Principal Duties and ResponsibilitiesWe are focused on helping our valued clients to design and implement large scale transformational programs to manage cyber threats. We enable our clients to define their overall cyber strategy by designing global and pan-enterprise programs that focus on reducing threats, evaluate their priorities, strengths and weaknesses and roll out large scale changes to achieve goals. If dynamic and fast-paced environments, cross-capability exposure, freedom to work and the ability to have a real impact on a rapidly growing team appeals to you, then that is what we are looking for. Youll join an ambitious team of highly motivated security specialists who interface with CIOs, CTOs, CISOs and CFOs in addressing their complex requirements on a day-to-day basis.We are looking for a Data Security expert, with a great eye for risk reduction and continual improvement opportunities. Following are some of the responsibilities that you will handle:Advise clients in understanding the problems and challenges in data security and work collaboratively with them to enhance capabilitiesGather requirements, develop use cases, evaluate vendor solutions, develop architecture & design, and test data protection and data security solutionsDesign people, process and technology solutions to reduce the potential of data compromiseQualificationsBachelors Degree in EngineeringMBA Degree from Tier 1 College6+ years of experience in multiple domains with expertise in Data SecurityExcellent analytical skills; able to breakdown complex problems, multi-faceted problems with actionable stepsExposure to Cloud and On-prem security requirementsExperienceExposure and knowledge in at least 3 of the following Data Security domains:Data Security Assessment:Develop the Data Security framework, perform the assessment and generate roadmapData Discovery, Classification, Handling and Inventory:Design Data classification and inventory programs including the use of data discovery toolsDefine and maintain data classification and labeling policies based on business and regulatory requirementsCollaborate with business units to understand data protection needs and ensure the appropriate protection and handling of sensitive dataDevelop data retention and disposition policies to ensure compliance with retention requirements and relevant regulations.Design Data Classification SchemaInformation Rights Management (IRM)Design the information rights management use casesDevelop the information rights management schemaEvaluate the tools available in the market for IRMDesign the strategy to implement IRMDevelop the user supporting documents to implement IRMData ObfuscationDesign and develop encryption strategy and use cases for the databases, applications, servers, etc.Design PKI, Certificate Management and Key management strategyMap industry best practices around encryption tools like Keyfactor/HashiData Loss PreventionDesign and develop use cases for DLP across endpoints, network, cloud, etc.Design the DLP rulesets based on the identified use casesProvide a comparative analysis of the DLP solutions and fitment reportIdentify the ways of circumventing existing DLP controlsDevelop high-level and low-level design documentsDatabase Activity MonitoringDesign the Database Activity Monitoring use casesEvaluate the landscape to ensure coverage for type of databases like Oracle, MySQL, applications, etc.Evaluate the CSPs native solutions and opportunities of integrating with SIEM/PAM etc.Cloud Access Security Broker (CASB)Develop use cases for CASBEvaluate the native CSPs control and develop a comparative analysisDesign the several implementation modes of CASB based on the use casesEvaluate integration of CASB with other upstream and downstream solutionsQualifications
Key Competencies and Skills
Good understanding of Microsoft Purview or similar data governance and protection tools like Varonis, Symantec, ForcePoint, Trellix, IBM Guardium, Boldon James, Titus, etc.Relevant certifications such as Microsoft Certified:Information Protection Administrator or similar credentials would be beneficialCISSP, CISM or related certifications preferredStrong oral and written communication skillsGood understanding of information security frameworks like NIST, ISO27K, PCI DSS, CCPA, GDPR, HIPAA, etc.Strong interpersonal and leadership skillsDemonstrated ability to analyze and resolve problemsDemonstrated ability to lead programs / projectsStrong documentation and planning skills. Established project management skillsAbility to analyze and interpret data protection metrics and reports to identify trends and potential issues
Additional Information
Experience in geographies like North America, EU, UK, Japan and Middle East will be good to have. Employment Type: Full Time, Permanent
Read full job description
All Filters
Unlock 
