SBI Card logo

Deputy Vice President - Program Management (Data Protection)

SBI Card
3 hours ago
Full-time
On-site
Gurgaon, Haryana, India
VP, Director & Partner

About Us

SBI Card is a leading pure-play credit card issuer in India, offering a wide range of credit cards to cater to diverse customer needs. We are constantly innovating to meet the evolving financial needs of our customers, empowering them with digital currency for seamless payment experience and indulge in rewarding benefits. At SBI Card, the motto 'Make Life Simple' inspires every initiative, ensuring that customer convenience is at the forefront of all that we do. We are committed to building an environment where people can thrive and create a better future for everyone.

SBI Card is proud to be an equal opportunity & inclusive employer and welcome employees without any discrimination on the grounds of race, color, gender, religion, creed, disability, sexual orientation, gender identity, marital status, caste etc. SBI Card is committed to fostering an inclusive and diverse workplace where all employees are treated equally with dignity and respect which makes it a promising place to work.

Join us to shape the future of digital payment in India and unlock your full potential.

What’s in it for YOU

  1. SBI Card truly lives by the work-life balance philosophy. We offer a robust wellness and wellbeing program to support mental and physical health of our employees
  2. Admirable work deserves to be rewarded! We have a well curated bouquet of rewards and recognition program for the employees
  3. Dynamic, Inclusive and Diverse team culture 
  4. Gender Neutral Policy
  5. Inclusive Health Benefits for all - Medical Insurance, Personal Accidental, Group Term Life Insurance and Annual Health Checkup, Dental and OPD benefits
  6. Commitment to overall development of an employee through comprehensive learning & development framework

 

Role Purpose 

We are seeking a highly skilled Data Protection Program Manager to lead our Consent Management Platform (CMP) initiatives. This role is pivotal in ensuring compliance with Digital Personal Data Protection Act (DPDPA), managing customer consent preferences, and driving enterprise-wide data protection strategies. The ideal candidate will combine expertise in privacy frameworks with strong program management and leadership skills.

 

Role Accountability 

  1. Consent Management Platform Leadership
    • Own and manage the enterprise-wide Consent Management Platform (CMP).
    • Define and implement consent collection, storage, and usage policies across digital channels.
    • Partner with product, engineering, and legal teams to ensure CMP aligns with regulatory requirements.
    • Data Protection Program Management
    • Develop data protection strategies, policies, and procedures and implement.
    • Lead complaince to DPDPA and related audits, risk assessments, and remediation activities related to data privacy.
  2. Program & Project Leadership
    • Person will lead enterprise-wide consent management initiatives.
    • Demonstrate program governance, risk management, and compliance monitoring.
    • Drive execution across multiple teams with clear milestones, KPIs, and reporting.
  3. Privacy & Regulatory Expertise
    • Demonstrate expertise in data protection practices and laws
    • Interpret complex regulations and translate them into actionable business and technical requirements.
    • Anticipate regulatory changes and proactively adjusts organizational platforms and systems
  4. Stakeholder Engagement
    • Act as the primary liaison between Infosec team, legal teams and other IT teams
    • Provide guidance to business units on consent and data protection best practices.
    • Communicate program updates, risks, and compliance status to senior leadership.
  5. Governance & Compliance
    • Establish KPIs and reporting mechanisms for Data Privacy, consent and data protection initiatives.
    • Monitor evolving privacy laws and recommend update to Data Privacy and CMP policies accordingly.
    • Drive awareness and training programs across the organization.
  6. Innovation & Continuous Improvement
    • Evaluate emerging consent management technologies and vendors.
    • Recommend enhancements to improve user experience and compliance efficiency.

 

Measures of Success 

  1. Adherance to DPDPA regulations
  2. Adoption of consent Management Platform across the enterprise
  3. Security controls, automation, and guardrails are integrated into development & management workflows of Consent Management Platform, resulting in faster, more secure and improved adoption.
  4. Demonstrated leadership in team collaboration, problem-solving, and adaptability to industry trends.

 

Technical Skills / Experience / Certifications

  1. Technical Skills
    • Consent Management Platforms (CMP): Hands-on expertise with tools such as OneTrust, TrustArc, Evidon, Securiti.ai, or similar CMP solutions.
    • string understanding of Data Privacy & Protection Frameworks
    • Data Governance Tools: Familiarity with data cataloging, metadata management, and data lineage tools
    • Cloud & Security: Understanding of encryption, tokenization, and identity/access management.
    • Integration & APIs: Experience integrating platforms with websites, mobile apps, CRM etc.
    • Monitoring & Reporting: Ability to design dashboards, KPIs, and compliance reports for leadership visibility.
    • Project/Program Management Tools: Proficiency with Jira, Confluence, MS Project, or equivalent for program execution.
  2. Program/Project Management: 
    • PMP (Project Management Professional) or Prince2 Practitioner
    • Agile/Scrum Master Certification (preferred for tech-driven environments
  3. Security Governance
    • Owner of implementing and maintaining robust security controls on API platform to protect APIs, ensuring secure access, compliance, and risk reduction..
  4. Risk & Compliance Management
    • Manage data protection impact assessments (DPIAs), and audits.
    • Maintain strong compliance posture across global operations.
    • Expertise in data protection, privacy compliance, or information security roles.
    • Proven track record of leading enterprise-wide platform implementations across multiple regions.
    • Experience in cross-functional collaboration with legal, engineering, marketing, and product teams.
    • Background in risk assessments, audits, and remediation programs.
    • Demonstrated ability to translate regulatory requirements into technical and operational processes.
    • Experience in change management and stakeholder engagement at senior levels.

 

Competencies critical to the role

  1. Stakeholder Management & Influence
    • Builds strong relationships with legal, engineering, marketing, product, and executive leadership.
    • Communicates complex privacy concepts in clear, business-friendly language.
    • Influences decision-making at senior levels and gains buy-in for compliance investments.
  2. Strategic Thinking & Innovation
    • Ability to balance compliance requirements with customer experience and business objectives.
    • Experience in large-scale enterprise environments.
    • Ability to influence senior stakeholders and drive organizational change.
    • Passion for privacy, ethics, and customer trust.
  3. Analytical & Problem-Solving Skills
    • Uses data-driven insights to monitor consent trends and compliance gaps.
  4. Communication Excellence
    • Crafts clear policies, guidelines, and executive reports.
  5. Ethical Leadership
    • Acts as a trusted advisor on privacy and data ethics.
    • Builds trust with customers, regulators, and internal stakeholders.

 

Qualification 

  1. B.E, Btech, MBA (Systems), MCA Computer Science, 
  2. Advanced degree (Master’s in Privacy Law, Cybersecurity, or MBA) preferable

 

Preferred Industry

Banking and Financial Services