12 Dpdp Jobs

Location: Pune Experience Required: 5-7 years Company: Incred Money (www.incredmoney.com) Industry: Fintech / Financial Services About IncredMoney.com IncredMoney.com is a fast-growing digital wealth and investment platform empowering users with smart, simplified financial tools. We are passionate about financial inclusion, investor transparency, and secure digital experiences. As we scale, security remains central to our missionand thats where you come in. Role Summary We are looking for a dynamic and hands-on Senior Infosec Engineer who will be responsible for leading and implementing our information security and cyber-risk strategy. The ideal candidate will have strong experience in fintech or financial services, knowledge of regulatory frameworks (like RBI, SEBI), and the ability to build secure digital systems while enabling growth and innovation. Key Responsibilities Own and lead the company’s overall information security strategy. Build and implement policies, procedures, and controls aligned with industry best practices (e.g., ISO 27001, NIST, OWASP). Perform risk assessments, security audits, and regular vulnerability assessments of applications and infrastructure. Collaborate with engineering, DevOps, and product teams to embed security into the SDLC. Oversee data protection strategies (encryption, backups, data access) and ensure regulatory compliance (e.g., RBI, SEBI, GDPR, PCI-DSS if applicable). Manage internal and external security audits and ensure remediation of findings. Lead incident response planning and execution, including root cause analysis and post-mortem reviews. Evaluate and onboard security tools (e.g., SIEM, WAF, DLP, endpoint security). Build a security-first culture through training and awareness programs across teams. Serve as the primary point of contact for security with partners, auditors, and regulators. Key Requirements 4–7 years of progressive experience in Information Security, with at least 2 years in a leadership or ownership role. Strong understanding of cloud security (AWS preferred), web/mobile application security, and data privacy. Hands-on experience with firewalls, VPNs, intrusion detection/prevention systems, and endpoint protection tools. Familiarity with regulatory and compliance frameworks (especially RBI/SEBI guidelines for fintech). Bachelor’s or Master’s degree in Computer Science, Information Security, or related field. Industry certifications like CISSP, CISM, CEH, or ISO 27001 LA are a strong plus. Excellent communication and stakeholder management skills. Preferred Skills Prior experience in fintech, wealth-tech, or BFSI domain. Experience leading security in a startup or early-stage company. Knowledge of DevSecOps practices and CI/CD pipeline security.

Lead architectural strategy Architectural governance processes/frameworks Scalable, secure, Solution Design & Architecture POC Validation & Tech Evaluation Leveraging AWS, Azure cloud platforms Security & Compliance Collaboration & Stakeholder Mgt Required Candidate profile - 10+ yrs Tech/Dev - 3+ as Solutions Architect on large products - Cloud Platform Mastery - Full Stack - Python/React/Node - POC, Security - Agile & DevOps - Microservices & Distributed Systems Perks and benefits Great growing Environment

Job Title: Assistant Legal Counsel Location: Gurugram, Haryana Experience Required: 5 to 8 Years CTC: 813 LPA (Based on Experience) Job Type: Full Time | Individual Contributor Job Description We are seeking a skilled and business-savvy Assistant Legal Counsel to join our dynamic in-house legal team at our Gurugram office. Key Responsibilities: Draft, review, redline, and negotiate sales contracts, NDAs, and commercial agreements Provide legal advisory and research support on contracts, tenders, and business proposals Ensure compliance with Consumer Law, Advertising Law, Competition Law , and Data Privacy Laws (DPDP, GDPR) Evaluate tenders and assist in ensuring legal compliance across sales and marketing functions Key Requirements: LLB from a premier law institute (mandatory) 5–8 years of experience , including law firm exposure Strong knowledge of contract lifecycle management Excellent drafting, negotiation, and influencing skills Based in Delhi NCR and open to a 24/7 work environment Experience with multi-product, service, or consumer-facing sectors preferred How to Apply: Share your resume at: deeksha@beanhr.com Or WhatsApp at: +91 90450 52061

