8 Privacy Jobs

Your role and responsibilities As an Attorney at IBM, you'll be part of a dynamic Bangalore-based legal team, collaborating with fellow lawyers and support staff to offer legal guidance and assistance to IBM's global lawyers and business teams. Your responsibilities span across various legal domains, both transactional and non-transactional, encompassing all IBM business units. In the transactional sphere, you'll contribute during the early stages of commercial engagements, including direct and indirect distribution, mergers and acquisitions, and more. Your expertise will extend to advising various business and support functions such as procurement, real estate, human resources, and finance on regulatory compliance, contractual disputes, litigation, intellectual property, workplace relations, privacy, and cybersecurity, among others. This attorney role will be in the Legal Center of Excellence (CoE) to be set up in Bangalore, India. The Legal CoE will be dedicated to achieving continuous operational improvement in legal service delivery across IBM's diverse business areas and geographies. Required education Bachelor's Degree Required technical and professional expertise Essential qualifications include being qualified to practice law in India, possessing 5-13 years of legal experience in-house or at a law firm, or a combination of both. Proficiency in negotiating IT contracts with government and commercial entities in services, software, and cloud solutions is required. Additionally, you must demonstrate experience in addressing issues related to privacy, cybersecurity, intellectual property, and regulatory compliance. The ability to work independently on matters, with supervision requirements decreasing as familiarity with IBM's operations increases, is crucial. A strong commitment to integrity and ethical conduct is key. Preferred technical and professional experience Preferred qualifications include experience in dispute advisory and litigation, understanding of government procurement policies and procedures, and a proven track record of process improvement to enhance business and legal function performance. Prior in-house legal experience, ideally within a multinational company, would be advantageous. When you join IBM, you join a culture of openness, collaboration and trust. You join a team of IBMers who are bringing change into the worldhelping cure diseases, clean our oceans and make technology work for good.

Responsibilities: * Configure software & hardware * Update systems regularly * Provide system support * Troubleshoot network issues * Maintain privacy policies

Health Information Technician Roles and Responsibilities: Manage and organize health information data. Ensure the accuracy, accessibility, and security of patient records. Maintain patient confidentiality and comply with healthcare regulations. Assist in the implementation and management of health information systems. Collaborate with healthcare providers to ensure proper documentation. Required Skills: Knowledge of medical terminology Proficiency in health information systems Attention to detail Strong organizational skills Ability to maintain confidentiality

Technical Consultant OneTrust Privacy Platform Description Governance, Risk & Compliance consulting team is looking for OneTrust certified technical Privacy SMEs to be part of our consulting/professional services division. The candidate must be highly experienced in providing implementation of OneTrust platform inclusive of integration with 3rd party tools and also should have the knowhow of functional aspects of the tool. The OneTrust data privacy consultant will be required to work on global/international consulting as well as technology implementation projects Qualification, Work Experience & Certifications Bachelors/Masters degree or higher in Computer Science, Information Systems or a related field. ONETRUST Privacy Product Certification (Mandatory) Overall IT professional with experience of8+ year At least 6+ yearsof Information Security, Risk Management, Compliance Management and delivery experience. Experience in handling global client stakeholders Excellent Communications & Presentation skills CISA, CISM, CIPM/CIPT, CIPP/E, CIPP/US (at least one certification preferred) Responsibilities Implementation of data privacy requirements using OneTrust platform Build forms, events, workflows, integration with 3rd party products, reports on the OneTrust platform. Oversee the functional and technical implementation and platform adoption for all customer proof of concept projects from start to finish. Technical understanding and experience working with the following concepts: (HTML, CSS, JS • REST APIs • JSON • Scripting :Python, Powershell, Bash, etc) Understanding data privacy stature in client organization Custom make and implement privacy compliance program in client organization Execute data discovery & privacy impact assessment manually as well as using ONETRUST technology platforms. Execute project which involve advise, create & documentation of policies and procedures to help organizations protect their data (e.g. PII, Sensitive data, Financial data etc.) Research and analyze new data privacy regulations evolving across the globe Define technical and business requirements for data privacy and information governance solutions Implement data privacy, information governance, IT and information security related technology products. Perform basic supervisory duties to mentor and coach junior staff. Develop people through effective trainings and certification guidance.

# Ensure Privacy/Data governance compliance by executing Privacy by Design controls, assessing risks, and initiating remediation. # Support IT risk management and regulatory obligations. Required Candidate profile # 5–8 yrs in data protection, privacy security, or IT risk, with 2–3 yrs in privacy. # Must understand privacy laws, data governance, relational databases, and effectively analyze and document data.

