L&T Finance
Location
Mumbai | India
Job description
At L&T Finance we're committed to ensuring that all of our customers' data is protected and that our work complies with data protection legislation. We're seeking a data protection officer to help improve our management of potentially sensitive information, conduct regular internal security audits, and serve as the main point of contact between L&T Finance and data protection authorities. The ideal candidate will have excellent organizational, communication, and management skills, along with an ability to lead training sessions and workshops for staff members. In this role, the data protection officer will often be asked to independently communicate with all relevant employees to promote data protection compliance within the organization.
Objectives of this Role
• Serve as the main point of contact within the organization for staff members, regulators, and relevant public authorities on issues related to data protection.
• Ensure that company policies are in compliance with codes of practice such DPDP(Indian Privacy Act) & GDPR (General Data Protection Regulation)
• Evaluate the existing data protection framework to identify areas of no or partial compliance, and rectify any issues.
• Devise training plans and provide data protection advice to staff members
• Inform and advise the data controller or data processor on all matters related to data protection
• Promote a culture of data protection and compliance across all units of the organization Responsibilities
• Provide expert advice and educate employees on important data compliance requirements.
• Draft new and amend existing internal data protection policies, guidelines, and procedures, in consultation with key stakeholders
• Deliver training across all business units to staff members who are involved in data handling or processing
• Conduct audits to ensure compliance and to address potential issues
• Maintain records of all data processing activities of the company
• Serve as point of contact for data protection authorities
• Implementing the company's Data Protection Policy, and ensuring it is adhered to throughout the organisation
• Creating guidelines for all members of staff, and checking that they're resolutely followed
• Organising training courses for relevant employees, whether in-house or at external locations
• Mentoring and monitoring the company's Data Processors, and developing talented individuals within the team
• Providing information when necessary to senior management, often involving highly sensitive data
• Making sure all data is up to date, and that policies involving destruction of data are followed
Required Skills and Qualifications
• 10 years of experience in data protection & Security compliance or related field
• Expertise in data protection laws and practices, including deep understanding of DPDP, GDPR
• Experience in a legal, audit, or risk management role
• Strong project management skills
• Ability to work effectively under pressure and to manage sensitive and confidential information
• Excellent verbal and written communication skills, with strong attention to detail
Education Qualifications & Certifications
• Bachelor's degree (or equivalent) in computer science or related field
• CDPSE (Certified Data Privacy Solutions Engineer) ISACA
• ISO 27701 (PIMS)Data Privacy Certification
• CISM
Job tags
Salary