Qualification: B.E./B.Tech/MCA

Work experience: 5-12 Years

Responsibilities:

·      Assuring that the use of technologies sustain, and do not erode, privacy protections relating to the use, collection, and disclosure of personal information.

·      Evaluating legislative and regulatory proposals involving collection, use, and disclosure of personal information.

·      Conducting a privacy impact assessment of proposed rules on the privacy of personal information, including the type of personal information collected and the number of people affected

·      Work with other internal stake holders to enable the implementation of privacy requirements within the organization

·      Liaison with appropriate entities within the government and regulators on matters that affect privacy, including complaints of privacy violations, internal controls, and other matters.

·      Support the identification and review of regulatory requirements for all external facing interfaces; support the creation of Privacy policy on service portals/applications.

·      Conduct privacy assessments for applications, departments as required by the identified project plan.

·      Document identified issues and discuss with business owners for their review and acceptance.

·      Communicate issues with various stake holder and track implementation and closure of these issues.

·      Support periodic reporting of the issues as required by management.

Job Description:

·      5-12 years of experience in Information Security and Privacy with atleast 2-3 years of experience dedicated privacy experience

·      Reasonable exposure of Information Technology systems / services / Privacy implementation

·      Certifications regards to Security and/or privacy such as CIPP, CISSP, DSCI Certifications, are good to have.

·      Exposure to technical application architecture that handle PII data

·      Good understanding of Privacy concepts and current use of technology in the area of Privacy.

·      Good understanding of legal and regulatory requirements pertinent to privacy domain, including understanding of IT Act and other relevant requirements.

·      Has experience in the conduct of privacy impact assessment and related activities.

·      Strong conceptual understanding of IT technology, systems, concepts

·      Good understanding cryptographic controls for the protection of data

·      Good understanding of computer and networking protocols

·      Strong interest in security vulnerability and conceptual understanding of security vulnerabilities

·      Experience in working on GDPR or other privacy requirements