2 Privacy Framework Jobs

Greetings from Netsach - A Cybersecurity Company. Overview of the Job Profile This position is responsible for establishing and maintaining a corporate-wide information security management program to ensure that information assets are adequately protected. Job Title: Infosec Delivery Consultant Exp: 3-5yrs Work Location: Bangalore Job Type: Full-time Interested candidates please share your resume at [HIDDEN TEXT] and please register at netsachglobal.com and send us your resume. Job Description: Understanding the Policies and Procedures of the Client and suggesting improvement points related to Information Security. Understanding the setup of the On-Premise/Cloud Infrastructure of Clients and suggesting improvement points related to Information Security. Preparation of Policies and Procedures for Information Security. Impart training on Information Security. Performing Infosec Internal Audits covering all departments as per ISO 27001 requirements. Requirements Degree in Engineering (Computer Science/IT) /MCA/ Business administration a technology-related field required. Minimum of 3-4 years of experience in a combination of risk management, information security and IT jobs Should be flexible working in US Shift timing. Professional security management certification (Like ISO 27001 Lead Auditor / Lead Implementer Certification or CISA or CISSP) will be an added advantage. Knowledge of common information security management frameworks, such as ISO/IEC 27001, SSAE 18 SOC2, Privacy Framework ISO27701, and NIST (Optional). Knowledge of security controls of AWS / Microsoft Azure will be an added advantage Excellent written and verbal communication skills and a high level of personal integrity Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams Why should this job excite you Opportunity to make an early impact on one of the most promising, high-growth SaaS startups in India A high-performing action-oriented team Immense exposure to the founders and the leadership Opportunity to shape the future of B2B SaaS Customer Success team with YOUR innovative ideas The competitive compensation package, benefits, and employee-friendly work culture. Thank You Emily Jha [HIDDEN TEXT] Netsach - A Cyber Security Company www.netsachglobal.com

KEY ACCOUNTABILITIES/DELIVERABLES Develop and maintain a deep understanding of GGB/GRe business activities, as directed by the CPO Build and maintain strong working relationships with key stakeholders within GGB/GRe and Gallagher more broadly to gain insights to GGB/GRe and Gallaghers business and control environment Assist the CPO to implement the Global Data Privacy Framework (Tier 1) across GGB/GRe Assist the CPO to develop and implement any required GGB/GRe local Data Privacy Frameworks (Tier 2) to minimize privacy risks and drive risk reduction initiatives, including the creation and roll out of policies, standards, processes, playbooks and associated training Train GGB/GRe colleagues in the identification and management of privacy risks and provide coaching to Privacy Champions Complete and maintain GGB/GRe Privacy Risk Registers, with specific focus on inherent and residual risk Provide clear and concise privacy advice in an impactful manner using a wide range of communication channels. Perform privacy horizon scanning Conduct privacy risk assessments, AI impact assessments and personal data transfer impact assessments in respect of new or amended proposed processing activities Develop playbooks for managing and manage complex data subject rights requests including application of applicable exemptions and redactions where required Handle internal and third-party requests for access to GGB/GRe data Assess GGB/GRe personal and commercial data incidents using our playbooks and provide advice and guidance for their containment, mitigation and regulatory reporting obligations Assess privacy risks in relation to GGB/GRes supply chain, working closely with colleagues in security, IT, legal and procurement. Handle GGB/GRe privacy related complaints Provide privacy practitioner advice in relation to GGB/GRe related data protection contractual terms Prepare regular GGB/GRe reports and management information as required. Support the GGB/GRe M&A Privacy Lead(s) in respect of mergers and acquisitions and their future integration or divestiture Assist in the maintenance of GGB/GRes Records of Processing activities Monitor privacy compliance across GGB/GRe as directed by the CPO Carry out duties following internal policies and procedures in accordance with applicable laws, rules, regulations, good governance and Gallaghers shared values putting clients at the heart of our business. Qualifications Min 3+ years demonstrable experience in an operational / consultative privacy role providing hands on privacy advice and support in the identification, assessment, management and monitoring of privacy risks including independently conducting privacy risk assessments and transfer impact assessments as well as advising on complex data subject rights requests Privacy qualifications / certificates e.g. CIPP/E/Asia, CIPM, data protection practitioner certifications (preferred) Technical Knowledge Good practical knowledge of APAC, UK and European data protection laws and regulations such as Singapores Personal Data Protection Act, the UK Data Protection Act 2018, the General Data Protection Regulations 2016. Proven track record of providing hands on privacy advice in line with Data Protection Laws Knowledge of the insurance broking or insurance sector a significant advantage but not essential Knowledge of IT and/or Security an advantage but not essential Experience Experienced in: Working with a broad range of local and global stakeholders Working in a fast-paced environment, to challenging deadlines Being a strong team player with evidenced skills in supporting colleagues and supporting a strong team culture The assessment of and provision of advice and guidance in respect of data incidents Managing and handling data subject rights requests and third-party requests for data including redaction and application of exemptions Conducting privacy risk assessments and transfer impact assessments Assessment of supply chain privacy risks Handling privacy related complaints Creation of data protection policies, standards, procedures, playbooks and training material Working effectively with multi-national teams and stakeholders Working effectively in shared mailboxes Skills/other Strong communicator (oral and written) and capable of robust dialogue Confidence to challenge views and opinions in a sensitive way