Principal Data Security & Governance Consultant

Are you passionate about data protection and security? Do you excel in customer-facing roles and enjoy helping clients navigate complex data security challenges and regulations? Can you work with and engage with the highest levels within enterprise environments including C-Suite execs and key technology decision makers?

If so, we have the perfect opportunity for you! Erg is hiring a Principal Data Security & Governance Consultant. In this role, you will be at the forefront of ensuring the security and protection of our customers’ data. You will work closely with clients to understand their needs and implement effective data protection strategies. You will eat, breathe, and sleep data governance, data security and data protection, making it your mission to help protect our customers’ information. You will play a key role in providing data security and governance advice and guidance to our enterprise clients as well as product selections and project delivery

Ergo are expanding our delivery of data security and governance consultancy services division. We are looking for an enthusiastic individual who lives and breathes data governance and security with excellent commercial acumen.

This is a great opportunity to be part of a dynamic and growing Cyber Security team within ergo – Irelands largest privately owned MSP. You will take ownership of the data governance and security team with an opportunity to build a dedicated team of supporting personnel over time.

Key Roles & Responsibilities

• Provide consultation to clients on their individual and unique data security, protection and compliance requirements.
• Develop, implement, and maintain cutting-edge data protection policies and procedures.
• Capable of reviewing clients existing data security posture and making strategic and tactical recommendation to resolve identified gaps.
• Can assess, prioritize, and mitigate data exposure and risks across enterprise environments.
• Provide guidance and support to customers on data protection best practices.
• Collaborate and instruct internal teams to ensure compliance with data protection regulations.
• Educate and train customers on data security measures, empowering them to protect their data.
• Stay up-to-date with the latest data protection laws and technologies.[AG1]
• Ability to build strong relationships
• Exhibits strong capability to operate autonomously while fostering clear and consistent communication with internal and external stakeholders
• Collaborates with IT, compliance, risk, and legal teams.
• Mentors junior security analysts and contributes to the security awareness culture.
• Possesses the executive presence and communication skills necessary to confidently present complex information to senior leadership, auditors, and board members

Education, Qualifications and Skills 

• Proven track record (10+ years) within financial services or similar highly regulated and governed environments delivering data governance and security projects
• Customer facing and consultancy experience to the highest levels of C-Level audience
• Excellent analytical thinker with a problem solver mind set and attention to detail
• Excellent communication and interpersonal skills.
• Good commercial acumen
• Good knowledge or experience with DSPM and data products like Varonis, Microsoft Purview, and Netwrix, Forcepoint etc.
• Technical proficiency in data protection technologies and tools.

Qualifications (Any of the following)

• Bachelor’s degree in Information Security, Computer Science, or a related field.
• Certified Data Privacy Solutions Engineer (CDPSE).
• Certified Information Systems Security Professional (CISSP).
• Certified Information Security Manager (CISM).
• ITIL Foundation certification for process management.
• Professional certifications such as CISSP, CISM, or GDPR Practitioner are preferred.
• Strong understanding of data protection regulations (e.g., GDPR, CCPA). Law Society GDPR certification or similar.
• Familiarity with all relevant data protection and governance standards.
• Knowledge of security frameworks and standards. E.g. ISO27001