This position is responsible for assisting in the management, execution and testing of privacy controls. Conducting privacy compliance audits, monitoring privacy controls, and testing privacy controls. Researching, building and maintaining tooling for testing and continuous monitoring of privacy controls. Aligning market privacy monitoring program with the global privacy program monitoring framework. Collaborating with stakeholders to perform regular privacy assessments.
Asst Manager -Data Privacy
About the role
This position is responsible for assisting in the management, execution and testing of privacy controls implemented for the privacy program for Flipkart Group. The position reports to the Privacy SME who has overall responsibility for the management of privacy requirements across Flipkart and its subsidiaries. This role is mainly responsible for conducting privacy compliance audits, monitoring privacy controls, and testing privacy controls. This includes assessing the organization's compliance with applicable data privacy laws and regulations, identifying and evaluating risks to personal information, and recommending improvements to the organization's privacy program.
Job Description:
- Research, build and maintain tooling for testing and continuous monitoring of privacy controls across multiple platforms including AWS, Google etc.
- Work in collaboration with Data Architect and provide required business/functional inputs that helps to embedded privacy by design.
- Establishes, defines, and reports privacy KPIs via scorecard and drive performance in partnership with business, Global Privacy team.
- Aligns market privacy monitoring program with the global privacy program monitoring framework.
- Creation of test strategies to verify controls and confirm compliance with applicable privacy laws.
- Updates Program lead on program progress, gaps, and strategies. Identify key controls for review topics and areas of improvement in local practices related to data privacy and have a working knowledge of global privacy laws.
- Work with multi-disciplinary teams and collaborate with business, subject matter experts and delivery teams to develop strategic business solutions.
- Evaluate/test different privacy-preserving techniques for operational effectiveness differential privacy, data de-identification, privacy statistical properties of data sets (k-anonymity, l-diversity), etc. and act as a monitoring and testing administrator.
- Support and guide the data team to employ methods of statistical disclosure controls to mitigate the privacy risks associated with the public disclosure of development data.
- Be the functional point of contact between development and business teams and document specifications for requirements and oversee development and testing activities.
- Collaborate with different stakeholders to perform regular privacy assessments of data, operational processes; and to identify and mitigate risks through effective tools, training and guidance.
- Should be able to appropriately monitor, audit, and document applicable privacy requirements & compliance.
Qualifications and Experience:
- Bachelor's degree in law, or information technology with a minimum 2-5 years’ experience working in E-commerce, Technology/Product/ IT organization sector in large organizations.
- Working knowledge of industry standard risk, governance and security standard methodologies
- Experience in risk assessments/privacy impact assessments(PIAs), testing and monitoring controls
- Technical understanding of privacy best practices and challenges with coding ability
- Knowledge of SOC, PCI DSS, ISO27701 (PIMS), ISO27001 (ISMS) standards.
- Knowledge of data protection and privacy laws of India, and other international laws such as EU GDPR, Middle-East would be preferred.
- Experience in data protection & data security measures (encryption, anonymization etc.)
- Professional credentials such as CIPT, CIPM, other Privacy Engineering certifications will have an advantage
- Ability to work cross-functionally, build strong relationships and partner effectively with others to address issues
- Strong organizational and time management skills
- Ability to manage competing priorities in a fast-paced environment
- Self-starter and able to work independently with minimal supervision
- Experience to operate within an international environment with a diversity of cultures
- Fluent in English, both verbally and in writing
Open Positions: 1
Skills Required:
privacy impact assessments, Risk assesment, SOC, Data Privacy
Location: Bangalore, Karnataka
Education/Qualification: LL.B or B.tech
Desirable Skills:
Cipt, Governance, Risk, Monitoring Tools, Monitoring, privacy
Years Of Exp: 2 to 5 Years