Key Responsibilities: Privacy by Design - Ensuring product & process designs meet mandated policy & legal obligations.
- Work through the resolution within time and resource constraints within this area and has end to end responsibility of for ensuring due diligence is applied.
- This role will be expected to identify new opportunities to reduce risk exposure by proposing new technical & operational capabilities.
- Support development and maintenance of privacy-focused architecture within software systems, including data anonymization, pseudonymization, and data minimization techniques.
- Support development and implementation of technical controls like encryption, data masking, and access controls to protect sensitive user data.
- Work closely with software developers and engineers to integrate privacy considerations into product development cycles.
- Interact with users to define system requirements and/or necessary modifications to new or existing software.
Data Classification, Vendor Risk Identification and Mitigation & Change Management Process - Analyze and map data flows to identify potential risks or vulnerabilities in data privacy, perform data classification for data sharing /ingestion processes.
- Support risk mitigation strategies by recommending process or system improvements.
- Implement a robust data classification framework, so that the bank can better align its data governance practices with business goals and regulatory requirements.
Support DPDPA Tool implementation. - Work with the tool provider, provide requirements and support UAT and help in troubleshooting of any issue during implementation.
- Provide necessary support for tool implementation & act as an interface between business & tech partner.
Compliance - Stay up to date with relevant data protection laws and regulations in India and other jurisdictions where we operate.
- Ensure our data processing activities comply with applicable laws.
- Lead privacy training programs for employees to build a privacy-centric culture and ensure a deep understanding of privacy practices throughout the organization.
- Developing, implementing, and driving organization's privacy projects and strategies and managing privacy compliance programs.
- Support across all stages of implementation including review, preparation, storage and transfer and legal readiness.
- Regularly reviewing and evaluating compliance processes to guarantee best practice across all areas of the organization ensuring appropriate monitoring and auditing processes are effectively implemented.
- Assisting in managing data principal's requests, including requests for access, rectification, erasure, and restriction of processing.
General - Act as the point of contact for internal and external data protection audits.
- Lead and manage cross-functional meetings to align teams on data privacy objectives and facilitate discussions.
- Exhibit strong presentation skills to convey concepts and initiatives clearly to internal and external stakeholders.
Tools & Technologies - Understand the requirements of the bank and support in preparation of a list of tools (Privacy Enhancing Technologies) required for automating privacy operation.
- Incorporate skill sets for implementing PET operations to enhance compliance with privacy required.
- Regularly review the effectiveness of the PET on the required privacy control.
|
