.. documentation, and management of Local Epics. Business Owners in prioritisation of Epics & Tasks. with subject matter experts to inform Business Analysis activity. review of Business Analysis outputs supporting the success of the BA Team and avoid duplication of effort. with BA Team to .. read more
About Position
Data Security, Data Privacy & GRC Specialist
Job Location: Pune/ Noida/ Bengaluru/ Hyderabad
Job Reference ID: PSL014787-1-3
What you’ll do
- 8+Years of experience working with Cybersecurity DLP, data classification and Privacy platforms– Forcepoint, Microsoft purview information protection solutions for DLP, CASB, Data Privacy.
- Candidate must have exposure for RFP response, working on RFP solution documentation, effort estimation.
- Work well in team environments with internal and external resources as well as work independently on tasks Specialist areas of IT/Security, security architecture design, security management, user awareness, risk assessment).
- Define, configure, and test complex configurations to enable DLP policy implementations through various on premises and SaaS solutions.
- Help define DLP rules and policies for new cloud access security broker (CASB) environment.
- Demonstrable consultative and delivery skills in Information Security projects, work prioritization resource allocation, budgeting, and planning with the ability to analyse complex issues, recommending and implementing tools or solutions where appropriate.
- Hands on experience with implementation of data privacy products and framework.
- Should have a strong understanding of Data Security including concepts involving Data Loss Prevention (DLP), Encryption/Tokenization, Database Activity Monitoring, PKI and Key Management technologies to help address risk and to enhance clients’ security posture.
- Must have implemented and/or supported Data Protection technologies.
- Experience with development and implementation of data protection solutions such eDiscovery tools, Data Classification solutions, Data Leakage Prevention solutions to ensure privacy policies are correctly implemented. Implementations should advance compliance with legal forms of data use as well as support business use of data
- Work to align advanced data protection technologies and privacy by design principles to ensure data use meets privacy regulatory requirements
- Knowledge of data anaonymization, psuedomization and encryption technical controls to develop systems that improves privacy protections
- Must have experience in Database protection and hands on knowledge in one or more of associated technologies
- Working knowledge of designing privacy enhancements for with a goal of developing technical solutions and systems to mitigate privacy risks
- Design, implement, and maintain GRC programs, processes, and systems, including risk management, compliance, and audit processes.
- Collaborate with stakeholders to understand business requirements and identify risk and compliance requirements.
- Develop and implement policies and procedures to ensure compliance in accordance to regulation requirement.
- Provide guidance and support to teams in regards to HIPAA, PCI-DSS, SOC2 etc. regulations and best practices.
- Monitor and report on compliance, including performing regular audits and risk assessments.
- Stay up-to-date with changes to multiple regulations and best practices, and implement appropriate updates to GRC programs and systems.
- Provide training and guidance to end-users on regulations and best practices.
- Participate in incident response activities and support security investigations as required.
- Bachelor's degree in Computer Science, Information Technology, or a related field.
Expertise you'll bring
- Minimum of 5 years of experience in GRC.
- Strong knowledge of governance, risk management, and compliance.
- Ability to design, implement, and maintain GRC solutions.
- Experience with security incident response and forensics.
- Strong communication and interpersonal skills, with the ability to effectively collaborate with internal and external stakeholders.
- Excellent problem-solving and analytical skills, with the ability to troubleshoot complex technical issues.
- Familiarity with GRC-related industry regulations and standards, such as SOX and PCI-DSS.
- Hands-on experience on implementing Data Security, Data Privacy & GRC tools must
- Technologies: Forcepoint, Microsoft purview information protection solutions for DLP, Netskope/Microsoft CASB, OneTrust, BigID, Collibra.
- GDPR/ PCI/ HIPAA/ DPDPA
- Professional certifications related to GDPR, Privacy (e.g., CIPP) or others such as CISA / ISO27001 LA etc are preferable.
Benefits
- Competitive salary and benefits package
- Culture focused on talent development with quarterly promotion cycles and company-sponsored higher education and certifications
- Opportunity to work with cutting-edge technologies
- Employee engagement initiatives such as project parties, flexible work hours, and Long Service awards
- Annual health check-ups
- Insurance coverage: group term life, personal accident, and Mediclaim hospitalization for self, spouse, two children, and parents
Our company fosters a values-driven and people-centric work environment that enables our employees to:
- Accelerate growth, both professionally and personally
- Impact the world in powerful, positive ways, using the latest technologies
- Enjoy collaborative innovation, with diversity and work-life wellbeing at the core
- Unlock global opportunities to work and learn with the industry’s best
Let's unleash your full potential. See Beyond, Rise Above