Implement and maintain OneTrust Privacy Solutions for global data protection compliance (GDPR, CCPA, LGPD, DPDP, etc.). Configure, test, and support OneTrust modules (Cookie Compliance, Consent, Data Mapping, Privacy Rights Automation). Required Candidate profile Qualification : - Btech Job Location : - Any where in India ( Delhi, Bangalore, Mumbai, Hyderabad )

As a Security Consultant, you'll be the guardian of confidentiality, integrity, and availability, ensuring organizations are shielded from the ever-evolving threat landscape. Your expertise will be sought after as you assess, analyze, and implement effective security measures in customer environments, leaving no stone unturned when it comes to safeguarding their most sensitive data. Responsibilities include Facilitate the review of SOPs, policies, and procedures proposed by the SI to meet data privacy requirements for the project. Monitor the integration of privacy considerations into the design and development of IT systems and applications. Oversee the SIs incident response and mitigation plan for data breaches and provide feedback. Implement any new or existing guidelines, policies, or acts issued by the Government of India on data privacy. Implement the Client Data Privacy Framework. Review the data privacy framework to ensure it aligns with current laws, rules, and regulations. Collaboration will be your forte, as you work closely with clients to understand their unique security requirements and assess their current security posture. Armed with this knowledge, you'll provide expert guidance and recommendations on the best security practices, risk management strategies, and robust security policies that will fortify their defenses. You won't stop at providing advice; you'll roll up your sleeves and get hands-on. Designing and implementing security controls, policies, and procedures will be your playground. You'll work alongside cross-functional teams to deploy state-of-the-art technologies, including firewalls, intrusion detection/prevention systems, access controls, and encryption technologies, ensuring a comprehensive security framework. The thrill of uncovering vulnerabilities and risks is what motivates you. Armed with your extensive knowledge, you'll conduct thorough security assessments, leaving no stone unturned in identifying potential security breaches. Your findings will serve as the foundation for meticulous security audits and reviews, ensuring adherence to policies and procedures. Your reports and findings will be the catalyst for management decisions and actions. In the fast-paced world of cybersecurity, staying ahead of the game is crucial. That's why you'll continuously immerse yourself in the latest security threats, technologies, and best practices. Your recommendations will drive enhancements to the organization's security posture, ensuring it remains at the cutting edge of defense. Your influence won't be limited to systems alone. You'll lend your expertise to the design and review of IT infrastructure, systems, and applications, ensuring they are secure by design from inception. Not only will you make an impact within our organization, but you'll also collaborate with customers and vendors on security assessments, audits, and due diligence activities. Your knowledge and experience will be instrumental in shaping secure collaborations and partnerships. Our consultants are restless for innovation. They are at the edge of technology, changing the way our customers implement business solutions so, if youre a problem-solver, an innovative thinker, and a self-starter with a passion high impact assignments which align technology to business outcomes, then we want to hear from you! Apply today to join our team that has a host of exciting projects and customers waiting for you to work with them to solve complex transformation puzzles through technology. Who You Are Youre good at what you do and possess the required experience to prove it. However, equally as important you have a growth mindset; keen to drive your own personal and professional development. You are customer-focused someone who prioritizes customer success in their work. And finally, youre open and borderless naturally inclusive in how you work with others. Required Technical and Professional Experience Data Privacy Experience : 5+years experience in administering data privacy controls in large IT systems dealing with personal, sensitive, financial, or transactional data in at least 2 IT projects Education : MCA B.E. B. Tech Solid understanding of applicable data privacy aspects as per Indian laws, including the IT Act 2000 and DPDP Act 2023 We are seeking candidates who are available for immediate joining and can work on-site at the client location in Delhi, Monday through Friday. Preferred Technical and Professional Experience We are seeking candidates with experience in Data Privacy activities, including Privacy Implementation, Privacy Impact Assessments, Data Protection Impact Assessments, Consent Management, roles as Data Protection Officers, developing Data Protection Frameworks, and familiarity with regulations such as GDPR, DPDP, CCPA, and the IT Act. Excellent communication skills to effectively interact with stakeholders and educate employees on data privacy. Excellent communication skills, both written and verbal, with the ability to communicate complex security concepts to technical and non-technical audiences

