Data Privacy Manager (251122)

About SirionLabs:

SirionLabs is a leading SaaS company focused on developing leading edge AI-led solutions for the legal and contract management space. Our product is trusted by Fortune 500s and major global enterprises such as Schneider, Morgan Stanley, Qantas, Unilever, IBM, Vodafone, Alstom, and Novartis, to create, negotiate, and manage +5 million contracts worth more than US$300bn across 100+ countries around the world. As a result, SirionLabs has been recognized by major industry analyst groups such as Gartner, Forrester, Spend Matters, and IDC as a leader in the contract lifecycle management (CLM) domain.

SirionLabs recently closed a US$85 million Series D funding round, which was led by Partners Group, a leading global private markets firm, along with existing investors Avatar Growth Capital, Sequoia Capital India and Tiger Global. This fresh capital infusion will help us fuel AI R&D and expand our global footprint even further.

With over 700 people working across 10+ offices in North America, Europe, and India, SirionLabs is constantly growing and expanding its global footprint.

Job Role: Data Privacy Manager

Years of Experience required: 8-12 years. (Relevant 4-5 years)

Work Location: Gurgaon

Job Profile

• Lead the Data Privacy program development, implementation and sustenance for SirionLabs
• Develop, Implement and Maintain global Data Privacy governance structure and framework that complies with data protection standards, regulations, legal and customer requirements, including General Data Protection Regulation (GDPR), ISO 27701 - Privacy Information Management System (PIMS) and other regulations relevant for SirionLabs.
• Own and keep under constant review all the firm’s global data protection compliance arrangements to include updating policies and guidance, centralising processes and putting in place robust, time-bound remedial plans where necessary.
• Ensure that the organization processes the personal data of its staff, customers, providers or any other individuals in compliance with the applicable data protection rules.
• Perform ongoing Privacy, Data Privacy and Data Transfer Impact Assessments to identify and manage privacy risks. Implement appropriate controls to mitigate unacceptable risks.
• Define, assess and review the contracts/agreements (DPA, SCC, DTA, etc.) of customers and vendors for information security and data privacy related clauses/ requirements
• Respond to RFx of prospects and customers of SirionLabs and lead customer presentations and discussions on data privacy topics
• Respond to data privacy assessments/audits performed by SirionLabs customers, external and internal auditors
• Implementation and Maintain customer contractual (MSA) information security and data privacy obligations
• Work with internal stakeholders such as Engineering, DevOps, Customer Success, IT, Product, Finance, HR etc. for implementing controls for the respective functions and ensuring the continuous operating effectiveness of the controls.
• Prepare and manage the Privacy documentation like RoPA, DFD and DPIA from all the respective functions/projects.
• Prepare metrics-based periodic reports and dashboards with support from the stakeholder functions for management review
• Develop and support a Data Privacy awareness program including training, flyers, and mailers for the employees involved in processing operations
• Support Privacy incident management process for incident reporting, containment, resolution, and root cause analysis.
• Review privacy issues identified in compliance testing, risk assessment/control assurance, internal/external audits, regulatory examinations, and other business/functional area monitoring or self-assessment and develop mitigation plans for open risks.
• Reporting of enterprise-wide Data Privacy matters/trends to the DPO

Educational qualifications and certifications:

• BE / B. Tech / BSc Computer Science.
• Must have certifications CIPP/E, CIPM

Requirements

Expertise/experience

• Direct hands-on experience in leading, implementing, and managing GDPR, ISO 27701 - Privacy Information Management System (PIMS),
• Facing audits - customer, regulatory, independent third party
• Monitoring and maintaining compliance with Global Privacy Regulations

Organizational skills:

• Self-driven and initiator
• People Management
• Ability to multi-task effectively and work under pressure
• Relationship and trust-based information security program (not authority based)
• Task finisher

SirionLabs is an Equal Opportunity Employer

We value diversity in our workforce, we are an equal opportunity employer and do not discriminate based on race, colour, gender, religion, national origin, ancestry, age, disability, medical condition, genetic information, military & veteran status, marital status, pregnancy, gender identity, sexual orientation, or any other characteristics protected by local laws, regulations, and ordinance.

We also make reasonable accommodations for disabled employees and applicants as required by law.

We follow these principles in all areas of employment including recruitment, training, promotions, compensation, benefits, transfer, and social and recreational programs