46 Data Protection Jobs

Can send in application to apeksha.patil@kyndryl.com Interested candidate please apply on the following link: https://kyndryl.wd5.myworkdayjobs.com/KyndrylProfessionalCareers/job/Bangalore-Karnataka-India/SSO-Lead_R-26698-1 Work location will be Bangalore Airport Job Description: SSO Lead - Backup (IBM Spectrum Protect / TSM) Job Title: SSO Lead - Backup & Data Protection (IBM Spectrum Protect / TSM) Location: [Bangalore/hybrid] Reports To: Head of Infrastructure / Shared Services Manager Job Summary: The SSO Lead for Backup & Data Protection is a highly experienced and technically proficient individual responsible for the strategic direction, design, implementation, and operational excellence of the organization's enterprise backup and recovery infrastructure, with a primary focus on IBM Spectrum Protect (formerly TSM). This role leads a team of backup administrators/engineers, ensuring the availability, integrity, and recoverability of critical data across diverse environments. The Lead will drive automation, optimize processes, ensure compliance with RPO/RTO objectives, and serve as a subject matter expert for all backup and disaster recovery initiatives. Key Responsibilities: Strategic Leadership & Architecture: Develop and execute the long-term strategy for enterprise backup and data protection, leveraging IBM Spectrum Protect/TSM and related technologies. Design, architect, and implement robust, scalable, and cost-effective backup and recovery solutions that align with business requirements and industry best practices. Evaluate new backup technologies and solutions, providing recommendations for adoption and integration. Contribute to the overall IT infrastructure strategy, ensuring backup solutions integrate seamlessly with other systems. Team Leadership & Management: Lead, mentor, and develop a team of backup administrators/engineers, fostering a culture of continuous improvement and technical excellence. Assign tasks, manage workloads, and ensure efficient utilization of team resources. Conduct performance reviews, provide constructive feedback, and identify training needs for team members. IBM Spectrum Protect (TSM) Expertise & Operations: Serve as the highest escalation point for complex issues, performance bottlenecks, and failures within the IBM Spectrum Protect/TSM environment. Oversee the daily operation, monitoring, troubleshooting, and maintenance of all IBM Spectrum Protect servers, clients, storage pools (disk, tape, cloud), and databases (DB2). Manage and optimize backup policies, schedules, retention periods, and data deduplication strategies. Perform advanced configuration, tuning, and optimization of IBM Spectrum Protect components for optimal performance and resource utilization. Manage disaster recovery (DR) solutions for IBM Spectrum Protect itself and ensure data recoverability at DR sites. Conduct regular DR drills and validate recovery procedures. Data Recovery & Disaster Recovery: Ensure the successful and timely recovery of data and systems in the event of outages, data loss, or disaster scenarios, adhering to defined RPO and RTO objectives. Develop, maintain, and regularly test comprehensive disaster recovery plans for business-critical applications and data. Lead complex data restoration efforts and provide expert guidance during critical incidents. Automation & Process Improvement: Identify opportunities for automation of backup and recovery tasks using scripting (e.g., shell, Python, PowerShell) and IBM Spectrum Protect's automation capabilities. Develop and implement standard operating procedures (SOPs), best practices, and runbooks for backup operations. Drive continuous improvement initiatives to enhance backup efficiency, reliability, and security. Compliance & Reporting: Ensure backup solutions comply with internal policies, regulatory requirements (e.g., data privacy, audit trails), and industry standards. Develop and present