Data Protection Officer (DPO) – Mumbai – 5 to 9 Years Experience

Job Description

Fynd is seeking a highly skilled Data Protection Officer (DPO) to ensure compliance with global security and data protection regulations. The ideal candidate will play a key role in implementing privacy policies, overseeing security frameworks, and ensuring compliance with GDPR, DPDP, ISO 27001, SOC 2, and PCI-DSS.

Responsibilities:

1. Data Protection & Privacy Compliance:

• Implement and oversee compliance with DPDP (India) and GDPR regulations.
• Act as the point of contact for data protection authorities and internal privacy matters.
• Conduct Data Protection Impact Assessments (DPIAs) and privacy risk assessments.
• Develop and enforce privacy policies, data retention, and protection measures.

2. Information Security Compliance & Certifications:

• Lead and maintain ISO 27001 compliance, ensuring policies meet certification requirements.
• Oversee SOC 2 compliance, focusing on security, availability, and privacy principles.
• Manage PCI-DSS compliance for secure cardholder data handling.
• Ensure alignment with NIST security frameworks for risk management.

3. Business Continuity & Incident Management:

• Develop and maintain a Business Continuity Management (BCM) program, including disaster recovery plans.
• Lead security incident response to mitigate data breaches and cybersecurity threats.
• Conduct regular audits and tabletop exercises to assess security readiness