REQUIREMENT SUMMARY
The Data Privacy Specialist is a key role within the ITES sector, responsible for ensuring that all data privacy and protection standards are adhered to across the organization. This role involves conducting comprehensive data privacy assessments, validating data processing activities, and producing risk-rated recommendations.
Description
- 3-6 years of experience in data privacy and protection roles, preferably within the ITES sector.
- Proficiency in data privacy tools such as One Trust, Securiti.ai, and IDfy, with a strong understanding of their application in privacy assessments.
- In-depth knowledge of the DPDP Act and its implementation, including Data Principal Rights Management and Rule 6 Implementation.
- Experience in conducting DPIAs, Privacy by Design assessments, and managing Records of Processing Activities (RoPA).
- Strong skills in incident and breach management, including triage, root cause analysis, and implementing preventive controls.
- Ability to prepare and present metrics and dashboards related to privacy operations, including SLA compliance, incident trends, and remediation status.
- Excellent communication skills to collaborate with cross-functional teams and effectively convey privacy requirements and findings.
Key Responsibilities
- Conduct privacy assessments, including DPIAs, to validate processing activities and produce risk-rated recommendations for business and legal approvals.
- Perform data discovery, classification, and mapping across structured and unstructured environments, maintaining data-flow maps and coordinating with platform teams.
- Draft and propose data loss prevention (DLP) policy requirements, including patterns, scopes, and exceptions, and review incidents for recommended actions.
- Run scans and analyze data exposure and misconfigurations using DSPM tools, prioritize findings, and create remediation backlogs while tracking ownership and closure.
- Review data access governance and high-risk activities, recommending least-privilege changes and coordinating with data owners for execution and periodic reviews.
- Maintain privacy operations and documentation, including RoPA, notices, consent logs, and retention policies, while managing DSR workflows and evidence.
- Embed privacy by design by reviewing designs and advising on minimization and purpose limitation, defining sign-off criteria, and ensuring secure defaults.
- Support privacy and data protection incident handling by conducting triage, root cause analysis, recommending containment actions, preventive controls, and providing notification support.
Requirements
- Bachelor's in Computer Science, Information Technology, or a related field
Pay: ₹80,000.00 - ₹100,000.00 per month
Work Location: In person
