Location: Bengaluru, India
Notice Period: Immediate Joiners
Experience: 5–7 Years
Key Responsibilities:
- Lead GDPR (EU regulation) compliance strategy for all business units
- Develop, implement, and monitor ISMS program (ISO 27001 framework)
- Deliver data protection impact assessments (DPIAs) and gap analyses
- Draft, review, and update privacy policy, notices, and internal documentation
- Conduct staff training and awareness programs on GDPR and ISMS principles
- Advise cross-functional teams (tech, HR, sales) on privacy by design
- Manage incident response, breach notification, and remediation workflows
- Liaise with DPOs, external consultants, and regulatory authorities as needed
- Monitor legal updates from the EU, MeitY, and DPDPB (India)
- Support client audits and respond to RFPs with data security content
Requirements:
- 5 to 7 years in data privacy, GDPR, or ISMS roles (SaaS/IT/Legal preferred)
- Deep understanding of GDPR, DPDPB, and ISO 27001 standards
- Proven experience designing and running compliance programs
- Strong project management, analytical, and drafting skills
- Ability to train teams and influence stakeholders
- Certifications such as CIPP/E, CIPM, ISO 27001 LA/LI are a plus
- Excellent written and verbal communication