comprehensive reports on backup success rates, storage utilization, capacity planning, and recovery readiness to management. Manage backup audit trails and provide necessary documentation for internal and external audits. Vendor Management & Collaboration: Work closely with IBM and other vendors for support, product enhancements, and licensing. Collaborate with other IT teams (e.g., Server, Network, Database, Application, Security) to ensure seamless integration and support for backup requirements. Required Skills and Qualifications: Education: Bachelor's degree in Computer Science, Information Technology, or a related field. Experience: 10+ years of progressive experience in IT infrastructure, with a strong focus on enterprise backup and recovery. Minimum of 5+ years of hands-on, expert-level experience with IBM Spectrum Protect (TSM), including design, implementation, administration, and troubleshooting in large, complex environments. At least 3+ years in a lead or senior technical role, with experience leading or mentoring a team. Technical Expertise (Mandatory): IBM Spectrum Protect (TSM): Deep expertise in IBM Spectrum Protect Server installation, configuration, administration, and troubleshooting (multi-server environments, clustered setups). Profound knowledge of IBM Spectrum Protect client management across various operating systems (Windows, Linux, AIX, Solaris). Expertise in managing storage pools (disk, tape libraries - including virtual tape libraries/VTLs, cloud containers), device classes, and data movement. Strong understanding of IBM Spectrum Protect database (DB2) management, backup, and recovery. Proficiency with IBM Spectrum Protect Operations Center and command-line administration. Experience with advanced features like node replication, data deduplication (client-side and server-side), compression, and encryption. Knowledge of IBM Spectrum Protect for Virtual Environments (VMware, Hyper-V), Databases (Oracle, SQL Server), Applications (Exchange, SAP), and NAS/File Systems. Operating Systems: Strong proficiency in Windows Server and various Linux/Unix distributions (e.g., RHEL, AIX). Networking: Solid understanding of TCP/IP, SAN (Storage Area Network) concepts, Fibre Channel, iSCSI, and network security. Storage Concepts: In-depth knowledge of storage technologies, including NAS, SAN, DAS, RAID, and object storage. Scripting: Proficiency in scripting languages (e.g., Python, PowerShell, Shell scripting) for automation and reporting related to backup. Database Fundamentals: Basic to intermediate knowledge of relational databases (e.g., SQL, Oracle) to understand application backup requirements. Disaster Recovery: Proven experience in designing, implementing, and testing DR strategies. Certifications (Preferred): IBM Certified Administrator - Spectrum Protect (V8.1 or higher) IBM Certified Deployment Professional - Spectrum Protect Other relevant certifications (e.g., ITIL, other backup technologies, cloud certifications like AWS/Azure storage). Soft Skills: Leadership & Mentoring: Proven ability to lead, motivate, and develop technical teams. Problem-Solving: Exceptional analytical and troubleshooting skills, with a methodical approach to complex issues. Communication: Excellent verbal and written communication skills to interact with technical teams, management, and business stakeholders. Ability to articulate complex technical concepts clearly. Ownership & Accountability: High degree of ownership, proactiveness, and accountability for critical systems. Strategic Thinking: Ability to think strategically and translate business needs into technical solutions. Adaptability: Ability to thrive in a fast-paced, dynamic environment and adapt to new technologies quickly. Collaboration: Strong interpersonal skills and ability to collaborate effectively across diverse teams. Attention to Detail: Meticulous attention to detail in configuration, monitoring, and documentation.

