Privacy Specialist

Line of Service

Internal Firm Services

Industry/Sector

Not Applicable

Specialism

IFS - Office of General Counsel (OGC)

Management Level

Senior Manager

Job Description & Summary

At PwC Australia, privacy and data protection are critical to building trust with our clients and communities. As a Privacy Specialist, you’ll play a vital role in managing PwC’s privacy obligations, ensuring compliance across our business activities, and supporting the development of new offerings in a rapidly evolving landscape. You will work closely with stakeholders across multiple sectors to provide pragmatic and risk-based privacy solutions.

Why PwC?

At PwC Australia, your skills meet purpose. We tackle big challenges across industries like finance, technology, energy, and health—giving you the chance to make a real impact. Here, your growth is our priority. You’ll work with leading teams, explore new technologies, and unlock your full potential.

Join a global community of more than 370,000 people who value bold ideas, collaboration, and lasting change. Together, we’re building trust and shaping the future.

What you’ll do:

• Provide pragmatic advice on complex privacy, data protection, and AI-related issues
• Implement and enhance PwC’s enterprise privacy strategy, framework, and operating model, embedding Privacy by Design across processes, products, and platforms.
• Lead and oversee Privacy Impact Assessments (PIAs) for complex initiatives, including new offerings, AI use cases and technology, and assess the privacy risks and control requirements.
• Serve as a senior subject-matter expert on Australian privacy law (Privacy Act, APPs, Eligible Data Breaches) and international regimes (GDPR/UK GDPR, NZ Privacy Act), advising on lawful bases, purpose limitation, transparency, and cross-border data transfers (SCCs, IDTA, BCRs).
• Lead the response to privacy incidents and breaches: conducting privacy assessments and regulatory notifications as required. Advise on communications to affected individuals, the OAIC, and PwC Executive Leaders.
• Management of individuals ‘rights; oversee automation, SLAs, and reporting of individuals’ requests.
• Drive privacy policy, standards, and control design. Maintain the privacy risk register and deliver management and Executive-level reporting.
• Partner with Legal, Risk, Cyber & Security, Technology, Product Development, Marketing, HR, and business leaders to identify and mitigate privacy risks in strategic programs and go-to-market initiatives; translate regulatory changes into practical guardrails.
• Oversee third-party and supplier privacy risk: assist in due diligence, review DPAs and privacy clauses, and manage ongoing assurance for offshore processing and service providers.
• Select and optimise privacy-enabling technologies (e.g., OneTrust, consent management platforms, individuals rights tooling, data discovery/classification, anonymisation), driving automation and measurable outcomes.
• Monitor regulatory developments and reform (including evolving Australian privacy law) and lead readiness programs; deliver training, awareness, and culture-change initiatives organisation-wide.
• Coach and develop talent and coordinate external advisors where needed.
• Contribute to thought leadership and, where relevant, support the development of privacy-aligned client offerings in collaboration with our business teams.

What we’re looking for:

• 12-month full-time contract
• 8+ years’ experience in privacy/data protection, legal, risk, compliance, or data governance roles, with a track record of building and operating privacy programs in complex organisations.
• Deep knowledge of Australian privacy law and the Eligible Data Breaches scheme; strong practical experience with GDPR/UK GDPR and familiarity with other international regimes (e.g., NZ Privacy Act), including cross-border transfer mechanisms.
• Proven leadership in conducting and overseeing PIAs/DPIAs, incident response, regulator engagement, and executive-level stakeholder management.
• Hands-on experience with privacy technologies and data governance tools (e.g., OneTrust/TrustArc, consent and preference management, Individuals rights automation, data discovery/classification, RoPA).
• Exceptional communication and influencing skills, with the ability to craft clear, pragmatic guidance and drive risk-based commercial decisions at pace.
• Advantageous: experience in AI and data ethics governance, de-identification/pseudonymisation, privacy engineering, and alignment to frameworks such as ISO 27701/27001 or the NIST Privacy Framework.
• Relevant qualifications and/or certifications (e.g., law degree, CIPP/E, CIPP/A, CIPM, CIPT) and experience managing teams.

What you’ll gain:

• The opportunity to work with leading organisations and cutting-edge technology that challenge and expand your expertise.
• Flexibility means trusting you to choose when, where, and how you work—balancing what’s best for you, your team, and your clients to grow and thrive together.
• Clear paths for career progression supported by continuous learning and leadership development.
• Generous leave entitlements including four weeks’ annual leave and float public holidays to support your work-life balance.

We know that perks are as important as your financial rewards. Explore all the benefits that PwC has to offer here.

This role is being offered as a 12-month parental leave cover.

Ready to grow here and go further? Join PwC Australia as a Privacy Specialist and make an impact that goes beyond the expected. Apply now and take your next step with a team shaping the future.

We’re committed to treating all our job applicants fairly and with respect, irrespective of their actual or assumed background, disability, neurodivergence, or any other protected characteristic. We want you to have every opportunity to thrive in our selection process. In the application form, you can let us know what adjustments you require during our recruitment process and/or any workplace accommodations you anticipate needing to help you perform your role. 

No Agencies Please: We kindly request that recruitment agencies do not submit CVs in response to this advertisement. We are only accepting applications direct from individuals.

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required:

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Coaching and Feedback, Communication, Compliance Training, Corporate Litigations, Creativity, Cybersecurity, Data Breach, Embracing Change, Emotional Regulation, Empathy, Inclusion, Influence, Information Security, Information Technology Applications, Intellectual Curiosity, Investigation, Law Practice, Learning Agility, Legal Advice, Legal Compliance, Legal Data Protection {+ 21 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Not Specified

Available for Work Visa Sponsorship?

No

Government Clearance Required?

No

Job Posting End Date