CrawlJobs Logo

Senior Data Protection and Compliance Consultant

hso.com Logo

HSO

Location Icon

Location:
Canada , Toronto

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

We are seeking a highly skilled Senior Data Protection & Compliance Consultant with deep expertise in Microsoft Purview to support our clients in designing, implementing, and maturing their data governance, protection, and regulatory compliance capabilities. In this consulting role, you will work directly with client stakeholders to assess requirements, lead solution delivery, advise on best practices, and ensure successful adoption of Microsoft Purview across their Microsoft 365, Azure, and Copilot environments. You will act as a trusted advisor—helping clients strengthen their governance frameworks, reduce regulatory risk, and establish end-to-end control of sensitive data across their digital estate.

Job Responsibility:

  • Guide clients in administering and optimizing the Microsoft Purview Data Map, including data scanning, classification, and cataloging of enterprise assets
  • Support clients in establishing metadata management, business glossary standards, and stewardship processes
  • Lead client engagements to implement data lineage and conduct impact analysis
  • Conduct data estate maturity assessments for clients and provide recommendations to improve governance controls
  • Advise clients on sensitive data identification and classification strategies using Purview classifiers
  • Configure and deploy sensitivity labels, label policies, and automatic labeling tailored to client business needs
  • Assist clients with Information Rights Management (IRM) and encryption configurations
  • Design and implement Data Loss Prevention (DLP) solutions across Microsoft 365 workloads
  • Support clients in defining and operationalizing retention and records management processes
  • Lead client workshops and implementations for eDiscovery (Standard & Premium)
  • Help clients adopt Insider Risk Management, Communication Compliance, and auditing capabilities
  • Map Microsoft Purview capabilities to client-specific regulatory, privacy, and security frameworks
  • Produce audit-ready reporting, compliance evidence packages, and documentation for clients
  • Perform client-focused risk assessments and gap analyses with actionable remediation recommendations
  • Lead integration efforts between Purview and client environments across Microsoft 365, Azure, and Copilot
  • Guide clients on governance strategies for structured and unstructured data
  • Advise clients on AI governance, responsible AI use, and data lifecycle implications

Requirements:

  • 5–8+ years in consulting or enterprise data governance, protection, compliance, or security roles
  • Deep, hands-on expertise with Microsoft Purview across governance, protection, and compliance solutions
  • Strong understanding of major compliance regulations (GDPR, HIPAA, ISO, NIST)
  • Experience leading client workshops, assessments, and technical implementation engagements
  • Ability to translate complex compliance obligations into practical controls for client environments
  • Strong communication, facilitation, and stakeholder-management skills

Nice to have:

  • SC-400, 401: Microsoft Information Protection Administrator
  • SC-900: Microsoft Security, Compliance, and Identity Fundamentals
  • SC-200: Microsoft Security Operations Analyst
  • AZ-900: Microsoft Azure Fundamentals
  • MS-102: Microsoft 365 Administrator

Additional Information:

Job Posted:
April 01, 2026

Employment Type:
Fulltime
Icon
HSO - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon
PREMIUM
More languages and countries
Unlock 29494 hidden job offers
Languages
English Čeština Deutsch Ελληνικά Español Français +15
Countries
United States United Kingdom India Canada Australia +
See plans
Plans from $2.99 / month

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Senior Data Protection and Compliance Consultant

