~Our services combine privacy regulatory risk advisory around the world, ability to assist clients to conduct privacy risk impact assessments using our tools, defining privacy strategy and solution and at the same time designing privacy compliance model for better and efficient technical solution. This includes:
Assess risks, using recognised sources of privacy risks as well as business impact assessments.
Assess management of privacy covering people, physical, process and technology aspects.
Advise and support our global clients in privacy by design and technology, cyber security projects.
Advise on and, where required, manage the transformation and improvement of the privacy programme in a client organisation.
Advise on and implement performance management and assurance frameworks for privacy compliance.
Take interest and contribute to maintain and improve PwC's privacy protection confidence methodology.
Develop and manage relationships with security stakeholders within our clients
Meet with clients to understand their needs and produce proposals to address them.
Contribute to our research and thought leadership to improve the eminence of our practice
Collaborate with third party vendors to develop new and innovative security services for our clients
University degree majoring in accounting, business administration, information systems, computer science, engineering, statistics, accounting, and / or business administration;
Professional qualifications: CISA, CISM, CISSP, CEH, CISP or other security related qualifications;
Strong knowledge of the HK and China privacy regime. Knowledge of international privacy regulations, APAC would be an advantage.
Knowledge of current privacy and cyber issues, cyber and privacy security frameworks, privacy engineering technologies, emerging trends, and best practices related to data privacy.
Experience of implementing privacy and information security programs including, privacy risk assessment, requirements definition, data flow analysis, privacy access rules and strategy development such as policies and procedures, business process controls, incident response plans, monitoring, reporting of breach and escalation, and privacy training and awareness programs.
The ability to manage a number of projects, meet deadlines and manage stakeholder expectations
Excellent communication skills in both oral and written English and Chinese;