KEY ACCOUNTABILITIES/DELIVERABLES Develop and maintain a deep understanding of GGB/GRe business activities, as directed by the CPO Build and maintain strong working relationships with key stakeholders within GGB/GRe and Gallagher more broadly to gain insights to GGB/GRe and Gallaghers business and control environment Assist the CPO to implement the Global Data Privacy Framework (Tier 1) across GGB/GRe Assist the CPO to develop and implement any required GGB/GRe local Data Privacy Frameworks (Tier 2) to minimize privacy risks and drive risk reduction initiatives, including the creation and roll out of policies, standards, processes, playbooks and associated training Train GGB/GRe colleagues in the identification and management of privacy risks and provide coaching to Privacy Champions Complete and maintain GGB/GRe Privacy Risk Registers, with specific focus on inherent and residual risk Provide clear and concise privacy advice in an impactful manner using a wide range of communication channels. Perform privacy horizon scanning Conduct privacy risk assessments, AI impact assessments and personal data transfer impact assessments in respect of new or amended proposed processing activities Develop playbooks for managing and manage complex data subject rights requests including application of applicable exemptions and redactions where required Handle internal and third-party requests for access to GGB/GRe data Assess GGB/GRe personal and commercial data incidents using our playbooks and provide advice and guidance for their containment, mitigation and regulatory reporting obligations Assess privacy risks in relation to GGB/GRes supply chain, working closely with colleagues in security, IT, legal and procurement. Handle GGB/GRe privacy related complaints Provide privacy practitioner advice in relation to GGB/GRe related data protection contractual terms Prepare regular GGB/GRe reports and management information as required. Support the GGB/GRe M&A Privacy Lead(s) in respect of mergers and acquisitions and their future integration or divestiture Assist in the maintenance of GGB/GRes Records of Processing activities Monitor privacy compliance across GGB/GRe as directed by the CPO Carry out duties following internal policies and procedures in accordance with applicable laws, rules, regulations, good governance and Gallaghers shared values putting clients at the heart of our business. Qualifications Min 3+ years demonstrable experience in an operational / consultative privacy role providing hands on privacy advice and support in the identification, assessment, management and monitoring of privacy risks including independently conducting privacy risk assessments and transfer impact assessments as well as advising on complex data subject rights requests Privacy qualifications / certificates e.g. CIPP/E/Asia, CIPM, data protection practitioner certifications (preferred) Technical Knowledge Good practical knowledge of APAC, UK and European data protection laws and regulations such as Singapores Personal Data Protection Act, the UK Data Protection Act 2018, the General Data Protection Regulations 2016. Proven track record of providing hands on privacy advice in line with Data Protection Laws Knowledge of the insurance broking or insurance sector a significant advantage but not essential Knowledge of IT and/or Security an advantage but not essential Experience Experienced in: Working with a broad range of local and global stakeholders Working in a fast-paced environment, to challenging deadlines Being a strong team player with evidenced skills in supporting colleagues and supporting a strong team culture The assessment of and provision of advice and guidance in respect of data incidents Managing and handling data subject rights requests and third-party requests for data including redaction and application of exemptions Conducting privacy risk assessments and transfer impact assessments Assessment of supply chain privacy risks Handling privacy related complaints Creation of data protection policies, standards, procedures, playbooks and training material Working effectively with multi-national teams and stakeholders Working effectively in shared mailboxes Skills/other Strong communicator (oral and written) and capable of robust dialogue Confidence to challenge views and opinions in a sensitive way

