CrawlJobs Logo

Senior Data Protection and Compliance Consultant

hso.com Logo

HSO

Location Icon

Location:
Canada , Toronto

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

We are seeking a highly skilled Senior Data Protection & Compliance Consultant with deep expertise in Microsoft Purview to support our clients in designing, implementing, and maturing their data governance, protection, and regulatory compliance capabilities. In this consulting role, you will work directly with client stakeholders to assess requirements, lead solution delivery, advise on best practices, and ensure successful adoption of Microsoft Purview across their Microsoft 365, Azure, and Copilot environments. You will act as a trusted advisor—helping clients strengthen their governance frameworks, reduce regulatory risk, and establish end-to-end control of sensitive data across their digital estate.

Job Responsibility:

  • Guide clients in administering and optimizing the Microsoft Purview Data Map, including data scanning, classification, and cataloging of enterprise assets
  • Support clients in establishing metadata management, business glossary standards, and stewardship processes
  • Lead client engagements to implement data lineage and conduct impact analysis
  • Conduct data estate maturity assessments for clients and provide recommendations to improve governance controls
  • Advise clients on sensitive data identification and classification strategies using Purview classifiers
  • Configure and deploy sensitivity labels, label policies, and automatic labeling tailored to client business needs
  • Assist clients with Information Rights Management (IRM) and encryption configurations
  • Design and implement Data Loss Prevention (DLP) solutions across Microsoft 365 workloads
  • Support clients in defining and operationalizing retention and records management processes
  • Lead client workshops and implementations for eDiscovery (Standard & Premium)
  • Help clients adopt Insider Risk Management, Communication Compliance, and auditing capabilities
  • Map Microsoft Purview capabilities to client-specific regulatory, privacy, and security frameworks
  • Produce audit-ready reporting, compliance evidence packages, and documentation for clients
  • Perform client-focused risk assessments and gap analyses with actionable remediation recommendations
  • Lead integration efforts between Purview and client environments across Microsoft 365, Azure, and Copilot
  • Guide clients on governance strategies for structured and unstructured data
  • Advise clients on AI governance, responsible AI use, and data lifecycle implications

Requirements:

  • 5–8+ years in consulting or enterprise data governance, protection, compliance, or security roles
  • Deep, hands-on expertise with Microsoft Purview across governance, protection, and compliance solutions
  • Strong understanding of major compliance regulations (GDPR, HIPAA, ISO, NIST)
  • Experience leading client workshops, assessments, and technical implementation engagements
  • Ability to translate complex compliance obligations into practical controls for client environments
  • Strong communication, facilitation, and stakeholder-management skills

Nice to have:

  • SC-400, 401: Microsoft Information Protection Administrator
  • SC-900: Microsoft Security, Compliance, and Identity Fundamentals
  • SC-200: Microsoft Security Operations Analyst
  • AZ-900: Microsoft Azure Fundamentals
  • MS-102: Microsoft 365 Administrator

Additional Information:

Job Posted:
April 01, 2026

Employment Type:
Fulltime
Icon
HSO - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Senior Data Protection and Compliance Consultant

Medior-Senior GRC Consultant - Regulatory and Compliance focus

We ensure that all operations, digital or otherwise, meet the latest quality and...
Location
Location
Belgium , Brussels
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-8 years of experience in the Cybersecurity business landscape
  • Proficiency in Dutch and English is mandatory
  • Advanced knowledge of the 'cyber regulatory area'
  • Understanding of AI Act, DORA is a plus
  • Strong experience in performing Compliance Maturity assessments, Data Protection Impact Assessments and to apply Data protection by Design/By default and risk-based approach, perform quality legal compliance analyses and produce good quality reports
  • ISO27001 certification is a plus, experience in ITSRM, and a good understanding of compliance-oriented projects
  • Strong knowledge of PM roles and the ability to independently handle content-oriented missions
  • Client-oriented with the ability to navigate the EU and national regulatory environment, engaging with various stakeholders (regulators, EU, CISO, DPO)
  • A hands-on approach with a solution-oriented mindset, capable of effective communication within the business environment
  • Independence in client-oriented projects and adept at identifying opportunities
Job Responsibility
Job Responsibility
  • Lead regulatory compliance projects
  • Interpret complex legislation such as AI Act and DORA
  • Apply technical knowledge in cybersecurity to enhance the company’s security posture
  • Contribute to pre-sales activities
  • Draft RFPs
  • Understand the broader EU and national business landscapes
What we offer
What we offer
  • Extensive career development opportunities
  • Dynamic network of 56,000 professionals
  • Wide array of offices to explore
  • Fulltime
Read More
Arrow Right