The Role Are you ready to join the team of software engineering experts at Kyndryl? We are seeking a talented Software Engineering Technical Specialist to contribute to our software engineering space and provide critical skills required for the development of cutting-edge products. As a Software Engineering Technical Specialist, you will develop solutions in specific domains such as Security, Systems, Databases, Networking Solutions, and more. You will be a leader contributing knowledge, guidance, technical expertise, and team leadership skills. Your leadership will be demonstrated in your work, to your customers, and within your teams. At Kyndryl, we value effective communication and collaboration skills. When you recognise opportunities for business change, you will have the ability to clearly and persuasively communicate complex technical and business concepts to both customers and team members. Youll be the go-to person for problem-solving of customers business and technical issues. You have a knack for effectively identifying and framing problems, leading the collection of elements of information, and integrating this information to produce timely and thoughtful decisions. Your aim throughout, is to improve the effectiveness, efficiency and delivery of services through the use of technology and technical methods and methodologies. Driving the design, development, integration, delivery, and evolution of highly scalable distributed software you will integrate with other layers and offerings. You will provide deeper functionality and solutions to address customer needs. You will work closely with software engineers, architects, product managers, and partner teams to get high-quality products and features through the agile software development lifecycle. Your continuous grooming of features/user stories to estimate, identify technical risks/dependencies and clearly communicate them to project stakeholders will ensure the features are delivered with the right quality and within timeline. You will maintain and drive the clearing of technical debt, vulnerabilities, and currency of the 3rd party components within the product. As a Software Engineering Technical Specialist, you will also coach and mentor engineers to design and implement highly available, secure, distributed software in a scalable architecture. This is an opportunity to make a real impact and contribute to the success of Kyndryl's innovative software products. Join us and become a key player in our team of software engineering experts! Who You Are Youre good at what you do and possess the required experience to prove it. However, equally as important you have a growth mindset; keen to drive your own personal and professional development. You are customer-focused someone who prioritizes customer success in their work. And finally, youre open and border less naturally inclusive in how you work with others. Required Technical and Professional Expertise 7 to 15 years of experience Technical Expertise: Advanced knowledge of AIOps platforms (e.g., ELK, Moogsoft, Netcool, Dynatrace, Kyndryl Bridge, etc.). Hands-on experience with Ansible automation, scripting (Python, Shell), and orchestration tools. Operational Excellence: Deep understanding of IT operations, including incident, problem, and change management. Experience implementing SRE practices in complex environments. Compliance Knowledge: Familiarity with IT security standards and regulations (RBI, DPDP, GDPR, etc.). AIOps Leadership: Present and demonstrate AIOps and Automation solutions to customers. Collaborate with the global team to align with Kyndryl's strategy. Drive technical on boarding and resolve issues. Lead the deployment and adoption of AIOps for proactive issue resolution and predictive analytics. Innovate in IT operations using advanced AIOps tools. Transformation Delivery: Lead IT operations and delivery transformation initiatives for enterprise customers. Present and demonstrate advanced IT transformation strategies to BFSI clients. SRE Practices: Apply Site Reliability Engineering (SRE) principles to drive operational excellence and ensure system reliability. Regulatory Compliance: Stay informed about industry standards and regulatory requirements (RBI, DPDP, GDPR, etc.). Preferred Technical and Professional Experience Customer Engagement: Strong presentation and demonstration skills, with the ability to lead discussions with BFSI clients. Proven experience in engaging stakeholders and driving customer-focused solutions.Automation Expertise: Work with account teams and customers to maximize automation deployment. Stakeholder Engagement: Collaborate with cross-functional teams and serve as a trusted advisor to BFSI customers. Communicate technical concepts effectively to diverse stakeholders, including senior executives. Work closely with InfoSec teams to align IT operations with security standards. Implement continuous improvement processes.

