Hiten

SUMMARY

• Certified privacy and cybersecurity expert with 20+ years of experience in regulatory compliance, information security, and enterprise risk governance across BFSI, IT services, and global Fortune 500 sectors.
• Expert in privacy program implementation, including GDPR and DPDPA 2023 compliance across lifecycle elements, gap assessments, DPIAs, DSAR workflows, ROPA, third-party risk, breach management, and AI governance frameworks.
• Led enterprise-wide privacy initiatives for multinational clients by aligning data protection obligations with operational controls and business priorities.
• Designed and rolled out privacy awareness training, executive workshops, and capacity-building programs on evolving data protection and AI risk topics.
• Directed cybersecurity engagements including ISO 27001 ISMS and ISO 22301 BCMS implementations, security control assessments, and internal audit readiness programs.
• Developed and deployed application risk assessment methodologies for cloud-based and on-prem environments across finance, healthcare, and manufacturing sectors.
• Strong track record in third-party risk management, advising on vendor due diligence frameworks, internal control testing, and contract reviews for privacy clauses and security SLAs.
• Managed and mentored high-performing teams (20+), delivering multi-client engagements with consistent adherence to project timelines, regulatory expectations, and client-specific goals.
• Created reusable privacy templates, conducted regulatory audit simulations, and contributed to industry thought leadership through articles and knowledge sessions on global privacy trends.
• Known for strategic clarity, stakeholder alignment, and translating complex legal requirements into business-oriented privacy governance models.

Skills

• Privacy & Data Protection: DPDPA 2023, GDPR, DPIA, DSAR, ROPA, Consent Management, Privacy Gap Assessments, Data Breach Response, AI Governance
• Cybersecurity & Compliance: ISO 27001:2013 ISMS, ISO 22301 BCMS, CISA, CRISC (Trained), Cybersecurity Frameworks, Application Risk Assessments
• Governance & Risk Management: Third-Party Risk Oversight, Regulatory Audits, Privacy Policy Design, Internal Controls, Compliance Implementation
• Team & Engagement Leadership: Stakeholder Management, Project Delivery, Team Leadership (20+), Regulatory Coaching, Workshop Facilitation
• Training & Capacity Building: Tailored GDPR/DPDPA Programs, Awareness Campaigns, Privacy Documentation, AI Governance Education

Certification Frameworks