Senior Information Security Consultant (QSA)

PGI is a global consultancy that helps organisations build digital resilience. W...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
pgitl.com Logo
Protection Group International
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven relationship management skills and experience in Information Assurance consultancy
  • Qualified Security Assessor (QSA) experience with valid PCI-DSS QSA accreditation with a minimum of 2 years of experience performing PCI DSS compliance consultancy
  • Familiarity with PCI DSS and NIST CSF
  • Experience in conducting risk assessments, cyber security maturity evaluations, and remediation strategies
  • Strong communication skills, able to present to clients and senior stakeholders
  • A collaborative, solutions-oriented mindset with excellent time-management skills
Job Responsibility
Job Responsibility
  • Provide expert guidance to clients, supporting both pre-sales and delivery, and establishing trusted advisor relationships to drive compliance and security improvements
  • Lead and deliver hands-on PCI DSS compliance consultancy, performing assessments, gap analyses, and remediation strategies tailored to client needs
  • Act as a subject matter expert in PCI DSS compliance and Governance, Risk, and Compliance (GRC), advising clients on regulatory compliance, risk management, and information security best practices
  • Contribute to PGI’s consultancy growth by aligning services with emerging trends and industry standards. Drive PGI’s accreditations and assist with maintaining ISO 27001, PCI DSS and data protection compliance
  • Mentor junior team members, contribute to the recruitment process, and oversee third-party relationships to ensure project profitability and delivery quality
  • Stay ahead of industry trends, emerging security threats, and best practices to maintain professional growth and continuously improve PGI’s consultancy offerings
Read More
Arrow Right
New

Privacy and Data Protection Lawyer

At Vodafone, we’re not just shaping the future of connectivity for our customers...
Location
Location
Portugal , Lisboa
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Law degree
  • 0–2 years of experience in Data Protection, Compliance, Regulatory Affairs, or related legal practice
  • Knowledge of GDPR principles and the national legal framework on data protection
  • Strong analytical skills, accuracy, and legal rigour
  • Ability to translate legal requirements into clear business-oriented guidance
  • Basic knowledge of Data Protection, Information Security, or Compliance frameworks
  • Familiarity with legal support tools or document management systems
  • Experience in technology, telecom, consultancy, or regulatory environments
  • Ability to work with multidisciplinary teams
  • Fluency in English
Job Responsibility
Job Responsibility
  • Draft and review contractual clauses, data processing agreements, and legal documentation related to data protection
  • Analyse legal and regulatory requirements and produce internal legal opinions and guidance
  • Support the interpretation and application of the GDPR, national data protection law, and Group requirements
  • Conduct legal risk assessments on data protection and compliance topics
  • Support responses to regulatory authorities and prepare draft replies when required by the DPO or senior team members
  • Contribute to governance, compliance, security, and risk management initiatives with legal relevance for data protection
  • Cooperate with internal teams (Technology, Security, Commercial, HR, etc.) by clarifying legal requirements
  • Monitor legislative and regulatory developments relevant to data protection
What we offer
What we offer
  • Hybrid Work Model - Flexible hybrid work model with 8-10 in-office days per month, managed by team leaders
  • Vodafone Products and Services - Employees get a mobile phone, free communication plan, data card, and various discounts on services and products
  • Recognition - Recognition programs for innovative, creative, high-potential employees and exemplary behaviors
  • Health and Well-being - Well-being Program offers nutrition and psychological consultations, webinars, workshops, and discounts on various services and products
  • Learning - Access to Communities of Practice and a customizable digital training platform with high-quality content (namely Harvard Business Publishing, Skillsoft and Speexx)
  • Local and International Mobility - Internal recruitment with local and international rotation opportunities across departments and roles
Read More
Arrow Right

