Data Protection Senior Consultant - 1-Year Engagement

Riyadh, KSA

Location: Riyadh, KSA.
Years of Experience: 6+ years.
Project Duration: 1 year.
Working Arrangement: on-site.
Language Requirements: Fluency in English (written and spoken).

The Data Protection Senior Consultant will work alongside the client’s team to ensure compliance with national data protection regulations and the implementation of robust data protection operations. The role involves developing and maintaining all relevant documentation, frameworks, and tools to support the client’s data protection strategy. The consultant will also provide expert guidance, perform assessments, and ensure the proper execution and alignment of data protection initiatives across departments.

Minimum of 6 years of experience.

Proven experience in implementing and managing data protection programs aligned with national and international regulations.

Strong understanding of regulatory frameworks and controls, including NCA data protection requirements.

Experience conducting data protection and privacy risk assessments, including DPIAs and third-party risk evaluations.

Demonstrated experience developing and maintaining data protection documentation such as policies, procedures, templates, and awareness materials.

Experience in monitoring and assessing compliance with data protection controls and performing gap analyses.

Technical knowledge of data protection controls, including data retention, destruction, breach management, and disclosure processes.

• Strong knowledge of data protection and cybersecurity frameworks implementation, including NCA ECC & DCC, ISO 27001, and NIST.
• Security Solution Implementation: Practical experience deploying and managing solutions such as DLP, CASB, MDM, encryption gateways, data masking, watermarking, and endpoint protection platforms.
• Proven experience in ensuring the design and validation of technical protection measures across all applicable systems.

Bachelor’s or Master’s degree in Information Security, Computer Science, Law, or a related field.

Strong analytical, organizational, and stakeholder engagement skills.

Excellent communication abilities in English (written and verbal).

Ability to work independently, manage multiple priorities, and deliver high-quality outputs under tight deadlines.

Support the client team in managing and executing data protection operations in alignment with national regulatory requirements.

Develop and maintain all documentation related to data protection activities, including policies, frameworks, models, and templates.

Support the implementation of the client’s data protection strategy and roadmap.

Conduct compliance assessments to ensure alignment with NCA controls and other applicable standards.

Perform data protection impact assessments, risk analyses, and third-party data protection assessments.

Oversee and report on data retention, destruction, disclosure, and incident management processes.

Design and deliver data protection awareness and training initiatives.

Collaborate with internal departments to communicate and implement control requirements.

Provide ongoing advisory support and knowledge transfer to the client’s team on best practices in data protection.

Track and report progress on assigned activities, ensuring timely and compliant execution of deliverables.

Accepted file types: pdf, doc, docx, txt, rtf