REF7225P- Information Security (HIPPA& GDPR) Pune-Contract Employee

Company Description

WNS (Holdings) Limited (NYSE: WNS), is a leading Business Process Management (BPM) company. We combine our deep industry knowledge with technology and analytics expertise to co-create innovative, digital-led transformational solutions with clients across 10 industries. We enable businesses in Travel, Insurance, Banking and Financial Services, Manufacturing, Retail and Consumer Packaged Goods, Shipping and Logistics, Healthcare, and Utilities to re-imagine their digital future and transform their outcomes with operational excellence.We deliver an entire spectrum of BPM services in finance and accounting, procurement, customer interaction services and human resources leveraging collaborative models that are tailored to address the unique business challenges of each client. We co-create and execute the future vision of 400+ clients with the help of our 44,000+ employees. Our global footprint spans 16 countries with 61 delivery centers worldwide including in China, Costa Rica, India, the Philippines, Poland, Romania, South Africa, Spain, Sri Lanka, Turkey, United Kingdom and the United States.

Job Description

Working knowledge in GDPR is mandatory!

1- Carry out all operational information security risk assessment.

2- Carry out Privacy risk and impact assessment for client operations and technology infrastructure.

3- Conducting operations audit based on Information security and privacy principles.

4- Conducting review of contractual contracts, privacy contracts / exhibits / privacy agreements.

5- Ensure various information security, privacy regulatory requirements /client’s data privacy requirements are effectively addressed.

6- Advise business unit leaders and risk management leaders in issues related to information security.

7- Handling information security incidents, data breaches investigations• Handling security exceptions and signoffs

8- Assist Risk management functional leaders in overseeing compliance activities relating to information security.

9- Creation and maintenance of risk assessment trackers and keeping them current.

10- Creation and maintenance of up-to-date inventory of sensitive information profiling for client operations

11- Ensure that contract arrangements are in place and being complied with. Obtain necessary evidence for the same. Conducting necessary due diligence on subcontractors / third party.

12- Driving information security training and awareness to ensure employees are aware of their responsibilities

Experience on privacy regulations (GDPR, HIPAA/ HITECH, POPIA, PIPEDA, Australia/ New Zealand privacy laws APP etc.)

Qualifications

Graduate - Preferably BE, BSC Computer