Medior-Senior GRC Consultant - Regulatory and Compliance focus

We ensure that all operations, digital or otherwise, meet the latest quality and...
Location
Location
Belgium , Brussels
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-8 years of experience in the Cybersecurity business landscape
  • Proficiency in Dutch and English is mandatory
  • Advanced knowledge of the 'cyber regulatory area'
  • Understanding of AI Act, DORA is a plus
  • Strong experience in performing Compliance Maturity assessments, Data Protection Impact Assessments and to apply Data protection by Design/By default and risk-based approach, perform quality legal compliance analyses and produce good quality reports
  • ISO27001 certification is a plus, experience in ITSRM, and a good understanding of compliance-oriented projects
  • Strong knowledge of PM roles and the ability to independently handle content-oriented missions
  • Client-oriented with the ability to navigate the EU and national regulatory environment, engaging with various stakeholders (regulators, EU, CISO, DPO)
  • A hands-on approach with a solution-oriented mindset, capable of effective communication within the business environment
  • Independence in client-oriented projects and adept at identifying opportunities
Job Responsibility
Job Responsibility
  • Lead regulatory compliance projects
  • Interpret complex legislation such as AI Act and DORA
  • Apply technical knowledge in cybersecurity to enhance the company’s security posture
  • Contribute to pre-sales activities
  • Draft RFPs
  • Understand the broader EU and national business landscapes
What we offer
What we offer
  • Extensive career development opportunities
  • Dynamic network of 56,000 professionals
  • Wide array of offices to explore
  • Fulltime
Read More
Arrow Right

Senior Information Security Consultant (QSA)

PGI is a global consultancy that helps organisations build digital resilience. W...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
pgitl.com Logo
Protection Group International
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven relationship management skills and experience in Information Assurance consultancy
  • Qualified Security Assessor (QSA) experience with valid PCI-DSS QSA accreditation with a minimum of 2 years of experience performing PCI DSS compliance consultancy
  • Familiarity with PCI DSS and NIST CSF
  • Experience in conducting risk assessments, cyber security maturity evaluations, and remediation strategies
  • Strong communication skills, able to present to clients and senior stakeholders
  • A collaborative, solutions-oriented mindset with excellent time-management skills
Job Responsibility
Job Responsibility
  • Provide expert guidance to clients, supporting both pre-sales and delivery, and establishing trusted advisor relationships to drive compliance and security improvements
  • Lead and deliver hands-on PCI DSS compliance consultancy, performing assessments, gap analyses, and remediation strategies tailored to client needs
  • Act as a subject matter expert in PCI DSS compliance and Governance, Risk, and Compliance (GRC), advising clients on regulatory compliance, risk management, and information security best practices
  • Contribute to PGI’s consultancy growth by aligning services with emerging trends and industry standards. Drive PGI’s accreditations and assist with maintaining ISO 27001, PCI DSS and data protection compliance
  • Mentor junior team members, contribute to the recruitment process, and oversee third-party relationships to ensure project profitability and delivery quality
  • Stay ahead of industry trends, emerging security threats, and best practices to maintain professional growth and continuously improve PGI’s consultancy offerings
Read More
Arrow Right

Privacy and Data Protection Lawyer

The Senior Data Protection Lawyer plays a pivotal role in ensuring Vodafone Port...
Location
Location
Portugal , Lisboa
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Law degree (LL.B. or equivalent)
  • 5+ years of experience in Data Protection, Regulatory Affairs, Compliance, or related legal practice
  • Deep knowledge of GDPR and Portuguese data protection law
  • Demonstrated experience in complex assessments, contract negotiation, and advisory work related to data protection
  • Strong knowledge of data protection, information security, and governance frameworks
  • Familiarity with privacy tools used for risk assessment, data mapping, incident management, and compliance monitoring
  • Professional privacy certification (e.g., CIPP/E, CIPM, CIPT, or equivalent) highly valued
  • Strong analytical, critical-thinking, and legal interpretation skills
  • Excellent communication and stakeholder-management skills, including with senior leadership
  • Experience in telecom, technology, consultancy, or other regulated sectors
Job Responsibility
Job Responsibility
  • Lead complex DPIAs, LIAs, data transfer assessments, lawful basis analyses, and broader data protection risk evaluations, ensuring legally sound and business-aligned recommendations
  • Draft, review, and negotiate data protection clauses, data processing agreements, and contracts with data protection relevance, ensuring alignment with legal requirements and internal governance frameworks
  • Oversee regulatory monitoring concerning data protection laws and ensure fulfilment of internal compliance obligations, producing expert recommendations and supporting remediation and continuous improvement actions
  • Provide senior legal support to Business Continuity, Crisis Management, Cybersecurity, Technology, HR, and other multidisciplinary teams in matters involving data protection requirements
  • Act as a strategic advisor on data protection compliance, lawful bases, data minimisation, purpose limitation, retention, and governance of processing activities in new products, services, and operational initiatives
  • Represent the DPO Office in interactions with internal governance bodies and external regulators, where appropriate
What we offer
What we offer
  • Hybrid Work Model - Flexible hybrid work model with 8-10 in-office days per month, managed by team leaders
  • Vodafone Products and Services - Employees get a mobile phone, free communication plan, data card, and various discounts on services and products
  • Recognition - Recognition programs for innovative, creative, high-potential employees and exemplary behaviors
  • Health and Well-being - Well-being Program offers nutrition and psychological consultations, webinars, workshops, and discounts on various services and products
  • Learning - Access to Communities of Practice and a customizable digital training platform with high-quality content (namely Harvard Business Publishing, Skillsoft and Speexx)
  • Local and International Mobility - Internal recruitment with local and international rotation opportunities across departments and roles
Read More
Arrow Right

