JOB DETAIL

Job Summary

BDO RISE is the round-the-clock international services team and is dedicated to providing exceptional client service in the global economy. Our professionals operate seamlessly as part of BDO USA engagement teams, leveraging consistent best practices while accessing our global resources to deliver outstanding service and solutions for our clients. BDO’s Core Purpose is Helping People Thrive Every Day. Our Core Values reflect how we manage our work, our relationships and ourselves. As an employee of the firm, you will live true to our Core Values of people first, being exceptional every day in every way, embracing change, feeling empowered through knowledge, and choosing accountability. Our Core Values are the standards by which we conduct ourselves day in and day out, both internally and externally.

BDO is seeking a Manager to join its Governance, Risk & Compliance (GRC) Practice. The GRC Practice helps companies to build, manage, and monitor privacy and data protection programs while embedding privacy into Apps, websites, systems, and processes. We offer a variety of services, such as privacy managed services, assessments, Data Protection Officer services, Data Protection by Design and by Default program development, and website compliance. Candidates that are hired will be integral in providing these services for our clients.

Job Duties

This role is responsible for final quality assurance activities to ensure that assessments are completed, as well as reviewing results for flagged risks.  The person should have a decent understanding of common privacy risks.

Job Responsibilities

• Manage offshore managed services team members, coordinate closely with US leaders, and the BDO GRC RISE leader
• Conduct maturity assessments including interviewing key client stakeholders and documenting observations, risks and recommendations
• Ensure that the offshore team members understand the project tasks, deadlines and expectations
• Review deliverables for completeness, quality and consistency
• Establish work schedules, project schedules, task deadlines and monitor offshore team for project completion
• Identify and communicate continuous service improvements
• Collaborate with the onshore Manager to ensure that both the offshore and onshore teams are working effectively together
• Review Privacy Maturity Assessments to ensure that roadmaps and client risks are accurate and thorough
• Manage and perform individual rights requests/consumer rights requests
• Conduct Privacy Impact Assessments (PIAs) and review the team's deliverables for accuracy and completeness
• Create and conduct privacy training and awareness content, as requested
• Manage the development of records of processing, data inventories, data flow diagrams, and/or Article 30 registers
• Monitor regulatory updates, guidance, case law, etc.
• Develop, implement, and monitor client privacy and data protection policies and procedures following global, national, and sector legislation.
• Assist commercial clients with developing and delivering privacy and data protection strategies throughout the organization
• Identify and manage privacy and data protection risk for global commercial clients.
• Maintain working knowledge of new and existing privacy and data protection legislation to advise clients on impending obligations.
• Other duties as required

Qualifications, Knowledge, Skills and Abilities

Education:

• Bachelor's Degree, required
• IAPP or equivalent training, required
• IAPP or other relevant privacy certifications, preferred
• Master’s Degree, preferred

Experience and Skills:

• 4-6 years of professional services, and 2-3 years of privacy services, preferred
• Previous consulting experience, required
• Experience with Privacy Enhancing Tools (PET) - OneTrust, TrustArc, required
• Experience with online software solutions, required
• Experience with timekeeping and task management software, required
• Demonstrated proficiency in Microsoft Office, with focus on Word, PowerPoint, Visio, and Excel
• Knowledge of database systems, software development lifecycle, and technology company operations
• Ability to thrive in a fast-paced environment to meet client and regulatory deadlines
• Ability to self-manage daily tasks
• Organized and proficient at managing multiple sources of data and information
• Ability to work in a collaborative environment
• Experience with Data Discovery, Retention or Privacy Enhancing Technology tools (e.g., Varonis, Virgo, OneTrust, TrustArc), a plus