Senior Privacy Counsel & Data Protection Officer

Make online trading safer and privacy-first. As Senior Privacy Counsel & Data Pr...
Location
Location
Germany , Berlin
Salary
Salary:
Not provided
adevinta.com Logo
Adevinta
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Relevant experience both in a law firm and in-house, preferably with online platforms and/or ad tech
  • German law degree (2. Staatsexamen or equivalent)
  • Multi-year experience in the data protection field
  • Have worked as a DPO
  • Have successfully engaged with data protection regulators
  • Proactive and a creative problem solver
  • High interest in networking and building social connections
  • Excellent collaborator with solid diplomacy, stakeholder management and strong presentation skills
  • Strong understanding of AI and data-driven technologies and their privacy implications
  • Know how to assess and mitigate privacy risks of AI systems
Job Responsibility
Job Responsibility
  • Act as a key contact for local regulators and officials in incidents, investigations or policy consultations
  • Monitor and interpret changes in legislation, industry standards and regulatory positions on privacy and data use
  • Develop and maintain a strong network with external privacy experts
  • Manage, monitor and report on privacy compliance topics
  • Identify data protection issues proactively and recommend pragmatic remedies
  • Co-shape and iterate the local privacy strategy and roadmap
  • Fulfill all DPO-related tasks under GDPR and local law
  • Run regular internal privacy compliance audits
  • Design and deliver training for business stakeholders
What we offer
What we offer
  • An attractive Base Salary
  • Participation in our Short Term Incentive plan (annual bonus)
  • Work From Anywhere: Enjoy up to 20 days a year of working from anywhere
  • A 24/7 Employee Assistance Program for you and your family
  • Fulltime
Read More
Arrow Right

Senior Privacy Counsel & Data Protection Officer

Make online trading safer and privacy-first. As Senior Privacy Counsel & Data Pr...
Location
Location
Germany , Berlin
Salary
Salary:
Not provided
adevinta.com Logo
Adevinta
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Relevant experience both in a law firm and in-house, preferably with online platforms and/or ad tech
  • Hold a German law degree (2. Staatsexamen or equivalent)
  • Multi-year experience in the data protection field
  • Have worked as a DPO
  • Have successfully engaged with data protection regulators
  • Proactive and a creative problem solver
  • High interest in networking and building social connections
  • Excellent collaborator with solid diplomacy, stakeholder management and strong presentation skills
  • Strong understanding of AI and data-driven technologies and their privacy implications
  • Know how to assess and mitigate privacy risks of AI systems
Job Responsibility
Job Responsibility
  • Act as a key contact for local regulators and officials in incidents, investigations or policy consultations
  • Monitor and interpret changes in legislation, industry standards and regulatory positions on privacy and data use
  • Develop and maintain a strong network with external privacy experts
  • Manage, monitor and report on privacy compliance topics
  • Identify data protection issues proactively and recommend pragmatic remedies
  • Co-shape and iterate the local privacy strategy and roadmap
  • Fulfill all DPO-related tasks under GDPR and local law
  • Run regular internal privacy compliance audits
  • Design and deliver training for business stakeholders
What we offer
What we offer
  • An attractive Base Salary
  • Participation in our Short Term Incentive plan (annual bonus)
  • Work From Anywhere: Enjoy up to 20 days a year of working from anywhere
  • A 24/7 Employee Assistance Program for you and your family
  • A collaborative environment with an opportunity to explore your potential and grow
  • Fulltime
Read More
Arrow Right

Senior Privacy Counsel & Data Protection Officer

Make online trading safer and privacy-first. As Senior Privacy Counsel & Data Pr...
Location
Location
Germany , Berlin
Salary
Salary:
Not provided
adevinta.com Logo
Adevinta
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Relevant experience both in a law firm and in-house, preferably with online platforms and/or ad tech
  • German law degree (2. Staatsexamen or equivalent)
  • Multi-year experience in the data protection field
  • Experience working as a DPO
  • Experience successfully engaging with data protection regulators
  • Proactive and a creative problem solver
  • High interest in networking and building social connections
  • Excellent collaborator with solid diplomacy, stakeholder management and strong presentation skills
  • Strong understanding of AI and data-driven technologies and their privacy implications
  • Know how to assess and mitigate privacy risks of AI systems
Job Responsibility
Job Responsibility
  • Act as a key contact for local regulators and officials in incidents, investigations or policy consultations
  • Monitor and interpret changes in legislation, industry standards and regulatory positions on privacy and data use
  • Develop and maintain a strong network with external privacy experts
  • Manage, monitor and report on privacy compliance topics, including records of processing activities, impact assessments and data retention
  • Identify data protection issues proactively and recommend pragmatic remedies
  • Co-shape and iterate the local privacy strategy and roadmap
  • Fulfill all DPO-related tasks under GDPR and local law, including reporting and governance structures
  • Run regular internal privacy compliance audits
  • Design and deliver training for business stakeholders
What we offer
What we offer
  • An attractive Base Salary
  • Participation in our Short Term Incentive plan (annual bonus)
  • Work From Anywhere: Enjoy up to 20 days a year of working from anywhere
  • A 24/7 Employee Assistance Program for you and your family
  • A collaborative environment with an opportunity to explore your potential and grow
  • A range of locally relevant benefits
  • Fulltime
Read More
Arrow Right

