Senior Manager - Data Privacy - Life Insurance Firm

Senior Manager - Data Privacy - Life Insurance Firm

KEY RESPONSIBILITIES:

- Support DPO in developing, implementing, and maintaining robust data privacy & protection framework

- Review the organization posture on masking critical & sensitive data

- Advising the organization on data protection impact assessments (DPIAs), Privacy Notices, Data Discovery, and other measures to ensure readiness with the data protection laws and regulations

- Experience in handling data governance and data classification tools

- Develop Data Inventory and create/ review DFDs

- Develop Consent Management by designing consent architecture framework and reviewing data flow diagrams

- Assessment of As-is vendor contracts and based on assessment results, identify gaps between current contracts and to-be contracts

- Prepare a Remediation Plan/Implementation Roadmap post gap assessment

- Understanding of existing DLP and perform gap assessment

- Conduct regular security audits and risk assessments to identify and address any potential issues or breaches

- Develop and maintain an effective incident response plan for data breaches or privacy incidents or privacy incidents

- Develop policies and procedures for Data Privacy Impact Assessment, Privacy Incidents, third party privacy framework, Breach management procedures & data privacy governance structure

- Work closely with cross-functional teams to identify and address potential privacy risks, ensuring compliance with regulations

- Collaborate with external partners to ensure adherence to compliance, regulation and standards

- Drive privacy related training to employees at all levels to enhance awareness and understanding.

- Training staff who are involved in data processing and handling personal data of data subjects'/ data principals and foster a privacy- aware culture

- Conduct regular privacy audits to assess compliance and identify areas for improvement.

- Implement monitoring mechanisms to track and report on privacy-related metrics.

MEASURES OF SUCCESS:

- Ensure that there is complete visibility and traceability of data flow in organization

- Improving the operational efficiency and knowledge management within the IS team

KEY RELATIONSHIPS (INTERNAL /EXTERNAL):

- Business Functions, Third Parties and Control groups

DESIRED QUALIFICATION & EXPERIENCE:

- Graduate/Post Graduate degree in Information management and security (pref. B. Tech/M.Tech/MS)

- Having 7-9yrs+ experience in Data Privacy

- Professional certification in privacy (e.g., CIPP, CIPT) is highly desirable.

- 4-6 years of experience in technologies such as DLP, DRM, Masking, Tokenization and data classification

- Should have experience in Data Risk & Compliance, Data Privacy, Data Governance and Data leakage prevention

- Proven experience in a senior data privacy or compliance role, preferably in a complex organizational setting

- Experience in working on data governance tools like Security AI, Varonis Legit, BigId

- Understanding of GDPR will be preferred

SKILLS AND COMPETENCIES:

- Excellent leadership and communication skills.

- Strong analytical and problem-solving abilities.

- Ability to balance business objectives with privacy requirements.

- Proficient in collaborating across diverse teams, Businesses and functions.

- Detail-oriented and capable of handling sensitive information with discretion