Job Description: Job Title: Project Manager. Experience: 10+ Years. Job Type: 12 month contract and extendable. Job Location: Offshore (Remote) Mandatory skills: Have over 10+ years of rich experience in data protection, information security domain and Project Management. Experience of managing enterprise Data Protection projects and of direct and in-direct relationship with senior and executive management. Familiarity with advanced Data Privacy and Protection technologies, risk, threat and vulnerability assessments, and security measures. Strong experience and knowledge across the Data Protection and Information Security domains including technical measures, policy procedures, compliance management, risk management and Incident Response etc. Extensive knowledge of data protection solutions and technologies for Data Loss and leakage Prevention (DLP). Experience implementing and managing (DLP) solutions. Strong experience in Banking environment with strong understanding on key data protection regulations and standards such as ISO 27001, NIST CSF, GDPR etc. Skills and Application: Leads the development and implementation of comprehensive Data Protection strategies that address identified risks and compliance requirements, incorporating advanced technologies and methodologies to enhance security posture. Manages cross-functional teams to execute Data Protection initiatives, ensuring that projects are completed on time, within budget, and achieve desired outcomes. Strategic Insight: Integrates Data Protection and Information Security considerations into broader banks strategies, recognizing the importance of Data Protection in achieving business objectives and competitive advantage. Communicates the strategic value of Data Protection and Information Security investments to executive leadership and key stakeholders, advocating for resources and support to strengthen the organization's capabilities. Cultivates an organizational culture that prioritizes Data Protection, encouraging proactive security practices and continuous improvement across all departments. Strong interpersonal, analytical, and technical skills with strong decision making and prioritization skills. Sound knowledge of evolving advanced tech stacks and related control and risk universe from a data protection perspective. Sound knowledge and expertise in conducting risk assessment and management. The ideal candidate will have a degree in Information Security, Computer Science, or a related field. Professional certifications: CISSP, PMP, CCSP, CompTIA Security+, CIPT , CISM etc

5 years prior professional experience of data protection either in a risk management or compliance capacity Appreciation for data protection principles and application of controls to protection of confidential and personal data Experience in operational data protection processes, including Privacy Impact Assessment (PIA), Records of Processing Activities (ROPA), Incident Management and Data Subject Requests (DSR)

Job Responsibilities: This role encompasses both leadership and operation components. The candidate will be working with the Indian Compliance colleagues on the operation level while leading the Indian Compliance practice and is also part of the Compliance function in the Asia Pacific (APAC) region. The primary responsibility is vested in India and to ensure that all activities conducted by Apex Indian practices adhere to local regulatory and statutory requirements, as well as complying with Apex Groups policies. Indian Compliance is also our regional support hub providing compliance reporting and coordination support to the Compliance teams in APAC. Insofar as the local compliance coverage is concerned, this will normally include tasks such as drafting, updating & implementing compliance policies, programme and procedures and the monitoring thereof, conduct monitoring and testing of the business operations on regular basis, completing internal and external compliance reports, and fostering compliance awareness throughout the organization in alignment with Apexs global standards and principles. General rresponsibilities include, but are not limited to performing and coordinating a variety of compliance duties and tasks including: Ensure that Apex Indian practices are fully compliant with relevant laws and regulations. Support management and Business in managing regulatory risks, including AML and terrorist financing. Advise on AML & CDD due diligence, PEP, and sanction checks for client and investor files and related matters as well as FATCA, CRS queries from the operation teams. Conduct local regulatory analysis and assess & advise on the impact and implications of the proposed legislative and regulatory changes in relation to Apexs practices. Regular review of and update the Apex Indian Compliance Monitoring Programme and controls to ensure they stay current and align with existing statutory and regulatory obligations, requirements and development. This includes monitoring their effectiveness and enhancing controls and procedures as needed. Implement and/or follow up on the recommendations made by internal or external audits and/or the regulators, regarding compliance risks/issues and the remediations thereafter, if any. Act as the designated Money Laundering Reporting Officer and Data Protection Officer for Apex India as appropriate. Be the main point of contact with the local regulatory bodies and financial intelligence units. Report suspicious activity to regulatory authorities in consultation with the Regional Compliance Leadership. Maintain and refresh local compliance procedures such as SAR/STR, complaints handling procedures etc., and ensure that other local policies and procedures are established and followed accordingly. Keep abreast of local legal and regulatory requirements and ensure adequate local compliance awareness and training, in line with Apexs Groups and current legal and regulatory requirements. Support the Board, Local and Group Compliance Reporting as appropriate. Act and be recognized as a leader in effectively and efficiently managing the Indian Compliance team and while delivering the Indian compliance support while managing stakeholders with maturity and leadership whereas