Director & Associate General Counsel – Data Protection Team Lead

We are looking for a senior-level legal leader within the EU Data Legal team. Th...
Location
Location
Ireland , Dublin
Salary
Salary:
Not provided
meta.com Logo
Meta
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Solicitor or barrister (qualified to practice law in at least one EU jurisdiction or the UK)
  • 10+ years of relevant post-qualification legal experience in data protection law, including EU/UK and, ideally, US regime
  • Experience of managing teams of legal professionals
  • Proven experience in designing, building, and executing complex, cross-jurisdictional legal programs in a fast-paced environment, ideally with tech industry experience
  • Experience in complex multi-jurisdictional incident response, including leading on responses to regulatory inquiries from EU and UK regulators
  • Demonstrated strategic leadership in areas such as continuous process improvement, AI adoption, and efficient resource management
  • Demonstrated ability to make and defend difficult and sensitive judgment calls on precedent-setting legal and compliance positions
  • Demonstrated ability to consult and coordinate with cross-functional partners to drive systemic, cross-functional change
Job Responsibility
Job Responsibility
  • Manage the privacy governance programs to support Meta group companies that offer services in the European region
  • Lead and direct improvements in processes and accountability documentation to address evolving legal requirements in a scalable and efficient way
  • Maintain a robust system and dedicated staffing for reporting relevant data security incidents across the EU and the UK
  • Lead on responses to regulatory enquiries from EU and UK regulators on data security incidents, requiring experienced senior judgment
  • Manage and direct legal advisory workstreams related to the personal data of Meta employees and contingent workers under EU, UK, and US law
  • Direct strategic programs for managing commercial contracts related to data use and data sharing, including driving efficiency initiatives like templatised contracts and the use of novel AI solutions
  • Manage a dedicated project management function to support the EU Data Legal team, driving initiatives to scale workflows and reduce lawyer time on non-legal tasks
  • Drive initiatives to share best practices in scale and efficiency to other EU legal teams
  • Ensure consistency and quality of legal advice provided by the team across all workstreams
  • Exercise excellent people skills, be a team player with a bias to action, and be motivated by the opportunity to solve complex, high-risk, multi-jurisdictional compliance matters
Read More
Arrow Right

Data Privacy Vice President

A fantastic opportunity for an experienced Data Privacy professional to join Bar...
Location
Location
France , Paris
Salary
Salary:
Not provided
barclays.co.uk Logo
Barclays
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Exceptional communication skills when engaging with internal and external stakeholders across all seniority levels
  • A deep understanding of European data privacy legislation and its implementation requirements, including control frameworks
  • A strong conceptual and regulatory understanding of artificial intelligence use cases within a banking environment
  • Proven experience in managing personal data breaches, including containment, reporting, and implementing measures to prevent future breaches
Job Responsibility
Job Responsibility
  • Development and maintenance of the Bank’s Data Privacy Framework, including the content of Data Privacy policies, processes and procedures and other artefacts, and supporting the Bank’s Data Protection Officers in monitoring and reporting on adherence to these
  • Provision of specialist support to Business Oversight Compliance teams in their oversight of the, identification, assessment and management of potential Data Privacy risks arising from the processing of personal data and implementation of the Bank’s Data Privacy Framework
  • Co-ordination of the response to personal data breaches, including appropriate containment and remediating actions, and, where personal data breaches are assessed as triggering a requirement to report to regulators, reviewing and then co-ordinating with 1LoD, Legal and BOC to ensure any such incidents are notified to regulators and impacted individuals in accordance with relevant statutory timeframes
  • Management of Barclays relationship with DPAs by acting as a point of contact for them and ensuring timely responses to regulatory complaints and investigations, queries, and formal consultations
  • Collaboration with 1LOD Data Privacy SMEs, Legal, and other relevant Compliance teams and risk management functions to facilitate a comprehensive approach to the management of Compliance Risk and other related risks
  • Barclays representation in key Data Privacy industry groups and associations, and use intelligence gained from these to identify areas for improvement and implementation of enhancements to the Data Privacy Framework
  • Education and awareness support to employees in relation to Data Privacy, including maintenance of Group-wide mandatory training courses on Data Privacy to ensure employees are clear on their data privacy obligations, how to manage personal data securely, and how to identify and report personal data breaches
What we offer
What we offer
  • Hybrid working
  • Structured approach to hybrid working with fixed 'anchor' days
  • Supportive and inclusive culture and environment
  • Commitment to flexible working arrangements
  • Opportunity for mobility and exploring operations to build a career
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog Salaries About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy