Dear ISACA Chennai Members,

We are happy to share this job opportunity from Grant Thornton Bharat LLP. We strongly suggest to please read the job description and related details carefully and apply / send your profile to the point of contact.

Job Title:
Consultant (Data Privacy & Cyber)

Company:
Grant Thornton Bharat LLP

Location:
Chennai

Number of positions:
2

Employment Type:
Full-time

About the Role:
Entry-level to mid-level role focused on executing privacy assessments, documentation, and compliance activities under the guidance of senior team members.

Key Responsibilities:

• Experience in DPDPA implementation
• Conduct privacy assessments including PIA/DPIA as guided by seniors.
• Assist in mapping regulatory requirements (GDPR, DPDP Act 2023, etc.) to business processes
• Support creation and maintenance of privacy & security policies, SOPs, and checklists.
• Perform application, vendor, and process-level privacy reviews using predefined frameworks.
• Assist in identifying privacy risks and documenting risk ratings as per defined methodology.
• Prepare and maintain artefacts such as RoPA, data flow diagrams, consent logs, and data inventories.
• Support DSR (Data Subject Rights) handling, consent review and privacy notices.
• Assist in drafting remediation recommendations and follow-up actions.
• Support in data classification exercises and data retention schedule implementation.
• Contribute to DLP monitoring, incident investigation support, and evidence gathering.
• Assist in ISO 27001 / ISO 27701 audits with documentation preparation and evidence collection.
• Prepare training material and support conducting awareness sessions.
• Support in reviewing privacy clauses in vendor contracts and DPAs under senior supervision.
• Assist in preparing dashboards, status trackers and periodic MIS reports for clients.
• Conduct initial data discovery activities and participate in workshops with business and IT teams.
• Experience with Privacy tools

Required Qualifications:

• Bachelor’s degree in engineering, Computer Science, IT, or related field.
• 2–6 years of experience in data privacy, information security, cyber risk, or compliance.
• Exposure to privacy regulations such as GDPR, DPDP Act 2023, and basic understanding of ISO 27001/27701.

Preferred Skills (Optional):

• Understanding of privacy principles and regulations (GDPR, DPDP Act, ISO 27701).
• Basic knowledge of data lifecycle, data security, and cloud concepts.
• Strong documentation, analytical, and communication skills.
• Ability to work in teams, follow structured methodologies, and meet deadlines.
• Strong analytical skills with the ability to document processes, risks, and controls.
• Good communication skills and willingness to learn advanced privacy concepts.

Experience Required:

• 2–6 years of experience in data privacy, information security, cyber risk, or compliance.

How to Apply:
Share your profile with the following details to Ambika.Bahadur@in.GT.COM

Current CTC:

Expected CTC:

Notice period:

Last working day:

Preferred location: PAN India

Please note that this will require working from Office on a daily basis Immediate joiners required / preferred Please mention “ISACA Chennai” as reference in the email subject

Application deadline:
30 June 2026

Contact Person:
Ambika Bahadur
Ambika.Bahadur@in.GT.COM