escalate relevant and appropriate matters to Regional Compliance Leadership as appropriate. Attend to other tasks & project as assigned. Regional Tasks : Work together with the Indian Compliance team to render compliance reporting support to other APAC jurisdictions and attending to other regional tasks as appropriate. Assist in implementing and enforcing the Apex Group Compliance framework and requirements in APAC and work with stakeholders regionally and globally on relevant matters. Communicating and coordinating with other Compliance professionals in the APAC region on various tasks in effective and efficient manner. Identify workflow and logistic improvement opportunities. R equ ir e m en t s : 10+ years solid experience in Compliance with reference to Apex Indian businesses. Recognized compliance qualification (or equivalent) is preferred. ACAMS certification and/or other professional compliance qualification would be an added advantage. Having solid experience dealing with regulators like SIBI and FBI would be advantageous. Fluency in both written and spoken English with strong communication skills would be essential. This role requires day to day communication with English speakers and ppossessing excellent communication efficiency and skill to effectively communicate, engage, and establish relationships both internally within the organization and externally with stakeholders will be a key success factor. In-depth understanding of financial services regulation and AML guidelines and preferably relevant to Apexs businesses. Reliable, adaptable, motivated, and driven with an ability to work under pressure to meet tight deadlines. Proactive achiever who can drive achievements and results. Organized and self-disciplined. Energetic with excellent problem-solving skills and can also think out of the box in terms of routine and non-routine tasks and issues. Organizational and prioritization skills are essential. Ability to work independently as well as working as a team member. Also able to guide and supervise junior. Strong PC skills. What you will get in return : A genuinely unique opportunity to be part of a fast-growing large global business. Room to grow for Head Compliance role. Competitive remuneration commensurate with skills and experience. Training and development opportunities.

Walk-in For Freshers - B.Tech (trained Cybersecurity candidates only) Experience Candidates : 2yrs to 5yrs who has worked on the below . Looking for candidates who has done cybersecurity course : Information Security Analyst , Cybersecurity questionnaire , MSA review , Data Protection Agreement, Third-party risk assessment, Vendor risk management , Security compliance , GRC analyst , Contract security review, Security documentation , Risk and compliance analyst Walk-In date: 23rd Jun'25 Designation : IT Contracts Analyst Location : Hyderabad Work mode : Work from office (Hyderabad) Interested candidates We are seeking a detail-oriented, technologically proficient IT Contracts Analyst to join our dynamic Legal and Procurement team, working closely with the Information Security function. In this role, you will be responsible for reviewing, analyzing, and managing a wide range of IT-related contracts, including compliance requirements, service agreements, SaaS/cloud agreements, NDAs, and vendor contracts. This position plays a key role in supporting risk management, legal compliance, and alignment with our internal IT and security policies. Role & responsibilities : Review and analyze IT contracts and SLAs to ensure compliance with internal policies, legal standards, and information security requirements. Collaborate cross-functionally with Legal, IT Security, and Procurement teams to review, negotiate, and finalize contract terms. Identify and highlight any InfoSec-related gaps, non-compliances, or risks in contractual terms. Track and manage the full lifecycle of IT contracts, ensuring timely renewals, amendments, and terminations. Identify key clauses, compliance gaps, risks, and client-specific requirements, aligning them with internal IT and security policies. Maintain a structured repository of all contracts, amendments, and associated documentation using contract management tools. Conduct risk assessments, perform compliance checks, identify critical clauses, and prepare concise contract summaries and reports. Remain current with industry trends, regulatory changes (e.g. data protection laws such as GDPR and CCPA), and best practices in IT contracting. Support the continuous improvement of contract review processes and contribute to internal documentation and policy alignment. Preferred candidate profile Looking for candidates who has worked on Information Security Analyst , Cybersecurity questionnaire , MSA review , Data Protection Agreement, Third-party risk assessment, Vendor risk management , Security compliance , GRC analyst , Contract security review, Security documentation , Risk and compliance analyst Strong analytical skills with a keen eye for detail and the ability to interpret complex legal and technical terms. Technologically proficient, with a solid understanding of IT terminology, particularly relating to SaaS, cloud services, cyber security, and data privacy. Proactive, well-organized, and capable of managing multiple contracts and priorities in a fast-paced environment. Excellent written and verbal communication skills, with experience collaborating across departments. Qualifications: Bachelors degree in Business Law, Information Technology, or a related field (technical certifications are a plus). 2+ years of experience reviewing and managing IT/Technology contracts, ideally within a legal, procurement, or corporate compliance environment. Solid understanding of IT contracting concepts, including SLAs, SaaS agreements, and third-party vendor risk. Working knowledge of data protection regulations (e.g. GDPR, CCPA) and their implications in IT contracting. Familiarity with contract lifecycle management tools (e.g. DocuSign, Icertis, Jira, or AI-based review tools). Proficiency in Microsoft Excel, PowerPoint, and other documentation tools. Ability to work both independently and collaboratively across legal, IT, and procurement functions.

