The role is primarily responsible (approximately 75% of work) for driving AI governance and the review of AI solutions across the organization, and secondarily (approximately 25% of work) for anchoring data privacy initiatives as the functional Data Privacy Steward. The candidate will establish and operationalize the responsible AI governance framework, review AI/ML and Generative AI use cases and solutions across their lifecycle for compliance, fairness, transparency and risk, and enable safe and compliant adoption of AI in business processes. In the data privacy capacity, the candidate will support data classification, privacy assessments, data subject rights and breach reporting, and promote a culture of privacy and security. This requires working closely with stakeholders across Data Privacy, AI/Data Innovation, Operations, Underwriting, Claims, Digital, Legal, Compliance, Information Security and other functional owners, providing an independent and effective second line of assurance for AI and privacy controls in line with applicable laws (including the DPDP Act) and regulatory guidelines.
KEY RESPONSIBILITIES
AI Governance AI Solutions Review (75%)
Design, implement and maintain the enterprise AI governance framework, policies, standards and operating procedures covering AI/ML and Generative AI.
Review and approve AI use cases and solutions prior to deployment; conduct AI risk and impact assessments covering data usage, privacy, security, fairness, bias, explainability and human oversight.
Maintain the enterprise AI use case inventory / model registry; govern the AI solution lifecycle including periodic post-deployment monitoring, revalidation and decommissioning.
Assess third-party and vendor AI solutions for responsible AI, data protection and contractual/control compliance before onboarding and on an ongoing basis.
Ensure AI solutions comply with applicable regulations and guidelines (including DPDP Act, IRDAI directions and emerging AI regulations) and internal risk appetite.
Define measures of AI transparency such as model documentation, disclosures and audit trails; govern remediation and closure of AI-related risks and exceptions within timelines.
Identify, report and support response to AI-related incidents (model failures, misuse, data leakage through AI tools) and drive corrective action.
Drive responsible AI training, awareness and adoption across business functions.
Data Privacy (25%)
Support identification, classification and monitoring of sensitive and personal data; support enterprise initiatives such as data anonymization and masking.
DESIRED QUALIFICATION EXPERIENCE
- 10 years of experience in Ops/Compliance/Risk, with hands-on exposure to AI/data governance.
Experience in reviewing or governing AI/ML and Generative AI solutions; understanding of responsible AI principles (fairness, explainability, accountability, human oversight) and model risk management.
Experience in Data Risk Compliance, Data Privacy, Data Governance and data leakage prevention; knowledge of DPDP Act and regulatory expectations for AI.
Detailed knowledge of operational processes in the Life Insurance industry.
Proven experience in a senior governance, privacy or compliance role, preferably in a complex organizational setting. Certifications such as CIPP/CIPM/AIGP or equivalent are an advantage.