EY Data Protection & Privacy Consultant in Diegem, Belgium

Data Protection & Privacy Consultant


Requisition # DIE000QT

Post Date Dec 13, 2017

About EY

EY is a global leader in assurance, tax, transactions and advisory services. Our people are united by our shared values, which inspire our people worldwide and guide them to do the right thing, and our commitment to quality, which is embedded in who we are and everything we do. EY is committed to doing its part in building a better working world for our people, for our clients and for our communities. Visit us at www.ey.com/careersbelgium and see why EY has been on FORTUNE's "100 Best Companies to Work For®" list for 15 consecutive years.

EY Advisory Services is a fast-moving, high-growth area with huge potential. It offers variety, challenge, responsibility and the opportunity to realize your leadership potential. Our client teams are focused on helping clients improve business performance and operational efficiency while managing risk. We help clients by delivering assessment, transformation and process efficiency solutions in specialty areas like finance, supply chain, internal audit & compliance, risk management, people and organizational change, strategic direction, and IT program transformation/IT advisory and Enterprise intelligence. Our Advisory team members focus on the priorities and challenges our clients' CFOs & CEOs are facing within these fields.

Our Cyber Security and Privacy professionals help organizations address the challenge of managing cybersecurity and privacy risks in a way that is in line with their business strategy. Our professionals provide independent, impartial assistance in IT and across the business, bringing insights from our work with commercial and government organizations, as well as knowledge of industry leading practice, regulation and financial audit requirements.

In response to strong market demand, EY is seeking additionaltalented professionals on several levels to enhance our Data Protection and Privacy services within our Advisory business.

Tasks & Responsibilities

Technology has fundamentally transformed the notion of privacy — what it means to affected stakeholders (individuals, regulators, organizations) and how each party can remain accountable in a world that technology has turned on its head. Today’s privacy regulations are evolving all around the world, especially in Europe with the soon enforcement of the General Data Protection Regulation (GDPR) adopted by the Council of the European Union and the European Parliament in April 2016.

Our Data Protection and Privacy Consulting Services are meant to assist organizations in handling these new regulations, trends and risks, by ensuring a regulatory compliant flow of personal data, supporting their business. Being a part of the team, you will be involved in the following activities:

· Designing and implementing data protection and privacy programs at our clients supporting their business

· Evaluating the data protection and privacy practices of our clients

· Conducting Privacy Impact Assessments

· Supporting and guiding our clients in adhering to the complex web of relevant national and international regulations (e.g. EU General Data Protection Regulation)

· Deploying processes and tools to help detect and prevent privacy breaches

· Ensuring a harmonized approach towards data protection and privacy by bringing together our client’s stakeholders (e.g. legal, compliance, risk, HR, security, business functions… )

· Assisting clients in privacy related incident response activities

· Supporting the client’s team by acting as an interim team member (e.g. data protection officer, security officer, security manager, security analyst…)

Taking into account your experience and maturity, your involvement will vary from assisting in delivering privacy projects to acting as a subject matter expert on them or to leading a team towards excellent client experience. Furthermore, you may be involved in service development or in proactively identifying and pursuing opportunities for further business and team growth.


  • Bachelor's or Master’s Degree in IT, Law or anything in between that demonstrates your interest in the data protection and privacy domain

  • You have knowledge of and experience with relevant data protection and privacy laws and regulations (e.g. Belgian Privacy Act, EU GDPR, and Privacy Shield) and industry standards and frameworks, such as GAPP and BCR.

  • Possession of relevant qualifications such as CIPM, CIPT, CIPP/E, CISM, CISSP, and/or HCISSP, as well as involvement in industry related organizations (e.g. IAPP, ISACA, (ISC)²… ) are an asset

  • You have the ability to efficiently understand client organizations and their business model and to tailor relevant processes to privacy requirements

  • You are able to communicate effectively with different stakeholders (e.g. business, legal, IT, security…) about data protection and privacy matters

  • You have an analytical mindset, strive for quality and are able to work in a result-oriented environment

  • You arefluent in Dutch and English


§ An intellectually challenging role within a leading international company

  • Growth potential in a dynamic and diverse team

  • Personal development. All of our professionals receive comprehensive training covering business acumen, technical and professional skills development

  • An interesting salary package including company fringe benefits