Microsoft Elevate Worldwide Data Security Go to Market Director

We are seeking a forward‑thinking, impact‑driven leader to drive the go‑to‑marke...
Location
Location
United States , Redmond
Salary
Salary:
133000.00 - 222700.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master's Degree in Computer Science, Information Technology, Engineering, Health Sciences, Supply Chain, Education, Business or related field AND 5+ years customer-facing experience in operations, enterprise-level improvement program management, product management, transportation, hospitality, automotive, consumer goods, financial services, retail, management consulting, consultative selling, public sector, technology or industry-relevant equivalent management or technical work experience
  • OR Bachelor's Degree in Computer Science, Information Technology, Engineering, Health Sciences, Supply Chain, Education, Business or related field AND 7+ years customer-facing experience in operations, enterprise-level improvement program management, product management, transportation, hospitality, automotive, consumer goods, financial services, retail, management consulting, consultative selling, public sector, technology or industry-relevant equivalent management or technical work experience
  • OR equivalent experience
  • 10+ years of experience in business strategy, consulting, business development, technical sales and/or marketing strategy, with an emphasis on security, compliance, or risk‑driven solutions
  • Experience driving go‑to‑market strategy for Data Security, Information Protection, Governance, or Compliance solutions on Microsoft Azure, Microsoft 365, or comparable cloud platforms, ideally within nonprofit, education, public sector, or highly regulated industries
  • Proven track record of owning and scaling a $500M+ business
  • 5+ years of experience in a worldwide GTM or Corporate function, or solution area leadership role for Data Security, Compliance, or broader Security portfolios, or comparable roles in competitive organizations
  • 5+ years of experience designing, launching, and scaling programs or solution plays in the field, including enablement, partner activation, and execution governance
  • Demonstrated experience presenting to C‑level and senior executive audiences, translating complex security and risk topics into clear business value and strategic outcomes
  • Knowledge of security, AI and competitor landscape
Job Responsibility
Job Responsibility
  • Champion the adoption of data security, data loss prevention, information protection, and compliance solutions that enable K–12 and nonprofit organizations to safeguard sensitive data and securely adopt AI across their digital estate
  • Lead the development of security‑focused offers, programs, and investment strategies tailored to the unique regulatory, risk, and resource constraints of education and nonprofit organizations
  • Serve as the principal GTM advocate and subject‑matter leader for Data Security within the Microsoft Purview product family across the nonprofit and K–12 ecosystem
  • Drive partner‑led growth by enabling and activating a powerful ecosystem of security and compliance partners
  • Own and manage key performance indicators (KPIs) that measure the health, reach, and impact of the Data Security business across K–12 and nonprofit organizations
  • Develop and lead the business strategy for Microsoft Data Security across K–12 education and the nonprofit sector
  • Track performance and long‑term sustainability of data security and compliance initiatives
  • Hold end‑to‑end accountability for defining scorecards and KPIs that measure data security maturity, solution adoption, customer value realization, and business impact
  • Partner with senior leaders across Microsoft using a One Microsoft approach to drive strategic alignment
  • Represent the Data Security business in Rhythm of Business, monthly, and quarterly reviews
  • Fulltime
Read More
Arrow Right

Privacy and Data Protection Lawyer

At Vodafone, we’re not just shaping the future of connectivity for our customers...
Location
Location
Portugal , Lisboa
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Law degree
  • 0–2 years of experience in Data Protection, Compliance, Regulatory Affairs, or related legal practice
  • Knowledge of GDPR principles and the national legal framework on data protection
  • Strong analytical skills, accuracy, and legal rigour
  • Ability to translate legal requirements into clear business-oriented guidance
  • Basic knowledge of Data Protection, Information Security, or Compliance frameworks
  • Familiarity with legal support tools or document management systems
  • Experience in technology, telecom, consultancy, or regulatory environments
  • Ability to work with multidisciplinary teams
  • Fluency in English
Job Responsibility
Job Responsibility
  • Draft and review contractual clauses, data processing agreements, and legal documentation related to data protection
  • Analyse legal and regulatory requirements and produce internal legal opinions and guidance
  • Support the interpretation and application of the GDPR, national data protection law, and Group requirements
  • Conduct legal risk assessments on data protection and compliance topics
  • Support responses to regulatory authorities and prepare draft replies when required by the DPO or senior team members
  • Contribute to governance, compliance, security, and risk management initiatives with legal relevance for data protection
  • Cooperate with internal teams (Technology, Security, Commercial, HR, etc.) by clarifying legal requirements
  • Monitor legislative and regulatory developments relevant to data protection
What we offer
What we offer
  • Hybrid Work Model - Flexible hybrid work model with 8-10 in-office days per month, managed by team leaders
  • Vodafone Products and Services - Employees get a mobile phone, free communication plan, data card, and various discounts on services and products
  • Recognition - Recognition programs for innovative, creative, high-potential employees and exemplary behaviors
  • Health and Well-being - Well-being Program offers nutrition and psychological consultations, webinars, workshops, and discounts on various services and products
  • Learning - Access to Communities of Practice and a customizable digital training platform with high-quality content (namely Harvard Business Publishing, Skillsoft and Speexx)
  • Local and International Mobility - Internal recruitment with local and international rotation opportunities across departments and roles
Read More
Arrow Right

Senior Privacy Counsel & Data Protection Officer

Make online trading safer and privacy-first. As Senior Privacy Counsel & Data Pr...
Location
Location
Germany , Berlin
Salary
Salary:
Not provided
adevinta.com Logo
Adevinta
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Relevant experience both in a law firm and in-house, preferably with online platforms and/or ad tech
  • German law degree (2. Staatsexamen or equivalent)
  • Multi-year experience in the data protection field
  • Have worked as a DPO
  • Have successfully engaged with data protection regulators
  • Proactive and a creative problem solver
  • High interest in networking and building social connections
  • Excellent collaborator with solid diplomacy, stakeholder management and strong presentation skills
  • Strong understanding of AI and data-driven technologies and their privacy implications
  • Know how to assess and mitigate privacy risks of AI systems
Job Responsibility
Job Responsibility
  • Act as a key contact for local regulators and officials in incidents, investigations or policy consultations
  • Monitor and interpret changes in legislation, industry standards and regulatory positions on privacy and data use
  • Develop and maintain a strong network with external privacy experts
  • Manage, monitor and report on privacy compliance topics
  • Identify data protection issues proactively and recommend pragmatic remedies
  • Co-shape and iterate the local privacy strategy and roadmap
  • Fulfill all DPO-related tasks under GDPR and local law
  • Run regular internal privacy compliance audits
  • Design and deliver training for business stakeholders
What we offer
What we offer
  • An attractive Base Salary
  • Participation in our Short Term Incentive plan (annual bonus)
  • Work From Anywhere: Enjoy up to 20 days a year of working from anywhere
  • A 24/7 Employee Assistance Program for you and your family
  • Fulltime
Read More
Arrow Right