Lead architectural strategy Architectural governance processes/frameworks Scalable, secure, Solution Design & Architecture POC Validation & Tech Evaluation Leveraging AWS, Azure cloud platforms Security & Compliance Collaboration & Stakeholder Mgt Required Candidate profile - 10+ yrs Tech/Dev - 3+ as Solutions Architect on large products - Cloud Platform Mastery - Full Stack - Python/React/Node - POC, Security - Agile & DevOps - Microservices & Distributed Systems Perks and benefits Great growing Environment

The Lead Compliance professional is responsible for ensuring that the organization adheres to legal, regulatory, and internal policy requirements. The role involves developing, implementing, and maintaining compliance frameworks, risk management strategies, and governance policies to mitigate potential risks and ensure business continuity. Must Have Key Responsibilities: Compliance Management: Develop and implement compliance programs in line with applicable laws, regulations, and industry standards (e.g., ISO 27001, ISO 27701, ISO 22301, ISO 31000, ISO 22301, ISO 20000-1, GDPR, DPDP Act, ITGC, NIST, CIS, MITRE and other compliance requirement). Conduct internal compliance audits and risk assessments to identify gaps and areas of improvement. Monitor and interpret regulatory changes and assess their impact on business operations. Ensure alignment of compliance policies with corporate governance frameworks. Regulatory and Legal Compliance: Stay up-to-date with local, national, and international regulatory requirements. Collaborate with legal teams to ensure compliance with corporate laws, financial regulations, and data protection laws. Risk Management & Governance: Identify, assess, and mitigate compliance risks across business operations. Implement and oversee governance, risk, and compliance (GRC) frameworks. Establish due diligence processes for vendors, third-party relationships, and partners. Audit and Investigations: Lead internal and external compliance audits, including ISO and regulatory audits. Investigate non-compliance incidents and implement corrective and preventive actions (CAPA). Ensure proper documentation of compliance reports, risk assessments, and audit findings. Policy and Training Development: Develop, review, and update compliance policies, procedures, and guidelines. Conduct employee training on compliance policies, ethical conduct, and regulatory requirements. Foster a compliance-aware culture within the organization through continuous education and awareness programs. Stakeholder Collaboration: Work closely with senior leadership, IT security, Product, HR, IT Admin, legal, Accounts and risk management teams to ensure comprehensive compliance coverage. Provide expert guidance to business units on compliance-related matters. Qualifications & Skills: Education: Business Administration, information security, or related fields. Certifications (Preferred): ISO 27001 Lead Auditor/Lead Implementer, or other relevant compliance certifications. Experience: Minimum 7+ years in compliance, risk management, governance, or regulatory affairs. Strong understanding of global compliance standards (ISO, GDPR, DPDP, etc.). Experience in conducting compliance audits and risk assessments. Excellent analytical, problem-solving, and decision-making skills. Strong leadership, communication, and stakeholder management abilities. Proficiency in GRC tools and compliance management software. Good to Have Key Responsibilities: Additional Compliance Standards & Frameworks: Experience with other compliance requirements beyond the core ones mentioned (e.g., industry-specific frameworks). Hands-on experience with ITGC, CIS, MITRE, and advanced regulatory frameworks. Advanced Stakeholder Engagement: Experience in engaging with regulatory bodies and government agencies. Providing strategic recommendations for compliance to executive leadership. Proficiency in Compliance Tools & Technologies: Hands-on experience with GRC tools and compliance management software. Certifications (Preferred but Not Mandatory): ISO 27001 Lead Auditor/Lead Implementer or other relevant compliance certifications. Enhanced Policy Development & Training: Expertise in designing custom compliance training programs tailored to different business functions. Experience in developing automated compliance monitoring processes.

