---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Director of Privacy and Security
Location: Chicago, Illinois, US
Type: Permanent F/T
Closing Date: 03/25/2005
Enterprise Risk Services
Security Services: Senior Manager-Privacy Specialist
Midwest Region-Chicago/ Minneapolis
Deloitte, one of the nation's leading professional services firms, provides
audit, tax, financial advisory services and consulting through nearly 30,000
people in more than 80 U.S. cities. Known as an employer of choice for
innovative human resources programs, the firm is dedicated to helping its
clients and its people excel.
Privacy is a management issue with major business implications. Many companies,
particularly global ones, are challenged with a need to address a rapidly
evolving set of privacy laws and regulations in many different countries and
jurisdictions. Additionally, companies need to protect their reputation and
brand, comply with existing contractual obligations, and implement provisions
to comply with their published policies. Trends such as increased
globalization, increasing identity theft, data center consolidation, Internet
based systems, complex third party relationships, deployment of global HR, CRM,
and other systems, and deployment of global processes all contribute to
increasing risks. To meet these challenges, companies need to understand their
risks and develop and implement strategies and plans to address a holistic set
of requirements.
Deloitte & Touche LLP's Privacy Practice was specifically created to address
our clients' needs for the appropriate protection and handling of personal
data. Our practitioners have direct experience assessing, designing, and
implementing privacy programs in large multi-national organizations.
Additionally, our closely related Security Practice has in-depth experience in
a variety of areas related to the security of that data – from
infrastructure security and governance to identity management and application
security. We have developed, tested, and refined our privacy and security
methodologies to efficiently provide high-quality and cost-effective services
that help clients develop an enterprise approach to data protection
Deloitte Touche Tohmatsu is a Swiss Verein (association), and, as such, neither
Deloitte Touche Tohmatsu nor any of its member firms has any liability for each
other's acts or omissions. Each of the member firms is a separate and
independent legal entity operating under the names Deloitte, Deloitte & Touche,
Deloitte Touche Tohmatsu, or other, related names. The services described
herein are provided by the member firms and not by the Deloitte Touche Tohmatsu
Verein. For regulatory and other reasons, certain member firms do not provide
services in all four professional areas listed above.
Deloitte is an equal opportunity firm. We recruit, employ, train, compensate,
and promote without regard to race, religion, creed, color, national origin,
age, gender, sexual orientation, marital status, disability, veteran status, or
any other basis protected by applicable federal state or local law.
JOB REQUIREMENTS
---------------------------------------------------
Required Skills and Experience:
• Experience with multi-national organizations to assist in developing
and implementing global privacy programs.
• Experience in conducting risk assessments and mapping data flows to
identify privacy risks.
• Familiarity with application security, database technologies used to
store enterprise information, directory services, and information systems
auditing.
• Experience in designing privacy policies and procedures and developing
and conducting employee training programs.
• Understanding of business/technology controls to manage personal data
throughout its lifecycle.
• Thorough understanding of global data protection regulations and
knowledge of leading industry security standards.
• Direct experience with privacy legislation such as HIPAA, COPPA, FCRA,
GLB and EU.
• Understanding of security methods and technical elements to protect
customer data.
• Experience complying with international privacy regulations in EU,
Asia, Australia and Canada is a huge plus
General Responsibilities:
• Provide managerial and technical guidance and manage all aspects
security projects in complex networked environments.
• Develop security policies and procedures.
• Perform risk and security assessments, as well as tool evaluation.
• Play lead role in client retention, relationship building, and
communication.
• Play lead role in internal and external communication/deliverable
quality including technical content of reports, proposals, etc.
• Mold the individuals on the engagement into a team.
• Play lead role in management planning, economics, and billing.
• Meet assigned sales target/team sales targets.
• Membership and visibility in professional & civic organizations
• Develop proposals
• Publication in designated areas
• Evaluate, counsel, mentor and provide feedback on performance of others
• Play substantive/lead role in retention of professionals and in
building staff complement, mix, and recruiting.
• Contribute to a strong client relationship through interactions with
client personnel
• Understand engagement as it relates to client's business
• Demonstrate knowledge in some areas of industry or functional specialty
• Contribute to engagement planning and ensuring that
products/deliverables meet contract/workplan
• Deliver services that meet D&T task leader specifications
• Recognize and communicate opportunities to sell "add-on" work
to client
• Prepare written reports at the engineering level, manager level, and
executive levels
• Contribute to a positive team attitude
To be considered for this position the following are essential:
• BA/BS in information technology, business administration, or related
field, MS preferred.
• Minimum 10 years privacy and information management experience.
• Prior Big 5/consulting experience.
• Excellent verbal and written communication
• Industry Experiences in financial services, high-tech, and /or
healthcare a preferred.
• CISSP is a plus
• Willingness to travel
CONTACT
---------------------------------------------------
If you meet the above qualifications and are interested in this opportunity
please email your resume to jularsen@deloitte.com. Please specify
E05CHIESRMJL016 in the subject line. Please visit
http://careers.deloitte.com/opportunities.aspx to learn more about career
opportunities at Deloitte.
Justin Larsen
Recruiter
Deloitte
jularsen@deloitte.com
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
