Data Privacy and Protection Specialist
Pune, Maharashtra, India · Full Time
Be the first to apply
- Experience
- 2–5 yrs
- Salary
- —
- Openings
- 1
- Posted
- 1 week ago
- Work mode
- In office
- Education
- Graduation / Post-graduation
- Eligibility
- Graduates and post-graduates can apply. A legal background is preferred, and candidates with an MBA in information security or privacy/data protection coursework will be favored.
- Resume
- Required to apply
Where you'll work
Job description
Role overview
CRIF High Mark Credit Information Services Pvt. Ltd. is hiring a Data Privacy and Protection Specialist in Pune. The role focuses on strengthening privacy compliance across the organization, improving controls, and supporting privacy-by-design practices across business and technology teams.
About the company
CRIF is a global provider of credit bureau services, business information systems, and risk and credit management solutions. Its services support banks, financial institutions, insurance companies, telecom operators, utilities, and other businesses across the full customer relationship journey, from planning and acquisition through portfolio management. It also helps consumers access credit information and make more informed choices in credit and real estate decisions.
Key responsibilities
- Continuously review the company’s privacy compliance framework and keep policies, guidance, and internal processes up to date.
- Create and drive practical, time-bound corrective action plans wherever privacy gaps or weaknesses are identified.
- Work closely with Infosec, Legal, ERM, Business Analysis, Product Owners, and development teams so privacy requirements are addressed from the beginning of new initiatives, products, and projects.
- Track privacy developments, market trends, and best practices, while building deeper awareness of key Indian privacy laws.
- Apply strong working knowledge of international privacy regulations and practices, including GDPR, CCPA, CPRA, DPIAs, TIAs, and RoPA.
- Support or manage privacy platforms such as OneTrust and BigID.
- Help build and operate an organization-wide DSAR process for handling data subject requests.
- Carry out privacy compliance assessments and audits.
- Review data processing agreements and related contractual privacy obligations.
Candidate profile
- Solid proficiency with Microsoft PowerPoint, Word, Excel, and online research tools.
- Strong verbal and written communication, along with the ability to collaborate across teams.
- Careful attention to detail and a process-improvement mindset.
- Interest in strengthening service delivery through privacy-first working practices.
- Prior exposure to information security or data privacy work.
Qualification and experience
A graduation or post-graduation degree is expected. A legal background is preferred, and an MBA in information security or formal training in data privacy and data protection will be an advantage. The role requires 2 to 5 years of experience.
Additional information
Location: Pune, Maharashtra, India.
No specific opening count, salary, stipend, joining date, or notice period was mentioned in the source.