Senior Privacy Counsel & Data Protection Officer

Make online trading safer and privacy-first. As Senior Privacy Counsel & Data Pr...
Location
Location
Germany , Berlin
Salary
Salary:
Not provided
adevinta.com Logo
Adevinta
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Relevant experience both in a law firm and in-house, preferably with online platforms and/or ad tech
  • Hold a German law degree (2. Staatsexamen or equivalent)
  • Multi-year experience in the data protection field
  • Have worked as a DPO
  • Have successfully engaged with data protection regulators
  • Proactive and a creative problem solver
  • High interest in networking and building social connections
  • Excellent collaborator with solid diplomacy, stakeholder management and strong presentation skills
  • Strong understanding of AI and data-driven technologies and their privacy implications
  • Know how to assess and mitigate privacy risks of AI systems
Job Responsibility
Job Responsibility
  • Act as a key contact for local regulators and officials in incidents, investigations or policy consultations
  • Monitor and interpret changes in legislation, industry standards and regulatory positions on privacy and data use
  • Develop and maintain a strong network with external privacy experts
  • Manage, monitor and report on privacy compliance topics
  • Identify data protection issues proactively and recommend pragmatic remedies
  • Co-shape and iterate the local privacy strategy and roadmap
  • Fulfill all DPO-related tasks under GDPR and local law
  • Run regular internal privacy compliance audits
  • Design and deliver training for business stakeholders
What we offer
What we offer
  • An attractive Base Salary
  • Participation in our Short Term Incentive plan (annual bonus)
  • Work From Anywhere: Enjoy up to 20 days a year of working from anywhere
  • A 24/7 Employee Assistance Program for you and your family
  • A collaborative environment with an opportunity to explore your potential and grow
  • Fulltime
Read More
Arrow Right

Senior Privacy Counsel & Data Protection Officer

Make online trading safer and privacy-first. As Senior Privacy Counsel & Data Pr...
Location
Location
Germany , Berlin
Salary
Salary:
Not provided
adevinta.com Logo
Adevinta
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Relevant experience both in a law firm and in-house, preferably with online platforms and/or ad tech
  • German law degree (2. Staatsexamen or equivalent)
  • Multi-year experience in the data protection field
  • Experience working as a DPO
  • Experience successfully engaging with data protection regulators
  • Proactive and a creative problem solver
  • High interest in networking and building social connections
  • Excellent collaborator with solid diplomacy, stakeholder management and strong presentation skills
  • Strong understanding of AI and data-driven technologies and their privacy implications
  • Know how to assess and mitigate privacy risks of AI systems
Job Responsibility
Job Responsibility
  • Act as a key contact for local regulators and officials in incidents, investigations or policy consultations
  • Monitor and interpret changes in legislation, industry standards and regulatory positions on privacy and data use
  • Develop and maintain a strong network with external privacy experts
  • Manage, monitor and report on privacy compliance topics, including records of processing activities, impact assessments and data retention
  • Identify data protection issues proactively and recommend pragmatic remedies
  • Co-shape and iterate the local privacy strategy and roadmap
  • Fulfill all DPO-related tasks under GDPR and local law, including reporting and governance structures
  • Run regular internal privacy compliance audits
  • Design and deliver training for business stakeholders
What we offer
What we offer
  • An attractive Base Salary
  • Participation in our Short Term Incentive plan (annual bonus)
  • Work From Anywhere: Enjoy up to 20 days a year of working from anywhere
  • A 24/7 Employee Assistance Program for you and your family
  • A collaborative environment with an opportunity to explore your potential and grow
  • A range of locally relevant benefits
  • Fulltime
Read More
Arrow Right