Summary
Overview
Work History
Education
Skills
Certification
Languages
Interests
Timeline
Generic

Graham Chikaka

Melbourne

Summary

I am currently a Manager specialising in Privacy and Data Protection, TPRM, and Data Governance & Management within Deloitte’s Cyber Risk Services practice, with more than twelve years’ experience across the various fields. At Deloitte & Touché, I have spearheaded and led teams of Subject Matter Experts (SMEs) on a range of privacy and risk, TPRM, records management and data management projects, enhancing client satisfaction and operational efficiency. My expertise in legal and regulatory compliance, and adept leadership fostered a culture of innovation and team development, positioning me as a pivotal figure in advancing business objectives and strategy in my areas of expertise and fostering robust client relationships.

Overview

11
11
years of professional experience
1
1
Certification

Work History

Manager: Privacy, Third Party Risk Management

Deloitte & Touché
Melbourne, VIC
07.2021 - Current
  • Responsible for leading a team of subject matter experts on client engagements across the highlighted areas of expertise and skills above.
  • Responsible for producing and overseeing quality work output within the team on client engagements.
  • Responsible for managing client and stakeholder relationships.
  • Responsible for managing client risk, team risk, and supporting with organisational reputational risk management.
  • Responsible for planning, reporting on and achieving client project milestones and deliverables within agreed timelines.
  • Managed and motivated project teams to be productive and engaged in work.
  • Accomplished multiple tasks within established timeframes.
  • Maintained professional, organised, and safe environment for engagement team and clients.
  • Enhanced customer satisfaction by resolving disputes promptly, maintaining open lines of communication, and ensuring high-quality service delivery.
  • Cross-trained existing employees to maximize team agility and performance.
  • Controlled costs to keep business operating within budget and increase profits.
  • Responsible for fostering team culture, supporting wellbeing and capability development.
  • Responsible for the career development of self and others (team) as a career and project coach.
  • Responsible for contributing to organisational business development, including client proposals, and contributing to sales.
  • Responsible for bidding and winning client work aligned to firm strategy.
  • Responsible for contributing to building eminence and client stakeholder relationships.
  • Responsible for contributing to innovation and transformation.
  • Responsible for meeting and enforcing quality risk management standards within the team on all firm work.
  • Responsible for completing and enforcing adherence with firm operational standards.

Senior Privacy Analyst

Deloitte & Touché
Melbourne, VIC
02.2020 - 06.2021
  • Collaborated with cross-functional teams to identify opportunities for process improvement and increased efficiency.
  • Improved internal knowledge sharing by developing comprehensive documentation outlining standard operating procedures for various tasks.
  • Enhanced team collaboration by providing clear communication of complex findings through visualizations and reports.
  • Implemented predictive analytics techniques that enabled proactive adjustments to business strategies based on emerging trends.
  • Responsible for delivery of numerous end-to-end Third-Party Risk Management (TPRM) governance, management and implementation client engagements.
  • Responsible for delivery of numerous end-to-end privacy compliance governance, management, and implementation client engagements.
  • Responsible for delivery of numerous regulatory compliance client engagements, providing advice and support to stakeholders from a legal, regulatory and compliance perspective on understanding and managing compliance risk.
  • Responsible for delivering quality work in line with expectations in a timely manner.
  • Responsible for developing client and stakeholder relationships.
  • Responsible for taking initiative to enhance team and client experience.
  • Responsible for developing self and others (colleagues and team members on client projects).
  • Responsible for contributing to team knowledge base across areas of expertise, including knowledge sharing and education within the business area and firm.

