Associate Director – Privacy & GRC at Tsaaro

Mumbai, maharashtra, India -

Full Time

Start Date

Immediate

Expiry Date

13 Mar, 26

Salary

0.0

Posted On

13 Dec, 25

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Privacy, Data Protection, Cybersecurity, GRC Consulting, Regulatory Compliance, Risk Management, ISO 27001, ISO 27701, NIST, SOC 2, Stakeholder Management, Leadership, Advisory, Incident Response, Third-Party Risk Assessment, Policy Creation

Industry

IT Services and IT Consulting

Description

Join Tsaaro as an Associate Director – Privacy & GRC Lead with Expertise. Drive Transformation. Shape Global Privacy & Governance. Are you a seasoned privacy, security, and governance professional looking to elevate your leadership journey and take on high-impact responsibilities? At Tsaaro, we don’t just deliver compliance — we redefine how organizations implement privacy, information security, and governance frameworks at scale. We’re growing rapidly and are looking for an Associate Director – Privacy & GRC who thrives in dynamic environments, understands complex regulatory ecosystems, and has a proven track record of managing and executing large-scale privacy and governance programs for clients. About Tsaaro At Tsaaro, privacy and security are not side functions — they are our core. Our team includes dedicated privacy consultants, GRC specialists, and cybersecurity experts, all collaborating to empower organizations with tailored, effective, and scalable solutions. We bring a practical, risk-based consulting approach, offering clients actionable insights and hands-on support to help them manage privacy risks, demonstrate compliance, and strengthen their governance and security posture. Your Role: Associate Director – Privacy & GRC As an Associate Director, you will support strategic advisory functions, lead key client engagements, and manage delivery across privacy governance, risk management, and compliance frameworks. Key Responsibilities: Lead and oversee privacy, GRC, and data protection programs tailored to client needs. Assess clients’ privacy, governance, and security controls, identifying gaps and contributing to transformation roadmaps. Manage advanced privacy assessments including gap assessments, DPIAs, PIAs, RoPA, internal audits, and risk assessments. Provide advisory on GDPR, CCPA, DPDP Act, PDPL, and other global regulations. Develop and review privacy policies, governance frameworks, and compliance documentation. Contribute to the implementation of ISO 27001, ISO 27701, NIST, SOC 2, and related frameworks. Support incident response planning, breach readiness, and Data Subject Rights programs. Conduct and review third-party risk assessments and audit readiness initiatives. Work with senior client stakeholders (CISO, DPO, CTO, Legal, Compliance) to deliver effective privacy and GRC solutions. Lead cybersecurity-aligned GRC activities including policy creation, internal audit programs, and governance structure Requirements 7+ years of hands-on experience in privacy, data protection, cybersecurity, or GRC consulting. Strong understanding of international privacy laws including GDPR, CCPA/CPRA, DPDP Act, PDPL, and global frameworks. Solid grasp of ISO 27001, ISO 27701, NIST CSF, SOC 2, and other governance/control frameworks. Experience managing enterprise-level privacy programs, GRC initiatives, ISMS/PIMS implementations, and audits. Familiarity with privacy and GRC tools (e.g., Securiti.ai, OneTrust, BigID). Certifications such as CIPP/E, CIPM, CIPT, ISO 27001 LA/LI (preferred). Excellent communication skills, leadership capability, and strong stakeholder management. A mindset that is strategic, solution-oriented, collaborative, and impact-driven. Benefits Why Join Tsaaro? Work with one of the most specialized and high-growth privacy and GRC consulting firms in India. Exposure to enterprise clients, global privacy regulations, and large-scale transformation programs. Clear leadership growth path with opportunities to shape practice strategy. Ownership of impactful engagements, frameworks, and delivery excellence. Flexible work culture – hybrid options available. Strong focus on continuous learning, certifications, and professional development. From the Tsaaro Team: "At Tsaaro, we’re not just shaping the future of privacy — we’re shaping leaders. As an Associate Director – Privacy & GRC, you’ll be at the forefront of strategic delivery, client engagement, and impactful decision-making, helping organizations build secure and compliant ecosystems." Ready to Lead the Future of Privacy & Governance? Apply now and be a part of Tsaaro’s mission to transform privacy, governance, and cybersecurity consulting globally.

Responsibilities

As an Associate Director, you will lead and oversee privacy, GRC, and data protection programs tailored to client needs. You will also manage advanced privacy assessments and provide advisory on various global regulations.