Assistant Vice President Data Privacy

Job Description

Role Purpose : Responsible for coordinating, embedding and monitoring of data protection and privacy compliance in accordance with SBI card polices and procedures and applicable regulations. Role Accountability : Align business processes and operational practices, and support in preparation, maintenance and rollout data protection policies and procedures as per the Data Privacy act of India and any other Data Privacy law as applicable Review controls to inform, advise and issue recommendations to the business with regards to data protection, privacy including with data protection laws and internal policies and guidelines Facilitate periodic data protection impact assessments Support the data incident response and data breach notification procedures Support 1st line of defense (controllers/ processors) and Data Privacy officer(DPO) regarding data protection and privacy management requirements and policies as well as for communication for both data subjects (e.g. customers) and the regulatory authorities Promote continuous training to maintain data protection awareness and feedback, and also include protection Offer consultation once a data breach or other incident has occurred and must be involved in relevant issues in a timely manner and report directly to highest management level Participate and represent team in internal and External audits and assessments Manage privacy related projects including stakeholder update and drive timely and quality deliverables Monitor marketplace trends and latest experiences on security, audit and control issues Perform process documentation and compliance adherence Measures of Success: Timely and accurate development and monitoring of the Data Privacy program Setup and Increase the maturity of overall Data Privacy Program Timely and in-budget completion of data privacy related projects & Initiatives Timely delivery of project plans, milestone updates, presentations, assessment reports etc. to relevant stakeholders Process Adherence as per MOU Technical Skills / Experience / Certifications: Industry-standard certifications such DCPP (DSCI Certified Privacy Professional), DSCI Certified Privacy Lead Assessor (DCPLA), Understanding of regulatory data privacy compliance, Information security or audit background is must Understanding of security controls from a people, process and technology perspective Knowledge of standard security processes and guidelines PCI-DSS, ISO27001 and audit management experience Knowledge of risk assessments and privacy frameworks such as - NIST, DSCI, ISO, PCI, GDPR, etc. Competencies critical to the role: Stakeholder Management Teamwork and Collaboration Detail Orientation Market Awareness Process Orientation Qualification : Graduate or advance course in Computer Science or Information Security related areas or any other relevant discipline. Show more Show less