/IEC 27001/2, ISO 27701, ISO 22301, ISO 27018, NIST, HITRUST, and GMP to drive client compliance initiatives.
• Draft and review data protection policies, incident response plans, and governance documentation.
• Support clients through internal audits, certification audit readiness, and data governance implementation.
• Act as a subject matter expert on data subject access requests (DSARs), breach response protocols, and regulatory reporting.
• Collaborate with cross-functional teams and build lasting client relationships by providing advisory support and training.
• Contribute to Information Security Management System (ISMS) development aligned with ISO 27001 and ISO 27701.
• Stay up to date with evolving privacy laws, industry standards, and risk management trends.

Required Skills & Experience:

• 2–3+ years in data privacy, information security, or compliance consulting.
• Strong understanding of data privacy regulations, security controls, and quality audit processes.
• Proficiency with compliance standards: ISO 27001, ISO 27701, ISO 22301, ISO 27018, NIST, HITRUST, GMP.
• Experience conducting internal audits, managing risk assessments, and supporting certification audits.
• In-depth knowledge of global privacy legislation, particularly GDPR and CCPA.
• Ability to manage multiple international client engagements and deliver results independently.
• Excellent communication, analytical, and project management skills.

Preferred Qualifications:

• Bachelor’s degree in Information Technology, Computer Science, Quality Management, or a related field.
• ISO 27001 Lead Auditor or Internal Auditor certification is highly desirable.
• Experience working within regulated industries such as Pharmaceutical IT, Cybersecurity, HealthTech, or SaaS environments.

What You'll Love About Working with Us

• Clear career growth paths and continuous professional development opportunities.
• A collaborative and innovative work environment with access to cutting-edge cybersecurity tools.
• Flexible work arrangements and international project exposure.
• Be part of a passionate team shaping the future of data protection and privacy compliance.