Establish the Division Data Protection Office. Support Group data protection initiatives and the Group Data Protection Office. Develop, implement, and enforce Group and Division data protection policies and processes. Manage data protection breaches, queries, and complaints in accordance with regulatory requirements. Liaise with regulatory authorities. Providing internal stakeholders advisory on data protection matters (e.g. projects, contracts, disputes, queries, communications). Keep abreast of and monitor developments in Data Protection Law and other areas of law that impact data protection. Create and maintain personal data-related databases, inventories, and registers. Ensure policies and processes comply with law. Develop and review policies to handle personal data in electronic and non-electronic forms. Develop and review processes for handling breaches, queries, complaints and rights requests. Engage internal and external stakeholders on data protection processes and policies. Develop and deliver initiatives to foster a data protection culture among internal and external stakeholders. Perform data protection audits. Conduct data protection risk assessment and develop mitigation strategies. Apprise Division Senior Management and the Group Data Protection Office of data protection matters such as incident reporting and risk management initiatives. Work with Group Risk Management function to mitigate risks (e.g. insurance). Obtain and maintain professional accreditation as required by law. Conduct training, seminar, workshops, and education and awareness campaigns for the Division. Develop data protection collateral and corporate communication material for the Division. Any other functional works as may be assigned from time to time

We are seeking a legal professional with 2+ years' experience in software licensing and healthcare products. Responsibilities include drafting, reviewing, and Commercial agreements (Third-party, Operations, Services, SAAS), ensuring compliance with data protection laws (GDPR/DPDP).

Role & responsibilities Job Title: Assistant Manager - Information Security/ IT GRC Base Location: Thane/ Mumbai Employment Type: Full-Time Reporting To: Partner Job Summary: KVAT & Co is seeking a highly skilled and experienced Information Security Lead for its Governance, Risk, and Compliance Technology (GRC-T) practice. The ideal candidate will be responsible for executing and leading Information Security, Cybersecurity, and Data Privacy projects, ensuring compliance with regulatory standards, and providing strategic guidance to clients. This is a client-facing role requiring strong executive presence, leadership abilities, and technical expertise in the domain. The candidate should be able to independently manage projects and lead client engagements. Key Responsibilities: 1. Cybersecurity & Information Security Assessments and IT Audits: Conduct comprehensive cybersecurity reviews and IT Audits for clients. Perform gap assessments against leading security frameworks (ISO 27001, NIST, CIS, etc.). Evaluate existing information security controls and recommend remediation measures. 2. Security Implementation & Monitoring: Act as an implementation partner for information security controls and frameworks. Oversee and monitor the implementation process to ensure adherence to industry best practices. Support organizations in achieving compliance with regulatory frameworks (RBI, IRDAI, SEBI, GDPR, DPDP, etc.). 3. Policy Drafting & IT Risk Management: Develop and draft information security policies for clients as per industry standards. Conduct IT risk assessments to identify vulnerabilities and threats. Develop risk mitigation strategies to enhance IT governance frameworks . 4. Security Testing & Third-Party Risk Assessments: Provide support in vulnerability assessments & penetration testing (VAPT). Conduct third-party IT risk assessments and vendor information security reviews. 5. Data Privacy & Regulatory Compliance: Assist in GDPR compliance assessments and implementation projects . In-depth understanding of DPDP (Digital Personal Data Protection) framework and Indian data privacy laws . Stay updated with IRDAI, RBI, SEBI master circulars, and cybersecurity regulations to ensure compliance. 6. Client & Team Management: Serve as a point of contact for clients on information security project execution. Conduct awareness sessions for clients Assist in presentations for clients. 7. Business Development & Stakeholder Engagement: Develop decks, case study-based proposals , and service presentations. Present service offerings and project-based case studies to prospective clients. Lead discussions with CXOs, CIOs, and other senior stakeholders on cybersecurity matters. Key Skills & Competencies: Technical Expertise: Strong knowledge of cybersecurity frameworks, risk management, and IT governance . Regulatory Understanding: Hands-on experience with GDPR, DPDP, RBI, IRDAI, SEBI cybersecurity guidelines . Communication & Presentation: Ability to clearly articulate cybersecurity strategies and deliver high-impact presentations to clients. Leadership & Client Handling: Prior experience in a client-facing role with the ability to manage projects independently . Report Writing & Documentation: Strong reporting, policy drafting, and technical documentation skills. Project Management: Ability to plan, execute, and ensure timely delivery of IT GRC projects. Business Acumen: Experience in service pitching, proposal drafting, and stakeholder engagement . Required Qualifications & Experience: Educational Background: Bachelors in related fields Any additional certifications will serve as an added advantage. Experience: 5+ years of experience in Information Security, Cybersecurity, and IT GRC domains . Proven track record of handling projects independently and client interactions . Prior experience in consulting firms or IT security advisory firms is an added advantage. Consulting experience preferred CTC: As per industry standards and experience Why Join KVAT & Co? Opportunity to lead the projects High visibility role with direct client exposure and impact. Work on diverse industry sectors , handling cutting-edge cybersecurity projects. Collaborative and growth-oriented work environment . Application Process: Interested candidates can share their resume at hr@kvatco.co.in with the subject line Application for Information Security Lead – IT GRC” .