Position Purpose Located within the RISK Function of BNP Paribas (BNPP), the role of the Data Protection Correspondent (DPC) is to ensure that the components of the operational risk management framework are implemented and operating effectively within ISPL, and to provide RISK ORM management and Business senior management with relevant, synthetic, transparent, exhaustive and consistent information and a front-to-back view of operational risk across ISPL activities. To achieve this objective, this 2nd line of defense (LOD2) role works closely with RISK ORM Regional and Central teams and with ISPL management and stakeholders. The DPC provides expertise on personal data protection related topics in accordance with the relevant RACI. India DPC must assist India Data Protection Officer (DPO) in supervising the compliance of projects and with legal and regulatory personal data protection requirements throughout the APAC region as well as the Groups and APAC personal data protection policies. RISK ORM ISPL mandate is to independently challenge and supervise the operational risk management framework of ISPL activities as described in level 2 procedure Organizational framework and governance for Operational Risk Management & Permanent Control Framework. This includes control framework adequacy checks, independent challenge, proximity with the business and contribution to the sign-off process on key decisions. The DPC is to ensure second level controls by providing the required supervision and assistance to the 1st Line of Defense Due to the global and regional models applied by the BNP Paribas (BNPP) activities outsourced to ISPL, the role covers the contribution as well to reviews, control testing, analysis and reports carried out under the supervision of the APAC DPO Regional teams. Responsibilities Direct Responsibilities To contribute to relevant personal data protection activities realization To guarantee required norms and methods definition and application to a companys good data protection risks apprehension (follow-up of projects, information systems adaptation, declarations conception and maintenance, subcontractors contracts analysis, follow-up on control plans reporting, etc.) To guarantee advice and assistance to strategical program ongoing. To support the implementation of the privacy strategy defined by DPO To assist the DPO in the supervision and monitoring of implementation of the Group's Data Protection policies and guidelines, bearing the local regulatory requirements in mind, to ensure consistency To define action plans and corrections related, and to ensure application of the same To alert DPO when activity is under operational risk (non-appropriateness between needs and resources, etc.), to propose correction solutions and to implement those solutions To contribute to continuous efficiency improvement and to any optimization process. To contribute to operational collaborative activities To support and assist APAC DPO team for control campaigns, typical DPO and RISK ORM activities in BAU (e.g. RCSA check & challenge, data breach assessments, project and third-party risk assessment support see below), but also in case of emergencies and escalated issues To contribute to permanent control actions To contribute to perform LOD2 controls and challenge LOD1 To contribute to perform the check and challenge of the RCSA To contribute to RISK ID exercise To contribute to OR&C report To ensure professional network development To participate in local Data Protection Committees when requested by the DPO To contribute to Internal Control Committee To collaborate with local CROs and RISK teams Contributing Responsibilities To assist the DPO on exchanges with the authorities in charge of the protection of personal data under the responsibility of the DPO To assist the DPO in the supervision and implementation of Privacy by Design principles throughout the lifecycle of all projects, activities, products, services, processes and systems To contribute to role development by validating data protection requirements for new activities, new products, services or specific operations, and to carry technical assistance To receive, process and advise