Assistant Vice President - Risk Management Office
Job Description
Join Tata AIA Life Insurance, a leading and fastest-growing life insurance provider in India, established in 2001 as a joint venture between Tata Sons Pvt. Ltd. and AIA Group Ltd. Our company embodies a legacy of trust, integrity, and excellence, combining Tata's esteemed leadership with AIA's extensive pan-Asian expertise. At Tata AIA, our vision is to be the pre-eminent protection provider enabling dreams and inspiring healthier, happier lives.
We foster a culture of innovation, inclusivity, and continuous learning, offering dynamic career growth opportunities and a supportive work environment. Recognized as a "Great Place to Work" and recipient of the Kincentric Best Employer Award, we are committed to employee satisfaction and holistic well-being. Our core value, "People - Our Core," emphasizes our dedication to inspiring our employees to be and deliver their very best. Our aim is to attract, hire anddevelop highly capable leaders who are just, fair, ethical, and accountable for their actions. We strive to provide our employees with the right training, technology, equipment, resources, and guidance to perform their job effectively. Our promise to you is to provide for a diverse, equitable, and inclusive work environment, where each employee is valued as an individual and treated with respect, care, and compassion.
Fuel your future with us, find your wings, and . – Shape opportunities, Optimize your potential, Accomplish meaningful work, and Reap holistic growth.
A. Position Overview
Position Title
Associate Vice President – Risk Management Office (Privacy Ops Manager)
Department
Risk Management Office
Level/ Band
Associate Vice President / 601
B. Organizational Relationships
Reports To
Vice President – RMO
Supervises
Individual contributor
C.Job Dimensions
Geographic Area Covered
-
Stakeholders Internal
CRO ,CISO, CTO – IT team, Operational Risk Assessment, Infosec Risk Assessment, Across all other functions of business, operations
Stakeholders External
Vendors
D. Role Summary
Role Purpose
To design, assess, and implement technical and security safeguards required for DPDP compliance across applications, infrastructure, and digital platforms.
Key Responsibilities
A. Privacy Technology Gap Assessment (Primary Owner)
- Assess current systems against DPDP technology requirements:
- Access controls & RBAC
- Encryption at rest and in transit
- Logging, monitoring, and audit trails
- Data retention and automated deletion
- Data minimization & masking
- Engage with Privacy Operations to stitch RoPA with technical standards, APIs, etc.
- Document technology gaps, risks, and remediation plans
- Review new systems, products, and changes from a privacy lens
- Ensure privacy controls are embedded into SDLC and architecture
- Support detection, investigation, and containment of privacy incidents
- Coordinate with InfoSec on breach response and root cause analysis
- Evaluate and implement:
- Consent Management Platforms (CMP)
- DPAR automation tools
- Data discovery & classification tools
- Breach management and incident reporting
- Reporting to DPB and internal operations.
B. Privacy-by-Design & SDLC Integration
C. Incident & Breach Support
D. Privacy Tooling & Automation
E. Skills Required
Technical
·Experience in IT Applications, security, IAM, application security, or infrastructure
·Strong understanding of enterprise systems and data architecture
Behavioral
Essential
Desired
Interpersonal skills
·
Communication skills
·
Strategic thinking skills
·
Supervising/Leadership skills
·
Teamwork Skills
·
Influencing skills
·
Relationship Building skills
·
Decision making skills
·
ISO27001:2022 certified
·
F. Incumbent Characteristics
Essential
Desired
Qualification
BE/BTech, ME/MTech, BSc/MSc, BCA/MCA
Experience
10+ years of experience
Certifications
Any of ISO 27701, CIPP/CIPM, DCDPO or other recognized privacy certifications
