Chat

iimjobs

jobseeker Logo
Now Apply on the Go!
Download iimjobs Jobseeker App and get a seamless experience for your job-hunting
02/08 Abhipsa Barik
HR at Dr Lal PathLabs

Views:88 Applications:14 Rec. Actions:Recruiter Actions:0

Dr Lal Path Labs - Manager - Data Privacy (5-8 yrs)

Gurgaon/Gurugram Job Code: 958347

Job Purpose :

Manager - Data Privacy will be responsible for overseeing the strategy and implementation of data privacy & protection controls for Dr. Lal PathLabs. The role will ensure that the organization is complying with all the applicable data privacy mandates as well as drive privacy culture & awareness

Key Result Area :

- Promote the organization's privacy philosophy and implement a privacy program that not only enables effective privacy practices but also protects the organization from privacy-related liabilities

- Performing privacy impact assessment and maintain the necessary policies/processes towards effective privacy program management. Performing the periodic privacy risk assessments for applicable business processes, IT applications & infrastructure and promoting the 'Privacy by Design' principle

- Performing vendor audits & assessments from a data privacy and protection standpoint throughout vendor lifecycle. Review vendor contracts to make sure that the data privacy requirements are fulfilled by all of our service providers and protect the company's interest in DLPL client contract

- Responsible for deploying, managing, and reviewing technologies such as (but not limited to) DLP, CASB, Data Classification, Identity & Access Control, Encryption, Cyber Threat Intelligence

- Identifying risks and building actionable plans to protect against cyber security incidents. - Track closure of those risks and maintain the updated risk register and incident database. - Tracking, investigating, and reporting inappropriate access and disclosure of personal information. Alert CISO on emerging compliance issues

- Ensure implementation of applicable data protection laws, and assist in developing, managing, and maintaining consent strategy, data standards, policies, and methodologies in line with the Data Privacy Policy framework

- Ensure that there is complete visibility and traceability of data flow in & out of an organization. Act as a subject matter expert on data privacy and protection matters. Collaborate with Legal, Regulatory, HR, Operational Risk & Vigilance and External Vendors in the overall administration of privacy directives, laws, and their implementation

- Conducting and supporting periodic information security & privacy audits. Building an Integrated Compliance Management (ICM) framework which complies with standards such as (but not limited to) ISO - 27001, ISO 27701, SSAE 16/ SOC2, BCMS, etc

- Web Application Security Assessment (OWASP- Open Web Application Security). Identify vulnerabilities and discuss with the project manager on the feasibility of implementation and tracking closure

- Plan and prepare the budget projection for data privacy & protection initiatives. Work with the relevant teams to drive the value of investments and optimization of the relevant technologies. Report utilization status and present future requirements. Maintain continual threat intelligence awareness drive and impart data privacy education across the diverse user-base

What we are looking for :

Education : B.Tech / M.Tech Degree in IT & related discipline & Law

Experience : 5+yrs

Type of Exposure/ Areas of expertise: Experience in all stages of data privacy and protection

Industry: Healthcare/BFSI/Telecom organization

Important Skill/requirement: Managing data privacy and protection for mission-critical organizations preferably in BFSI organization

- Detail and process-oriented thought leader, and well versed with latest trends

- Excellent interpersonal skills, self-starter, and able to work independently

- Fluent in English, both verbally and in writing

- Ability to balance risks with commercial needs

- Interaction with senior executives/ Directors of the Board etc. in a formal environment

Certification/ Knowledge: Professional certifications related to data privacy such as GDPR, CIPP/CIPT/CIPM or CISA / ISO27001, etc. are preferable

This job opening was posted long time back. It may not be active. Nor was it removed by the recruiter. Please use your discretion.

Women-friendly workplace:

Maternity and Paternity Benefits

Add a note
  • Apply
  • Assess Yourself
  • Save
  • Insights
  • Follow-up
Something suspicious? Report this job posting.