Director - GRC Domain

Description :

Position : Director

Role : Data Privacy

Service Line : Technology Risk

Employment Type : Permanent

Work Arrangement : Work from Office

Location : Gurgaon

Key responsibilities :

Go-To-Market (GTM) and Business Development :

- Strategy Execution : Develop and execute comprehensive GTM strategies to expand the Firms footprint in the privacy domain across key industry verticals.

- Market Presence : Actively represent the Firm at industry events, conclaves, and roundtables to enhance brand visibility and lead the thought leadership initiatives.

- Pipeline Management : Lead the end-to-end sales cycle, from identifying potential clients and lead generation to proposal development and closing deals.

- Client Acquisition : Establish and maintain relationships with C-suite stakeholders (CISO, CIO, CTO) to understand their business challenges and position the Firms services.

Solution Designing and Technical Excellence :

- Innovation : Develop and refine privacy solution offerings and deliverable framework in-line with expectations.

- Subject Matter Expertise : In depth understanding of and experience with global privacy acts /frameworks and the ability to design privacy programs and solutions based on them.

- Solutioning : Work with in-house technology team to develop bespoke privacy solutions V1.0

Partner Ecosystem :

- Strategic Alliances : Build and manage strategic alliances with privacy technology solution provider.

Client Management and Project Delivery :

- Trusted Advisor : Serve as the primary point of contact for senior client stakeholders, providing strategic inputs on privacy challenges.

- Engagement Oversight : Lead project delivery by defining timelines, allocating resources, and managing project budgets.

- Risk and Quality : Oversee the quality of deliverables and ensure they are as per client expectations.

People Development and Leadership :

- Talent Acquisition : Play a pivotal role in interviewing and hiring top-tier privacy talent.

Qualifications :

- Overall, 14-17 years of experience in GRC domain with 6 years of core experience in privacy projects in a client facing role.

- B. Tech / BCA / MCA / MBA or relevant experience of 10 years.

Certifications :

Mandatory : IAPP Certifications : CIPT/CIPM/CIPP etc.

Preferred : LLB/JD.

Skills & Competencies :

Technical :

- Should have in-depth knowledge on privacy enablers such as : ROPA, DFDs, DPIAs, inputs for TPRM functions with focus on privacy, consent management, policies and procedures.

Functional :

- Strong Communication and documentation skills

- Strong understanding of data protection laws & frameworks such as GDPR, DPDP, NIST Privacy framework, ISO 27701, ISO 27001.

Mandatory tools, domain expertise :

- Tools : One Trust, Securiti.ai, BigID

- Domain : Privacy