GDPR & ISMS Compliance Lead

Role: GDPR & ISMS Compliance Lead

Location: Bengaluru, India 

Notice Period: Immediate Joiners 

Experience: 5–7 Years

Key Responsibilities:
• Lead GDPR (EU regulation) compliance strategy for all business units
• Develop, implement, and monitor ISMS program (ISO 27001 framework)
• Deliver data protection impact assessments (DPIAs) and gap analyses
• Draft, review, and update privacy policy, notices, and internal documentation
• Conduct staff training and awareness programs on GDPR and ISMS principles
• Advise cross-functional teams (tech, HR, sales) on privacy by design
• Manage incident response, breach notification, and remediation workflows
• Liaise with DPOs, external consultants, and regulatory authorities as needed
• Monitor legal updates from the EU, MeitY, and DPDPB (India)
• Support client audits and respond to RFPs with data security content

Requirements:
• 5 to 7 years in data privacy, GDPR, or ISMS roles (SaaS/IT/Legal preferred)
• Deep understanding of GDPR, DPDPB, and ISO 27001 standards
• Proven experience designing and running compliance programs
• Strong project management, analytical, and drafting skills
• Ability to train teams and influence stakeholders
• Certifications such as CIPP/E, CIPM, ISO 27001 LA/LI are a plus
• Excellent written and verbal communication