Weekday, Inc. Logo

Weekday, Inc.

Data Privacy Consultant, Privacy Consultant

Posted Yesterday
Be an Early Applicant
In-Office
Mumbai, Maharashtra, IND
Senior level
In-Office
Mumbai, Maharashtra, IND
Senior level
Lead and grow a privacy consulting practice, delivering end-to-end privacy assessments and compliance programs (DPDP, GDPR, CCPA). Perform DPIAs, DFDs, data processing registers, risk assessments, and remediation recommendations. Advise stakeholders, collaborate with engineering on technical implementations and PETs, conduct audits, and mentor consultants while building methodologies and reusable frameworks.
The summary above was generated by AI

This role is for one of the Weekday's clients

Salary range: Rs 1000000 - Rs 2000000 (ie INR 10 - 20 LPA)

Min Experience: 10+ years

Location: NCR, Bengaluru, Hyderabad, Mumbai, Maharashtra, India, Delhi, India
JobType: full-time

We are looking for an experienced Senior Privacy Consultant to lead and build a privacy consulting practice while delivering end-to-end privacy compliance engagements for enterprise customers. This is a hands-on leadership role that combines regulatory expertise, technical understanding, and consulting excellence to bridge the gap between privacy regulations and technology implementation.

The ideal candidate will work closely with customer privacy teams, legal stakeholders, engineering teams, and solution architects to translate regulatory obligations into implementation-ready deliverables. This role operates in two modes—collaborating alongside customer privacy consultants where available and independently leading privacy assessments where no dedicated privacy partner exists.

Beyond client delivery, this individual will play a key role in establishing consulting methodologies, developing reusable frameworks, mentoring consultants, and building a scalable privacy practice.


RequirementsKey ResponsibilitiesPrivacy Assessments & Compliance Analysis
  • Conduct application-level privacy and DPDP compliance gap assessments across enterprise applications.
  • Evaluate data collection, processing, storage, sharing, and retention practices against applicable privacy regulations.
  • Prepare implementation-ready compliance documentation, including:
    • Data Flow Diagrams (DFDs)
    • Data Processing Registers
    • Privacy Impact Assessments (DPIAs)
    • Purpose-of-Processing documentation
    • Compliance Readiness Reports
  • Identify compliance gaps and recommend remediation strategies aligned with regulatory requirements.
Customer Advisory & Consulting
  • Partner with customer privacy consultants, DPOs, legal teams, and compliance stakeholders during privacy engagements.
  • Independently lead privacy consulting engagements where customers lack dedicated privacy advisors.
  • Advise clients on consent management, Data Principal Rights workflows, privacy governance, breach response, and regulatory obligations.
  • Present compliance recommendations to executive stakeholders including DPOs, CISOs, legal teams, and senior leadership.
Privacy Engineering & Technical Collaboration
  • Collaborate with Solution Architects and Engineering teams to translate regulatory requirements into technical implementations.
  • Review application architectures, APIs, databases, and data flows to identify privacy risks and compliance gaps.
  • Recommend appropriate Privacy Enhancing Technologies (PETs) including encryption, masking, anonymization, tokenization, and synthetic data techniques.
  • Support technical teams by providing regulatory context for solution design and implementation.
Regulatory & Sector-Specific Compliance
  • Provide expert guidance on the Digital Personal Data Protection (DPDP) Act, 2023 and associated rules.
  • Apply working knowledge of international privacy regulations including GDPR and CCPA where applicable.
  • Assess regulatory requirements across industries including Banking, Financial Services, Healthcare, Telecom, Insurance, Government, Capital Markets, and Digital Media.
  • Interpret the interaction between sector-specific regulations and privacy obligations to deliver practical compliance recommendations.
Privacy Governance & Risk Management
  • Conduct DPIAs and privacy risk assessments.
  • Lead regulatory readiness reviews, compliance audits, and mock audit exercises.
  • Evaluate organizational privacy controls and recommend governance improvements.
  • Support enterprise privacy strategy and ongoing compliance initiatives.
Practice Development & Leadership
  • Build and mature the privacy consulting practice by developing methodologies, assessment templates, playbooks, and quality standards.
  • Hire, mentor, and develop privacy consultants as the practice expands.
  • Review and approve assessment reports and client deliverables.
  • Define training programs, consulting standards, and delivery best practices.
  • Capture customer feedback and contribute to product enhancements and consulting knowledge repositories.
Required Qualifications
  • Bachelor's or Master's degree in Law, Information Security, Computer Science, or a related discipline.
  • Candidates with legal backgrounds should possess a practical understanding of application architectures and data flows.
  • Candidates with technical backgrounds should demonstrate strong regulatory interpretation capabilities through consulting experience or relevant certifications.
Experience
  • 10–12+ years of experience in Privacy, Data Protection, Compliance, Governance, Risk, or Consulting.
  • Hands-on implementation experience in enterprise privacy programs rather than purely advisory roles.
  • Experience leading consulting teams, developing methodologies, or building privacy practices.
  • Proven experience delivering privacy assessments across enterprise applications.
  • Experience mentoring or managing consulting teams is highly desirable.
Required Skills
  • Privacy Compliance
  • Data Protection
  • DPDP Act 2023
  • GDPR
  • CCPA
  • Privacy Impact Assessments (DPIA)
  • Data Flow Diagrams (DFDs)
  • Privacy Risk Assessment
  • Data Governance
  • Consent Management
  • Data Principal Rights
  • Regulatory Compliance
  • Privacy Consulting
  • Stakeholder Management
  • Compliance Documentation
  • Data Processing Registers
  • Privacy Program Implementation
  • Application Architecture Assessment
  • API & Data Flow Analysis
  • Technical Safeguard Mapping
Preferred Skills
  • Privacy Enhancing Technologies (PETs)
  • Encryption
  • Data Masking
  • Tokenization
  • Anonymization
  • Synthetic Data
  • Privacy Engineering
  • Information Security
  • ISO 27701
  • CIPP/E
  • CIPM
  • CIPT
  • DPO Certifications
  • Privacy Compliance Platforms
  • Banking & Financial Services Compliance
  • Healthcare Privacy
  • Telecom Regulations
  • Government Data Protection
  • Audit & Regulatory Readiness
Ideal Candidate Profile

