Data Policy and Lifecycle Consultant

About Apexon:

Apexon is a digital-first technology services firm specializing in accelerating business transformation and delivering human-centric digital experiences. We have been meeting customers wherever they are in the digital lifecycle and helping them outperform their competition through speed and innovation.

Apexon brings together distinct core competencies – in AI, analytics, app development, cloud, commerce, CX, data, DevOps, IoT, mobile, quality engineering and UX, and our deep expertise in BFSI, healthcare, and life sciences – to help businesses capitalize on the unlimited opportunities digital offers. Our reputation is built on a comprehensive suite of engineering services, a dedication to solving clients’ toughest technology problems, and a commitment to continuous improvement.

Backed by Goldman Sachs Asset Management and Everstone Capital, Apexon now has a global presence of 15 offices (and 10 delivery centers) across four continents.

We enable #HumanFirstDIGITAL

The Data Policy and Lifecycle Consultant plays a critical role in developing and managing enterprise-wide data policies, retention strategies, and governance frameworks to ensure compliance with regulatory requirements and business objectives. This position requires expertise in data lifecycle management, data governance, and regulatory compliance across financial services, healthcare, or other regulated industries. The consultant will collaborate with cross-functional teams, including compliance, legal, IT, and data engineering, to establish best practices for data retention, retrieval, and disposal.

Key Responsibilities:

• Develop and implement data policies to ensure compliance with regulatory standards (e.g., GDPR, CCPA, PCI-DSS, HIPAA, OCC, CFPB).
• Define and manage data retention, archival, and disposal strategies based on business needs and legal requirements.
• Collaborate with IT, Data Governance, and Compliance teams to ensure proper execution of data lifecycle management policies.
• Evaluate and document data sources, structures, and flows to establish clear traceability and compliance controls.
• Provide expertise in data classification frameworks to determine appropriate retention, access, and security protocols.
• Develop Standard Operating Procedures (SOPs) for data governance, retention, and decommissioning processes.
• Advise on technology solutions for data archiving, retrieval, and secure disposal.
• Support internal and external audits by ensuring data policies align with compliance requirements.
• Develop and maintain Standard Operating Procedures (SOPs) for regulatory data retrieval and reporting.
• Work with data engineering teams to implement technical solutions that support data lifecycle management policies.
• Develop and deliver training programs to educate business units on data policies and compliance best practices.

Required Skills & Qualifications:

• 10 years of experience in data governance, data lifecycle management, compliance, or related fields.
• Strong expertise in U.S. and international data regulations (GDPR, CCPA, PCI-DSS, OCC, CFPB, HIPAA, etc.).
• Experience working with data retention, archival, and disposal policies within regulated industries.
• Familiarity with data governance tools and frameworks (e.g., Collibra, Informatica, Alation).
• Knowledge of SQL, data modeling, and data architecture is a plus.
• Strong analytical and problem-solving skills with attention to detail.
• Ability to translate regulatory and compliance requirements into actionable data policies.
• Excellent communication and stakeholder management skills, with experience collaborating across legal, compliance, IT, and data teams.
• Experience working with audit teams and regulatory bodies to ensure compliance and policy adherence.
• Ability to stay ahead of evolving data regulations and recommend necessary adjustments to policies.

Preferred Qualifications:

• Experience in financial services, healthcare, or government sectors.
• Certifications in Data Governance (DCAM, CDMP) or Compliance (CIPP, CRCM).
• Understanding of cloud data governance (AWS, Azure, GCP) and associated retention policies.