Practice Lead - Data Governance & Privacy

GuidePoint is looking for a motivated and engaged Data Governance & Privacy Practice Lead to join our growing Team! This is a fully remote player coach role with periodic travel to promote the practice and support client consulting engagements. The successful candidate is a hard-working self-motivated professional who can help companies evaluate and enhance their data governance and privacy practices according to applicable legal requirements and industry best practices. The consultant will mentor and share learnings with colleagues to foster a learning culture.

Role and Responsibilities:

The selected candidate will be responsible for performing the following activities:

• Leading a team of consultants providing mentorship guidance and career development.

• Continuing to grow and lead the Data Governance & Privacy team ensuring that projects are delivered on time and on budget and enabling the sales organization to grow the business.

• Developing new approaches and opportunities for expanding the GuidePoint customer base and meeting the needs of our customers.

• Evangelizing data governance and privacy services to Account Executives Clients and across the industry.

• Creating and implementing operational processes and templates to be used by consultants to drive consistency and support achievement of the business strategy.

• Leading pre-sales discussions with customers creating Statements of Work (SOWs) and presenting them to current and prospective customers.

• Conducting and overseeing compliance assessments against various US-based and international data privacy laws and regulations including GDPR CCPA/CPRA HIPAA GLBA PIPEDA PIPL DPDPA and others.

• Conducting and/or overseeing maturity assessments of customers’ data protection landscape and data security governance policies processes and controls based on the C3 Working Group Data Security Maturity Model (DSMM) framework.

• Overseeing and/or developing data governance and privacy strategies for customers to address their unique business needs incorporating policies and processes that leverage cutting-edge technologies to deliver strong data protection controls and practices across the data lifecycle.

• Developing regulatory updates to keep customers up to date on the current data security and privacy landscape.

• Contributing to the development of AI governance service offerings and overseeing the sales and delivery of the services.

• Researching and identifying applicable legal and administrative statutes/standards and other details related to customers’ data privacy programs.

• Developing policies processes and other documentation to comply with relevant privacy regulations and frameworks.

• Contributing to the growth maturation and socialization of the GuidePoint data governance and privacy consulting practice.

• Participating in webinars and other speaking opportunities to promote the Data Governance & Privacy practice.

• Establishing strong relationships and trust with customers to understand their business environments and requirements.

• Working with other GuidePoint Security practices as part of a cohesive cross-functional team.

Required Experience and Position Requirements:

• Minimum of 7 years of combined relevant data governance and privacy experience across private/public sector consulting and/or relevant education.

• Minimum of 5 years of direct experience performing data governance and privacy-related consulting services for clients of various verticals including financial and insurance retail healthcare service providers (SaaS PaaS etc.) manufacturing critical infrastructure/energy etc.

• Minimum of 3 years of experience in a leadership role for a consulting firm while responsible for data governance or privacy.

• At least one active industry-recognized IAPP certification including CIPP/US CIPP/E CIPT or CIPM.

• Expert knowledge of US and EU privacy laws.

• Strong understanding and working knowledge of privacy frameworks including NIST Privacy ISO 27701 GAPP and other equivalent data privacy standards.

• Strong demonstrated experience in developing data governance and privacy policies standards plans procedures and other documentation to support customer-adopted frameworks and industry standards.

• Strong understanding of all the functions within a data privacy program the ability to assess the maturity of a data privacy program perform gap assessments against data privacy frameworks and how to provide strategic recommendations and direction to senior leadership.

• Strong written and oral communication skills which include articulating thoughts and distilling complex problems into digestible information to be consumed by anyone from technical resources to the highest level of management; proven experience communicating clearly to technical levels up through C-Level and Board level.

• Ability to simplify complex issues and provide pragmatic advice and practical solutions that can be operationalized.

• Remain current on privacy laws regulations trends and developments and incorporate them into service delivery.

• Strong ability to work independently and multi-task on multiple projects simultaneously.

• Team mindset with the ability to build strong relationships and work collaboratively within a growing team and cross-functionally with members at all levels of the organization.

• Learning and growth mindset to keep up with emerging trends.

• Experience in project management and the ability to clearly communicate data privacy issues verbally on both a formal and informal basis to all levels of client staff.

• Exceptional client service and communication skills with a demonstrated ability to develop and maintain outstanding client relationships.

• Personal drive and passion for growing themselves and the Data Security Governance Practice.

• Experience preparing reports and other deliverables that contain strategy project or technical analysis and findings in connection with consulting engagements and communicating those results to the Team and client.

• Experience in publishing content and speaking at conferences and other events on data governance and privacy topics.

• Solid understanding of the role of Artificial Intelligence (AI) and automated decision-making technology as it relates to Personal Information (PI).

Preferred Experience and Position Requirements:

• Demonstrated experience with assessing developing and implementing data governance and protection programs including conducting data discovery of data flows and inventories and evaluating the security and privacy controls that protect an organization’s sensitive data.

• Experience implementing and/or developing programs leveraging OneTrust or other prominent privacy platforms.