DLA Piper Senior Consultant - Cybersecurity, Privacy and Data Protection (Privacy) in New York, New York

Senior Consultant - Cybersecurity, Privacy and Data Protection (Privacy)

DLA Piper is seeking highly talented privacy Senior Consultants to join its Intellectual Property and Technology group, Technology, Sourcing and Commercial subgroup in Washington D.C. (preferred), New York, or San Francisco.

This is the most common entry position into this field for those with an advanced degree and/or varied experience in the privacy and risk management field. Position interacts with clients on a day-to-day basis and takes part in managing the client relationship. Performs complex analysis and manages various aspects of the project. Assists clients in identifying risks and developing strategic solutions for managing them. Works with internal team to build and implement a pragmatic and integrated solutions to privacy and risk issues. Incumbents are generally in this position for three years before moving into more senior-level roles.

The client service professional should have a broad range of consultative risk management skills in the areas of evaluating and identifying controls to manage and mitigate privacy and data protection risk, specifically

  • Identifying privacy and data protection risks, requirements and controls

  • Performing data inventory, mapping and analysis activities

  • Assisting clients with designing and implementing privacy and data governance programs, processes and controls

  • Supporting client training and awareness programs

Core competencies should include the planning, execution, and delivery of engagements across the broad disciplines of conducting risk assessments, policy, standards, and procedures development, Privacy by Design (PbD) evaluation, cloud and shared control environment assessments, operating model design, and metrics and reporting dashboards.

The candidate should be familiar with laws, regulations, and industry standards such as: General Data Protection Regulation (GDPR), PCI DSS (Payment Card Industry Data Security Standard), Health Information Portability and Accountability Act (HIPAA), Gramm-Leach-Bliley Act (GLBA) National Institute of Standards & Technology (NIST) SP800-53 and Cybersecurity Framework, and International Organization for Standardization (ISO) series 27001/2, 27005, 31000.

Prior Big 4 or consulting experience preferred with excellent verbal and written communication skills.

Experience with Microsoft Office Suite including Visio with emphasis on PowerPoint to storyboard client engagements and Excel for analysis.

Relevant certifications: CISSP, CIPP, CISA

Prior Experience: 3-5 years

Travel required, 30-40% (max)

Interested candidates should apply online. If you have a request for an accommodation during the application process or if you have any questions about the process, please contact Chunny Wu ( chun-wei.wu@dlapiper.com ), Legal Recruiting Manager. Please add noreply@dlapipertalent.com to your list of safe senders.

Search firms: Per the terms of our agreement, all candidates must be submitted through our agency portal for consideration. If you have an agreement with us, please request an invitation to submit candidates to the portal from Chunny Wu. If you do not have an agreement with us and would like us to consider candidates, please send a blind candidate profile to Chunny. Please add noreply@dlapipertalent.com to your list of safe senders.

DLA Piper, LLP (US) is an Equal Opportunity/Affirmative Action Employer and does not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state or local protected class.

Minimum Requirements:

3-5 years of experience with relevant certifications: CISSP, CIPP, CISA