GRC consultant-OneTrust

Role Purpose

Responsible for managing and supporting the OneTrust Data Compliance Platform, ensuring data privacy, governance, and regulatory compliance across enterprise systems. The team will handle privacy assessments, DSARs, vendor risk, consent management, and overall data governance in alignment with GDPR, PDPPA, and other compliance frameworks.

Key Responsibilities:

• Monitor OneTrust dashboards, scan jobs, and workflow queues.
• Validate and triage Data Subject Access Requests (DSARs).
• Perform health checks of OneTrust connectors (M365, ServiceNow, DLP tools).
• Log, categorize, and escalate compliance incidents via ITSM tools.
• Generate daily/weekly compliance and activity reports.
• Follow SOPs for standard updates to policies or consent templates.
• Understanding of data privacy principles (GDPR, PDPPA, CCPA).
• Familiarity with OneTrust UI and data privacy workflows.
• Configure and manage OneTrust modules (Privacy, DSAR, Vendor Risk, Consent).
• Review and optimize workflows for PIA/DPIA and DSAR requests.
• Configure consent collection mechanisms across web, mobile, and application platforms.
• Ensure consent banners, cookie notices, and preference centers comply with GDPR, CCPA, PDPPA, and other regulations.
• Monitor consent logs, user preferences, and audit trails for accurate tracking and reporting.
• Implement workflows for capturing, updating, and withdrawing user consent.
• Coordinate with application, web, and marketing teams to implement consent scripts.
• Integrate OneTrust with data discovery, DLP, and identity management tools.
• Support the legal and compliance team in generating audit-ready reports.
• Validate and maintain Records of Processing Activities (RoPA) and data maps.

Job Type: Contract

Pay: $55.00 per hour

Expected hours: 40 per week

Experience:

• GRC: 9 years (Required)
• OneTrust: 5 years (Required)
• Data Subject Access Requests (DSARs): 2 years (Required)
• PIA/DPIA : 4 years (Required)

Work Location: In person

Salary : $55