internal and external local solicitations about data protection To receive, process and advise requests from data subjects, subcontractors and partners etc. To itemize existing processes and identify breaches regarding data protection requirements using your broad knowledge on APAC-wide local regulation (at minimum: Indias new DPDPA & GDPR requirements To contribute to perform risk assessment on personal data breaches To assist the DPO in monitoring documentation, e.g. the RoPA (Register of Processing Activities) To contribute to the identification and notification process for data protection violations according to defined procedures and local legal requirements To realize effectiveness for data protection controls and to ensure expected reporting To ensure regular reporting to DPO about the activity To contribute to the creation and implementation of awareness programs and to the promotion of a culture of protection of personal data within the scope of responsibility. * DPO may refer to India DPO or APAC DPO or Business Line DPO as the case may be reflecting a matrix organization while maintaining a direct reporting to the India DPO Technical & Behavioral Competencies Knowledge (Required to exercise the position) Level * To know standards and norms about data protection 1 Know-how (implementation of technics, methods, tools to achieve activities) Level * Technics To know how to assess maturity level of the existing facility about Data Privacy 1 Transverse To have a professional face-to-face or phone discussion with an overseas colleague 1 To prioritize 1 To efficiently manage several topics at the same time 1 To issue advice / recommendation considering every parameter 1 To have an efficient speaking communication 1 Tools To work with BNP Paribas tools (e.g. Data Protection Hub, RISK360) 2 Behavioral and soft skills To efficiently multi-task with topics and maintain attention to detail / rigor 1 To issue advice / recommendation considering all parameters 1 To have efficient communication skills (oral & written) 1 To conceptualize / formalize an idea, a process or a project 2 To work as a team / transversally 1 To identify and analyse risks for the activities that are handled 1 To assess, issue an opinion 1 To deploy a strategy and to define an action plan 2 To animate resources and coordinate their intervention 1 To show diplomacy to allow a message to be heard 1 To show conviction, to generate interlocutors acceptance 1 Being able to anticipate and come up with ideas 2 Creativity and innovation 2 To show discretion about delicate and / or confidential topics 1 Ability to manage conflict 2 To integrate multicultural dimension 1 * Level: Level 1: Deep Level 2: Intermediary Level 3: Basic Specific Qualifications Legal background with IAPP Certification (CIPP/E) or equivalent Skills Referential Behavioural Skills : (Please select up to 4 skills) Communication skills - oral & written Attention to detail / rigor Creativity & Innovation / Problem solving Client focused Transversal Skills: (Please select up to 5 skills) Analytical Ability Ability to develop and leverage networks Ability to develop and adapt a process Ability to understand, explain and support change Ability to set up relevant performance indicators Education Level: Bachelor Degree or equivalent Experience Level At least 5 years Other/Specific Qualifications (if required) Business Skills 1. Data Protection 2. Risk knowledge and awareness 3. Risk anticipation 4. Data quality & Security 5. Regulatory 6. Business analytics 7. New Technologies and Digital Law [IT/IP] 8. IT risk and cyber security .

Key Responsibilities Develop, test, and maintain robust server-side applications and APIs. Design and optimize database schemas and queries (SQL/NoSQL). Implement security and data protection measures. Collaborate with front-end developers to integrate user-facing elements with server logic. Troubleshoot, debug, and improve existing backend codebases. Write clean, maintainable, and well-documented code. Ensure high performance and responsiveness to requests from front-end. Participate in code reviews and team discussions. Stay updated with emerging technologies and industry trends.