Largest IT Consulting Company is hiring in large numbers in Mumbai Only immediate Joiners/ 15 days joiners need to apply Call on :7208835287 / 9359055605 send cv to zeba@contactxindia.com it@contactxindia.com Role & responsibilities Role detail 4 to 8 years of experience in assurance, information security, vendor/ supplier/ third party risk assessment Expertise in cyber security including standards such as ISO27001, PCI-DSS, ISO22301, privacy etc. Knowledge of technical domains such as network security, cloud security, application security, control testing Knowledge of concepts such as vendor risk profiling, country risk assessment, outsourcing/ technology regulation Experience in assessing emerging technologies such as robotics, IOT, DLT, Social, Mobile etc., Exposure to TPRM specific regulations (FED, MAS, OCC, etc.), Exposure in assessing different third parties e.g. Brokers, Exchanges, etc., Worked with TPRM tools, platforms & utilities such as KY3P, TruSight, ServiceNow, OneTrust, CyberGRX, Coupa etc, Strong Auditing skills is desired, experience in IT Compliance, ITGC testing, and Assurance is a plus Strong problem solving and logical approach skills Excellent written and verbal communication skills Consistent display of technical proficiency Ability to work well in teams Willingness to travel within India or abroad for project/assignments. Demonstrate integrity, values, principles, and work ethic and lead by example CISA/ CISSP/ CISM/ISO27001 LA / LI / Cloud security certificates Prior exp in IT Audit, SOC 1, SOC 2 Qualifications: • Bachelors degree in computer science or related field • Excellent communication and team collaboration skills Preferred candidate profile Perks and benefits

Job Role - Privacy and Regulatory Compliance Manager Role Summary PRCO (Privacy and Regulatory Compliance Officer) is responsible for execution of the global compliance and privacy program for India region. This position reports directly to Privacy and Regulatory Compliance Officer (PRCO). Certifications - CISA/CISM/CISSP/ISO 27001/ISO 27701 (Any one) - CIPT/CIPM/CIPP/Internal Auditor certification (Preferred) Mandatory Skills - 5 Years experience in information security, privacy, risk management (Compliance). - Proficient in MS Office. - Strong knowledge for Data Privacy and Information Security Domain. - Experience in project management that has managed projects from inception to implementation. - Working knowledge of Data Privacy Regulations with an Information security or Privacy certification from the IAPP/ISACA/ISC2/ISO or the ability to gain CIPP Certification within the first 6 months in the position. - Strong analytical skills and the ability to apply critical thinking skills to a given problem or project. Competencies - Makes Decisions - Builds Collaborative Relationships - Supports Innovation & Continuous Improvement - Maintains composure Roles and Responsibilities PRCO is responsible and accountable for the following activities as well as other activities at the direction of the local leadership team or the Privacy and Compliance Office. Privacy Notice/Consent Form Communication and Reporting - Ensure all new hires receive privacy notice/consent upon hire and all employees receive updated notices and consents as needed, working with local HR, and recruitment teams. Monitor appropriate notices and consent. Evaluate and coordinate with the Privacy Office on the communication of any privacy notice and consent. Responsible for Privacy controls compliance and personal data processing activities and escalating new or changes to existing personal data processing activity to the Privacy Office. Ensure completion of Records of Processing (ROP) within OneTrust for Controller & Processor ROPs, including: - Ensure new or changes to existing personal data processing activities are appropriately documented and/or updated (controller and processor). - Ensure new clients or changes to existing client processing activities are appropriately documented and/or updated. - Coordinate with India IT and review IT ROPs to ensure accuracy, completeness, and regular updations. - Coordinate with India Support Functions ensure that new personal data processing activities are appropriately documented in the ROP Controller and is regularly updated with any changes to existing activities. - Records of Processing (ROP) Quality Review ensure completion and accuracy. Coordinate with functional team leads as necessary to ensure accuracy. Client Contracts - Work with Legal and Operations, ensure existing clients have been notified regarding data privacy amendments, the negotiation process has been initiated, and client contracts have been updated with data privacy amendments as needed. - Work with Business Development, SAM, or local Account Managers, as appropriate, ensure liaison with the Legal Department so that contracts with new clients include the appropriate data privacy provisions. Vendor Due Diligence / Privacy Assessment Review - Ensure the Privacy Due Diligence process is conducted on all existing, as well as new vendors for the country or subsidiary working with both local procurement. - In accordance with the process established by the Privacy Office, review and approve completed Vendor Due Diligence Questionnaires, or escalate as needed to Country Privacy Lead. - In coordination with Procurement team, ensure that the Privacy Due Diligence process is completed prior to any new vendor contract execution. - Assist PRCO in TPSC proposal privacy assessment review. Data retention - Monitor the ramp down processes and ensure the data is surrendered to client / purged from TP environment within 90 days of contract termination. - Reporting and providing specific reporting metrics as required by the Privacy Office on a regular and consistent basis. Act as a POC for BCR/GDPR and/or ISO and other audits, Regional / Global Projects Role Summary PRCO (Privacy and Regulatory Compliance Officer) is responsible for execution of the global compliance and privacy program for India region. This position reports directly to Privacy and Regulatory Compliance Officer (PRCO).