The Data Steward role at Adani Group is essential for maintaining the accuracy, consistency, and security of the organization's data assets. This position is responsible for implementing and enforcing data governance policies, ensuring that data is managed in accordance with established standards and best practices. The Data Steward will work closely with data owners, data custodians, and IT teams to ensure that data is properly classified, documented, and accessible to authorized users. This role involves monitoring data quality, identifying and resolving data issues, and ensuring compliance with data privacy regulations. Accountability: Acts as the custodian of data and ensures the implementation of policies and standards. Responsibilities: 1. Perform regular data quality checks and resolve issues. 2. Monitor data lineage and ensure traceability. 3. Validate data completeness, consistency, and accuracy. 4. Collaborate with IT and business teams to resolve data issues. 5. Develop training materials to educate teams on data governance policies. Data Steward: is supposed to play a critical role of working in Data Lake & Data Warehouse Skills & Experience: 1 A Bachelor's degree in Computer Science, Information Systems, Data Management, or a related field. Advanced degrees or relevant certifications (e.g., CDMP) are advantageous 2 At least 7-10 years of experience in data management, data governance, or a related field. Proven experience in managing data quality and governance initiatives 3 Strong understanding of data management principles, including data quality, data integration, and data lifecycle management. Proficiency in data governance tools and technologies. 4 Experience in coal mining is highly beneficial. Understanding of mining-specific data requirements and challenges 5 Deep understanding of data sources, formats, and structures. Proficiency in data manipulation and transformation. Knowledge of SQL and other database query languages. Familiarity with data warehousing, data modeling, and data profiling. Understanding of data privacy regulations and security measures. 6 Ability to support data quality assessments and implement improvement plans. Experience with data profiling, cleansing, validation, and enrichment. Proficiency in using data cataloging tools. 7 Strong domain understanding of the organization's business processes and objectives. Ability to align data management activities with business needs. 8 Strong analytical and problem-solving skills to address complex data issues and implement effective governance strategies. Ability to document data definitions, classifications, and lineage. 9 Excellent project management skills. Ability to influence and collaborate with stakeholders at various levels in the organization 10 Good understanding of data privacy laws and standards (e.g., GDPR, DMBoK, DPDP, etc.) and their implications for data management. 11 Excellent communication skills to convey complex insights to non-technical stakeholders. 12 Experience in driving change and fostering a data-driven culture. 13 Ability to work effectively and independently in a fast-paced agile environment with tight deadlines 14 A flexible, pragmatic and collaborative team player with innate ability to engage with stakeholders at all levels in the organization.