Designation : IT Contracts Analyst Location : Hyderabad Work mode : Work from office (Hyderabad) Looking for candidates who has worked on Information Security Analyst , Cybersecurity questionnaire , MSA review , Data Protection Agreement, Third-party risk assessment, Vendor risk management , Security compliance , GRC analyst , Contract security review, Security documentation , Risk and compliance analyst Interested candidates with relevant experience only share us your updated resume on ashwin.kumar@globaldata.com We are seeking a detail-oriented, technologically proficient IT Contracts Analyst to join our dynamic Legal and Procurement team, working closely with the Information Security function. In this role, you will be responsible for reviewing, analyzing, and managing a wide range of IT-related contracts, including compliance requirements, service agreements, SaaS/cloud agreements, NDAs, and vendor contracts. This position plays a key role in supporting risk management, legal compliance, and alignment with our internal IT and security policies. Role & responsibilities : Review and analyze IT contracts and SLAs to ensure compliance with internal policies, legal standards, and information security requirements. Collaborate cross-functionally with Legal, IT Security, and Procurement teams to review, negotiate, and finalize contract terms. Identify and highlight any InfoSec-related gaps, non-compliances, or risks in contractual terms. Track and manage the full lifecycle of IT contracts, ensuring timely renewals, amendments, and terminations. Identify key clauses, compliance gaps, risks, and client-specific requirements, aligning them with internal IT and security policies. Maintain a structured repository of all contracts, amendments, and associated documentation using contract management tools. Conduct risk assessments, perform compliance checks, identify critical clauses, and prepare concise contract summaries and reports. Remain current with industry trends, regulatory changes (e.g. data protection laws such as GDPR and CCPA), and best practices in IT contracting. Support the continuous improvement of contract review processes and contribute to internal documentation and policy alignment. Preferred candidate profile Looking for candidates who has worked on Information Security Analyst , Cybersecurity questionnaire , MSA review , Data Protection Agreement, Third-party risk assessment, Vendor risk management , Security compliance , GRC analyst , Contract security review, Security documentation , Risk and compliance analyst Strong analytical skills with a keen eye for detail and the ability to interpret complex legal and technical terms. Technologically proficient, with a solid understanding of IT terminology, particularly relating to SaaS, cloud services, cyber security, and data privacy. Proactive, well-organized, and capable of managing multiple contracts and priorities in a fast-paced environment. Excellent written and verbal communication skills, with experience collaborating across departments. Qualifications: Bachelors degree in Business Law, Information Technology, or a related field (technical certifications are a plus). 2+ years of experience reviewing and managing IT/Technology contracts, ideally within a legal, procurement, or corporate compliance environment. Solid understanding of IT contracting concepts, including SLAs, SaaS agreements, and third-party vendor risk. Working knowledge of data protection regulations (e.g. GDPR, CCPA) and their implications in IT contracting. Familiarity with contract lifecycle management tools (e.g. DocuSign, Icertis, Jira, or AI-based review tools). Proficiency in Microsoft Excel, PowerPoint, and other documentation tools. Ability to work both independently and collaboratively across legal, IT, and procurement functions.

