Responsibilities
- Lead the development and implementation of comprehensive data privacy policies and procedures.
- Conduct regular data privacy assessments and audits to identify and mitigate risks.
- Ensure compliance with data privacy regulations across multiple geographies.
- Collaborate with legal teams to review contracts and MSAs for data privacy compliance.
- Perform Data Protection Impact Assessments (DPIAs) and evaluate vendor risks from a privacy perspective.
- Participate in Architecture Review Board (ARB) reviews to ensure privacy considerations are integrated.
- Manage and respond to data breaches and privacy incidents.
- Stay up-to-date with the latest data privacy trends, threats, and technologies.
- Foster an environment of learning, excellence, and innovation within the team and across teams.
- Provide mentorship and guidance to junior team members.
- Conduct performance reviews and provide constructive feedback.
- Ensure continuous professional development of team members.
Qualifications
Educational qualifications & Experience:
- Bachelor's degree in Computer Science, Information Security, or related field.
- 12-15 years of experience in data privacy, including vulnerability assessment and penetration testing.
- Strong understanding of secure coding practices and knowledge of common security vulnerabilities.
- Familiarity with security standards and frameworks such as GDPR, ISO 27001, and NIST.
- Experience with data privacy tools and automation.
- Relevant certifications such as CIPP, CIPM, or CIPT are a plus.
- Excellent communication and collaboration skills.
- Ability to stay up-to-date with the latest data privacy trends, threats, and technologies.
