| HCL Opportunities for Data Privacy Consultants and Security Engineers at Remote, Remote, USA |
| Email: [email protected] |
| Exciting Opportunities for Data Privacy Consultants and Security Engineers Hi Team, We have some great new opportunities available for Data Privacy Consultants and Security Engineers. Please find the details below: Role: Data Privacy Consultant Location: REMOTE in US ONLY CANDIDATES IN EST OR CST TIMES (NO CANDIDATES FROM CA OR PST) Candidates from or in Michigan / New Jersey / Illinois / TX preferred Description: HCL Governance, Risk & Compliance consulting team is looking for Data Privacy SMEs to be part of our professional services division. The candidate must be experienced in providing data privacy technical advisory on various regulatory requirements such as GDPR, CCPA, PIPEDA, UK DPA etc. The data privacy consultant will be required to work on global/international consulting as well as technology implementation projects. Qualification, Work Experience & Certifications: Bachelors/Masters degree or higher in Computer Science, Information Systems or a related field. At least 5 years of Information Security, Risk Management, Compliance Management and delivery experience. Proven experience in data privacy and compliance, with a strong understanding of technical aspects. Strong understanding of global data privacy regulations, including GDPR, CCPA, and other relevant laws. Experience with data privacy impact assessments (DPIAs) and data subject requests (DSRs) within a technical context. Excellent communication and interpersonal skills, with the ability to explain technical concepts clearly and concisely to non-technical audiences across different cultures. Ability to work independently and as part of a team, collaborating with diverse stakeholders across multiple regions. Strong analytical and problem-solving skills. Ability to adapt to changing priorities and manage multiple projects simultaneously in a global environment. Experience in handling global client stakeholders. Excellent Communications & Presentation skills. CIPM/CIPT, CIPP/E, CIPP/US (at least one certification is desired). Responsibilities: Championing data privacy within the global Technology department: Providing guidance and support to development teams and other technical staff on privacy-by-design principles, best practices, and implementation strategies. Collaborating with central Consent and Privacy teams: Providing input and feedback on policies, procedures, and technical implementations, translating complex privacy regulations into actionable guidance for technical teams across different regions. Drive strategic vision and roadmaps. Utilize vision documents and roadmaps to create alignment across the different product groups to gain alignment and consistency of implementations. Partnering with business customers: Working closely with business units to understand their needs and ensure that consent and privacy considerations are embedded in the development and deployment of technology solutions. This includes facilitating discussions, providing guidance, and ensuring alignment with global privacy policies. Conducting data privacy impact assessments (DPIAs): Evaluating the privacy risks associated with new and existing technologies, identifying potential impacts on individuals, and recommending mitigating measures. Staying informed about evolving privacy regulations and best practices: Actively monitoring changes in data privacy laws (GDPR, CCPA, etc.) and industry standards, translating these developments into actionable guidance for the Technology department across all regions. Contributing to the development and implementation of global data governance frameworks: Working with stakeholders to define data ownership, access controls, and data retention policies, ensuring technical feasibility and alignment with privacy requirements across different regions. Assisting with incident response and breach notification: Playing a role in responding to data privacy incidents, working with other teams to investigate, contain, and mitigate potential harm across all locations. Regular reports on data privacy compliance activities, including progress on DPIAs, policy updates, and incident response. Development and delivery of training materials for internal teams on data privacy principles, policies, and procedures. Recommendations for improvements to existing data privacy policies and procedures. Technical documentation and guidance for developers on implementing privacy-by-design principles. Role: Security Engineers with Primary Skills on Identity & Access Management, Vault, Cloud & Kubernetes Location: Bothell, WA Day 1 ONSITE Responsibilities: Responsible for analysis, design, and implementation coordination for tool and service designs within the cloud identity domain. Required Skills: Deep understanding of cloud computing principles, including virtualization, containerization, microservices, and serverless computing; Risk Management, RHCOS security, container security, Kubernetes security, IAM security, network security, auditing, encryption, secrets management, and data protection, securing CI/CD. IAM Policy as code; OPA Open Policy Agent (Styra Enterprise version of OPA); Cedar AWS opensource policy agent. Experience implementing Zero Trust architectures. Excellent problem-solving, analytical, and communication skills. Ability to work independently and collaboratively in a fast-paced, agile environment. Create Identity & Access as code leveraging tools such as Ansible, Terraform to provision in cloud. Analyze environments to identify both technical and operational challenges while making recommendations and developing solutions for improvement. Lead complex or high severity troubleshooting and incident/problem resolutions with other security or cloud teams. Maintain knowledge of current developments in identity and cybersecurity, pertaining to threats to IT environments. Bachelors degree in IT, Cybersecurity, or related field or equivalent experience. 5+ years of experience in Information security with 4+ years of experience in Identity and Access Management. 3+ years of experience of cloud IAM and security experience. Strong knowledge of hybrid cloud, AWS, GCP, Azure, and EntraID/Azure AD, OpenShift, Openstack Keystone. Hands-on experience with HashiCorp Vault, Cyberark, or similar (PAM, secrets, certificate management platform). Advanced knowledge of Identity Security concepts, least-privilege, separation of duties, and Zero Trust design principles. Experience implementing Kubernetes RBAC access controls. Understanding of federation technologies (WS-Fed, OAuth, OpenID Connect, SAML) and of encryption technologies (encryption types and protocols/standards). RBAC based access for cluster namespaces. Vulnerability and threat management. Professional certifications CIMP, CIAM, CISSP. This email is generated using CONREP software. A10980 Keywords: continuous integration continuous deployment active directory information technology California Texas Washington HCL Opportunities for Data Privacy Consultants and Security Engineers [email protected] |
| [email protected] View all |
| Mon Jul 22 19:56:00 UTC 2024 |