Confidentiality & Privacy Consultant

Management Consulting | GPS DC MANAGEMENT
Same job available in 7 locations

Position Summary

GPS Confidentiality & Privacy Consultant

Public Services Quality & Risk Management Team is currently seeking a full-time dedicated Consultant to support the strategic direction and operations of the Government & Public Services (GPS) Confidentiality and Privacy Team. Below is a detailed list of responsibilities for this role:

Government & Public Services Confidentiality and Privacy (GPS CP) Consultant:

The GPS CP Consultant will support the GPS CP Team in multiple aspects of Confidentiality and Privacy across GPS. The CP Consultant will also work closely with the US Office of Confidentiality and Privacy (OCP) in various aspects of program development, deployment, and progress reporting. Key responsibilities include the following:

Support all aspects of the Confidential Information (CI) Program

  • Analyze monthly reports to identify new Accounts and Engagements for the CI Program
  • Assist in development and deployment of account and engagement CIIMPs
  • Track CI Program deployments
  • Participate in CIMP training events to bolster awareness and collaboration efforts for the program

Stakeholder Outreach

  • Draft communication content from GPS CP leadership as necessary to provide information, solicit involvement, and highlight resources
  • Develop monthly C&P communication for newsletter
  • Draft regular updates to Government Chief Operating Officer and Quality Risk Management leads, as well as QRM Chief of Staff and CI Champion 

Security Exceptions

  • Facilitate the review, approval, implementation, and eventual revocation of applicable technical information security controls for the GPS industry, including but not limited to:
    • Optical media encryption exceptions
    • USB-connected storage device encryption
    • Outlook Web Access security control exceptions
    • Cloud Collaboration Site Uploads
    • Pre-separation (and other special circumstance) data transfer reviews

Incident Response and Insider Threat Support

  • Manage Device and Non-Device Incident queue
  • Participate in Incident Response and Insider Threat calls as appropriate and by team request
  • Assist teams in reinforcing existing controls, deploying additional controls
  • Track and incorporate lessons learned into future data manager trainings and communications
  • Participate in discussions with other stakeholders (such as Federal Operations, FedSec, OGC, OCP, etc.) in devising risk mitigation strategies for common incident occurrences

Occasional OCP Roles

  • Provide support during yearly Privacy Verification effort including communication, tracking, and assisting engagements through the PV process
  • Provide feedback on selecting accounts for reviews during the annual CI Program Assessment
  • Provide surge support during global incident response as needed
  • Review and contribute to OCP eminence activities (presentations, guidance, etc.)
  • Participate in confidentiality and privacy-related application or tool development, whether at the GPS level or Global level
  • Provide upward feedback on confidentiality program effectiveness and influencing firm-wide policies on security controls


  • 2 years of work experience in Consulting
  • Experience with project management
  • Experience collaborating with teams to complete tasks or deliverables
  • Bachelor’s Degree

    How you’ll grow


    At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to help sharpen skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs at Deloitte University, our professionals have a variety of opportunities to continue to grow throughout their career. Explore Deloitte University, The Leadership Center.


    Our people and culture

    Our diverse, equitable, and inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our client most complex challenges. This makes Deloitte one of the most rewarding places to work. Learn more about our inclusive culture.

    Professional development

    From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to build new skills, take on leadership opportunities and connect and grow through mentorship. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career. Learn more about our commitment to developing our people.

    As used in this posting, "Deloitte" means Deloitte Consulting LLP, a subsidiary of Deloitte LLP. Please see for a detailed description of the legal structure of Deloitte LLP and its subsidiaries.

    All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.

    We will consider for employment all qualified applicants, including those with criminal histories, in a manner consistent with the requirements of applicable state and local laws, including the City of Los Angeles’ Fair Chance Initiative for Hiring Ordinance, where applicable. See notices of various ban-the-box laws where available.

    Requisition code: 30146


    Caution against fraudulent job offers!

    We have been informed of instances where jobseekers are led to believe of fictitious job opportunities with Deloitte US (“Deloitte”). In one or more such cases, false promises of actual or potential selection, or initiation or completion of the recruitment formalities appear to have been or are being made. Some jobseekers appear to have been asked to pay money to specified bank accounts of individuals or entities as a condition of their selection for a ‘job’ with Deloitte. These individuals or entities are in no way connected with Deloitte and do not represent or otherwise act on behalf of Deloitte.

    We would like to clarify that:

    • At Deloitte, ethics and integrity are fundamental and not negotiable.
    • We are against corruption and neither offer bribes nor accept them, nor induce or permit any other party to make or receive bribes on our behalf.
    • We have not authorized any party or person to collect any money from jobseekers in any form whatsoever for promises of getting jobs in Deloitte.
    • We consider candidates on merit and that we provide an equal opportunity to eligible applicants.
    • No one other than designated Deloitte personnel (e.g., a Deloitte recruiter or Deloitte hiring partner) is permitted to extend any job offer from Deloitte.

    Anyone who at any time has made or makes any payment to any party in exchange for promises of job or selection for a job with Deloitte or any matter related to this (including those for ‘registration’, ‘verification’ or ‘security deposit’) or otherwise engages with any such person who has made or makes fraudulent promises or offers, does so (or has done so) entirely at their own risk. Deloitte takes no responsibility or liability for any such unauthorized or fraudulent actions or engagements. We encourage jobseekers to exercise caution.