The ideal candidate is someone who:

  • Combines strong regulatory expertise with technical understanding of enterprise systems.
  • Can independently lead complex privacy consulting engagements.
  • Translates regulatory requirements into practical implementation strategies.
  • Builds trusted relationships with legal, compliance, engineering, and executive stakeholders.
  • Demonstrates strong leadership while remaining hands-on with customer engagements.
  • Excels at creating structured methodologies, mentoring teams, and scaling consulting practices.
  • Communicates complex privacy concepts clearly to both technical and non-technical audiences.
  • Thrives in fast-paced consulting environments requiring both strategic thinking and execution.

Similar Jobs

44 Minutes Ago
Remote or Hybrid
India
Junior
Junior
Big Data • Food • Hardware • Machine Learning • Retail • Automation • Manufacturing
Provide day-to-day support and administration for INFOR Time & Attendance: user support, access management, configuration, integrations with HRIS/payroll, reporting, testing, training, data migration, and project coordination to ensure accurate time capture, payroll readiness, compliance, and successful system implementations.
Top Skills: Hcm IntegrationHrisInfor HcmInfor Time & AttendanceItilExcelMs WordMvs (Master Rotation And Auto Assignment)Reporting ToolsTicketing SystemWorkday
59 Minutes Ago
Hybrid
Mid level
Mid level
AdTech • eCommerce • Information Technology • Travel • Generative AI
Support end-to-end third party security assessments and ongoing monitoring: collect and review vendor evidence, evaluate controls against standards, manage TPRM workflows in ticketing platforms, coordinate remediation with internal teams and vendors, document audit-ready findings, and drive process and tooling improvements for vendor risk management.
Top Skills: Ai/MlArcherCcpaGdprIso 27001JIRALogging/MonitoringNist CsfOnetrustPci DssPenetration TestingServicenowServicenow VrmSIEMSoc 2Vulnerability Management
3 Hours Ago
Hybrid
Junior
Junior
AdTech • eCommerce • Information Technology • Travel • Generative AI
Join Expedia Group's B2B engineering team to develop, test, and integrate software powering global partner ecosystems. Collaborate with peers, apply CS fundamentals, write maintainable code, and build technical expertise while supporting system integrations and aligning team work with business goals.
Top Skills: JavaScala

What you need to know about the Mumbai Tech Scene

From haggling for the best price at Chor Bazaar to the bustle of Crawford Market, the energy of Mumbai's traditional markets is a key part of the city's charm. And while these markets will always have their place, the city also boasts a thriving e-commerce scene, ranking among the largest in the region. Driven by online sales in everything from snacks to licensed sports merchandise to children's apparel, the local industry is worth billions, with companies actively recruiting to meet the demands of continued growth.

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account