E

Privacy Specialist

Expert360
Contract
On-site
Sydney, New South Wales, Australia

Title: Privacy Specialist

Location: Sydney OR Melbourne

Work Model: Hybrid

Seniority level: Senior Level

Type: Contract, 3 months initial, with potential extension or temp-to-perm

Industry: Professional Services

About the role: We are looking for privacy specialists for an initial 3-month contract, with potential to extend or transition to permanent role. The role focuses on client engagements delivering internal audits across privacy-related systems (excluding cyber security). Responsibilities include assessment of privacy obligations, regulatory compliance, incident and breach management, and overall privacy governance frameworks.

Key responsibilities:

  • Conduct internal privacy audits and client privacy/compliance assessments across multiple industries to evaluate regulatory compliance, risk exposure, and control effectiveness.
  • Advise client organisations on local and global privacy obligations, regulatory requirements, emerging risks, and industry trends.
  • Design, review, and assess privacy and broader compliance frameworks, with a focus on governance, control design, monitoring, surveillance, and continuous improvement.
  • Support clients in responding to complex regulatory change (e.g. GDPR), including interpretation of obligations, implementation of compliance management practices, and engagement with regulators.
  • Scope, execute, and deliver privacy and compliance advisory engagements, including reviews, gap analyses, remediation planning, and reporting.
  • Provide practical guidance on the application of privacy laws, regulatory obligations, industry standards, and best-practice principles.
  • Prepare high-quality reports and presentations for senior management and Boards, including audit findings, risk assessments, and compliance reporting.
  • Build and maintain strong client relationships, contributing to ongoing engagements and supporting business development initiatives, particularly in privacy-related services.
  • Lead or contribute to project teams, coaching junior staff and supporting capability development within the practice.
  • Engage effectively with stakeholders at all levels of client organisations to deliver outcomes and manage competing priorities.

To be successful in this role you will have:

  • Proven experience in privacy, data protection, cyber, or compliance advisory roles, including delivery of internal audits and client-facing assessments.
  • Strong knowledge and practical experience applying privacy and compliance regulations and standards, including:
  • -Privacy Act 1988
  • -General Data Protection Regulation (GDPR) (EU) 2016/679
  • Hands-on experience designing, implementing, and assessing compliance management practices, including:
  • -Regulatory change management and obligation interpretation
  • -Controls design, testing, and assurance
  • -Incident and data breach management
  • -Compliance monitoring and supervision
  • -Management and Board reporting
  • -Regulator engagement and liaison
  • Demonstrated ability to manage and deliver multiple compliance and advisory projects concurrently, with strong attention to detail and quality outcomes.
  • Excellent analytical, problem-solving, written, and verbal communication skills, with the ability to translate complex regulatory requirements into practical advice.
  • Experience developing trusted client relationships and contributing to business development, particularly within privacy and data protection services.
  • Ability to lead teams, mentor junior staff, and contribute to the development of leadership capability.
  • Interest in working across a broad range of sectors, including financial services, technology and media, energy and resources, and the public sector.
  • Experience with Governance, Risk and Compliance (GRC) systems is desirable.
  • Tertiary qualification in law, commerce, or a related discipline preferred.
  • Industry certifications such as CIPP, CIPM, CIPT, CDPSE, or Certificate IV in Compliance and Risk Management (completed or in progress) are highly regarded.
  • Commercially minded, detail-oriented, and committed to delivering high-quality outcomes across diverse client engagements