Assistant Legal Manager

Deloitte & Touché South Africa
Johannesburg, South Africa
03.2018 - 12.2019
  • Responsible for acquiring and keeping abreast with knowledge of relevant local, regional, and international privacy laws, including South Africa’s Protection of Personal Information Act No 4 of 2013 (POPIA), the European Union’s General Data Protection Regulation (GDPR) as well as broader regional African and other international data privacy legislation that affect all facets of business.
  • Responsible for project management, and for on-going reporting to management, executives, and stakeholders.
  • Responsible for conducting privacy impact assessments, identifying gaps of current organisational regulatory compliance against privacy legislation. This included drafting solutions and remedying gaps and findings identified, as well as implementing these solutions to reduce the associated risks.
  • Responsible for providing advice to clients on understanding and managing privacy risk.
  • Responsible for legislative analysis and the preparation of regulatory universe documents relating to data privacy and personal information protection. This included the provision of legal advice in relation to compliance matters, the preparation of Compliance Risk Management Plans (CRMPs) and providing clients with advice on operationalising compliance requirements and reporting on progress with implementation.
  • Responsible for providing general legal assistance to clients (collaborating with commercial attorneys in the fields of commercial and company law, including registration of companies in South Africa).
  • Responsible for developing, assessing, and prioritising regulatory universes for corporate clients.
  • Responsible for the compilation and population of regulatory databases, including the unpacking of regulatory requirements into understandable legal obligations.
  • Optimized budget allocation for the legal department by tracking expenses and negotiating competitive rates with vendors.
  • Supervised team of legal SMEs or personnel in the performance of corporate legal and administrative business.

Legal to Senior Legal Consultant

Deloitte & Touché South Africa
Johannesburg, South Africa
05.2014 - 02.2018
  • Developed tailored risk mitigation plans to safeguard clients'' interests and minimize potential liabilities.
  • Built lasting relationships with clients through effective communication, attentive listening, and proactive problemsolving.
  • Resolved disputes effectively through mediation, negotiation, or litigation, as appropriate for each situation.
  • Collaborated with cross-functional teams to ensure compliance with relevant regulations and industry standards.
  • Delivered well-structured training sessions on various legal topics to educate clients and colleagues alike.
  • Supported human resources departments with employment law matters such as terminations, workplace policies, and employee relations concerns.

Education

Bachelor of Laws - LLB With Honors

University of The Witwatersrand
Johannesburg, South Africa
04-2014

Skills

  • End-to-end Privacy Compliance Governance, Management, and Implementation
     Privacy Strategy and Operating Model
     Privacy Impact and Compliance Assessments
  • End-to-end Records Management (retention & destruction)
  • End-to-end Enterprise Third Party Risk Management (TPRM)
     Third-Party Privacy Risk Management
  • Data Breach Management
     Data Breach Response Plans
  • End-to-end Data Governance and Management
  • End-to-end Regulatory Compliance Analysis, Governance and Risk Management
     Privacy Legislative Requirements
     TPRM Legislative Requirements
     Data Management Legislative Requirements
  • Client Relationship Management
  • Sustainable Resource Management
  • Contract Law
  • Regulatory Compliance Law
  • Team leadership
  • Legal analysis

Certification

  • Certified Information Privacy Manager (CIPM)[International Association of Privacy Professionals] - 2021 to date
  • OneTrust Certified Privacy Professional [OneTrust] - 2021 to 2022
  • Certified Information Privacy Professional/Europe (CIPP/E) [International Association of Privacy Professionals] 2015 to 2017

Languages

English
Native or Bilingual
French
Limited Working
Shona
Native or Bilingual

Interests

  • Avid Reader
  • Enjoy swimming, participating in sport and gym for overall physical and mental well-being
  • I enjoy helping others and giving back to the community
  • Hiking
  • DIY and Home Improvement
  • Gym Workouts
  • Traveling
  • Spending time with my partner and children

Timeline

Manager: Privacy, Third Party Risk Management

Deloitte & Touché
07.2021 - Current

Senior Privacy Analyst

Deloitte & Touché
02.2020 - 06.2021

Assistant Legal Manager

Deloitte & Touché South Africa
03.2018 - 12.2019

Legal to Senior Legal Consultant

Deloitte & Touché South Africa
05.2014 - 02.2018

Bachelor of Laws - LLB With Honors

University of The Witwatersrand
Graham Chikaka