Associate Director, Cybersecurity & Data Privacy Consulting
KPMG in Singapore is part of a global organization of independent professional services firms providing Audit, Tax and Advisory services. We operate in 143 countries and territories with more than 273,000 partners and employees working in member firms around the world. Each KPMG firm is a legally distinct and separate entity and describes itself as such. KPMG International Limited is a private English company limited by guarantee. KPMG International Limited and its related entities do not provide services to clients.
Job Description
We are seeking a highly skilled and experienced cybersecurity and data privacy consultant to join our dynamic team. The ideal candidate will possess deep expertise in data protection and cybersecurity, strong analytical skills, and a proven track record in managing and implementing privacy and cybersecurity programs. This role involves working closely with clients to navigate complex regulatory frameworks, enhance their data protection capabilities, and provide cybersecurity consulting across a variety of projects.
The role involves:
- Support and guide clients in adhering to the intricate web of national and regional regulations and industry standards, including PDPA, GDPR, NIST, and ISO 27001.
- Lead and manage data protection and cybersecurity consulting engagements, ensuring the delivery of high-quality services tailored to client needs.
- Conduct comprehensive data mapping, records of processing, privacy impact assessments, as well as security assessments, maturity assessments, and risk assessments to evaluate the client's entire personal data and cybersecurity landscape.
- Design and implement effective data protection and cybersecurity programs, integrating privacy and cybersecurity controls to support clients' business operations and mitigate security risks.
- Develop and implement cybersecurity strategies, policies, and procedures, ensuring they are tailored to meet the specific needs of the client.
- Collaborate with cross-functional teams to assess, develop, and deploy security solutions that address client risk management gaps and enhance privacy and cybersecurity capabilities.
- Review and recommend improvements for data privacy frameworks, cybersecurity programs, and incident response plans in the event of data breaches.
- Prepare detailed reports and presentations for clients, summarizing findings, recommendations, and actionable strategies, both for data privacy and broader cybersecurity issues.
- Facilitate knowledge transfer sessions to empower client teams with essential insights and practical understanding of cyber security and data protection best practices.
- Stay current with emerging cybersecurity trends, threats, and technologies to inform and strengthen client solutions.
- Develop and deliver data protection and cybersecurity training, awareness campaigns, and educational programs to foster a culture of data privacy and security within client organizations.
- Mentor and develop junior team members, fostering a culture of continuous learning and professional growth within the privacy and cybersecurity domains.
- Assist in business development activities, including proposal writing, client presentations, and identifying new consulting opportunities.
⠀
The ideal candidate should possess:
- Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- Relevant certifications such as CIPP, CIPM, CISSP, CISM, CISA, or equivalent.
- Minimum 10 years of experience in data privacy and cybersecurity consulting, with a strong focus on risk management, compliance, incident response, and security architecture.
- In-depth understanding of regulatory frameworks and standards, including PDPA, GDPR, ISO 27001, and NIST.
- Excellent project management skills, with the ability to manage multiple engagements simultaneously while delivering high-quality results.
- Strong analytical and problem-solving abilities, with a strategic mindset and tactical execution.
- Exceptional communication skills, both written and verbal, capable of conveying complex technical concepts to non-technical stakeholders.
- Proven ability to build and maintain client relationships, demonstrating a commitment to delivering exceptional client service.
- Willingness to travel as required to meet client needs.
#LI-AH1
Only shortlisted candidates will be contacted by KPMG Talent Acquisition team, personal data collected will be used for recruitment purposes only.
At KPMG in Singapore we are committed to creating a diverse and inclusive workplace. We believe that diversity of thought, background and experience strengthens relationships and delivers meaningful benefits to our people, our clients and communities. As an equal opportunity employer, all qualified applicants will receive consideration for employment regardless of age, race, gender identity or expression, colour, marital status, religion, sexual orientation, disability, or other non-merit factors. We celebrate the different talents that our people bring and support every staff member in their journey to achieve personal and professional growth. One of the ways we do this is through Take Charge: Flexi-work, our flexible working framework which enables agile and innovative teams to help deliver our business goals.