The role of an Information Security Officer (ISO) is of a role holder aligned to a portfolio of applications (Application ISO). The ISO has the responsibility for the operational aspects of ensuring compliance with the Information Security Principles. The ISO is the primary contact for information security relevant matters within their area of responsibility. SOD manager must implement Segregation of Duty (SoD) rules for the assigned IT assets and to manage violations of SoD. The ISO and SOD manager have a disciplinary reporting line into their Line Manager and a functional reporting line into the Divisional CISO. Your key responsibilities To assume the ownership and responsibility for the assigned IT assets, in line with the DB Group Information Security management processes and the Divisional ISMS. To support the development and maintenance of Information Security policies and procedures pertaining to the Unit in accordance with the Information Security policies and procedures of DB Group. To support the management of IS Risks within the Risk Appetite defined by the ISR. To execute the IS Risk assessments and compliance evaluations for assigned IT assets To ensure the execution of information security risk management requirements in their area of responsibility as additionally defined by the Divisional ISO (e.g., conducting risk assessments on an organizational basis, preparing and implementing management action plans to mitigate identified risks) To ensure the implementation of Identity and Access Management Processes and the execution of a periodic recertification of User Access Rights in their area of responsibility To provide timely updates to the Divisional ISO regarding the aforementioned information security management tasks To ensure that application entries regarding information security (e.g., Data Protection and Data Privacy fields) in the Groups inventory of applications are accurate and up to date To implement Segregation of Duty (SoD) rules for the assigned IT assets To contribute to the Information Security incident management process in the case of a security breach Keep oneself informed of the Information Security Principles and its subordinate documents and liaise with any other necessary parties to accomplish their tasks. These resources may be e.g., the TISO, ITAO or any other subject matter experts To ensure appropriate documentation of information security risk management in area of responsibility. This includes major decisions including identified and assessed risks as well as risk mitigation measures To deliver all items requested during regulatory and internal Information Security related audits Your skills and experience Essential Candidate should have a minimum of 8 years of business experience in an operation management / risk management capacity, working knowledge in various banking products with strong communications skills Knowledge on Information Security Controls, Data Protection Policy, Information classification principles and segregation of duties requirements within Banking Operations Good understanding of Regulatory, Compliance, Risk & Control Knowledge Have sound knowledge of Identity and Access Management Process Ability to multitask and manage multiple deliverables / projects that are highly visible and of strategic importance to our clients Ability to effectively communicate with clients internally and externally Must be a team player and facilitator Desirable Solid technical understanding of the business (CB Operations) including strong knowledge of application security related processes. Knowledge of electronic banking products and flow of instructions Computer proficiency in MS Office and ability to utilize IT initiatives to achieve a high degree of operational efficiency, optimize costs and add value to the service provided Innovative approach to work and continuously identify and implement process improvements Seek opportunities to improve service processes, minimize operational risk and reduce costs Strong analytical skills, detail orientation, service commitment and solid people management skills Strong awareness of risk control Education / Certification Graduation degree CRISC Desired: CISA/CISM/CISSP

3-5 yrs of experience in IS GRC focusing on regulatory compliance. Understanding of security standards and frameworks (E.g. ISO 27001, NIST CSF, PCI DSS, SOX 404, SOC2, NIS2 and PCI DSS. Knowledge of Python PySpark or SparkSQL is an added advantage.

Key expectations from the role: To maintain a comprehensive database of all statutory compliances and licenses for Aster DM healthcare operations in India To ensure that all compliance requirements for units are updated in the AVACOM (system) and track them for completion on a timely basis Research and stay updated of specific licensing and statutory compliance requirements for various legal specializations within the organization. Develop, implement, and manage a robust compliance program that encompasses all our hospitals and departments in India, aligned with relevant Indian regulations and best practices. Regular follow up with stakeholders on the compliance closure (adherence) to ensure that these are done on a timely basis. Conduct regular compliance risk assessments to identify and mitigate potential areas of non-compliance, including but not limited to: o Medical Council of India (MCI) regulations, National Pharmaceutical Pricing Authority (NPPA) regulations o Clinical Establishment (Registration and Regulation) Act, 2010 (CE Act), Bio-Medical Waste Management Rules, 2016 o Data Protection in Healthcare (consideration of upcoming regulations), o Other relevant Indian laws and regulations (e.g. HR, CS, GST, IT etc.) Develop and deliver effective compliance training programs for all employees, including physicians, nurses, administrative staff, and allied healthcare professionals, ensuring clear understanding of Indian healthcare regulations and ethical conduct. Investigate and resolve any potential compliance issues or concerns raised by internal or external stakeholders, and ensure appropriate corrective action is taken. Any non-compliances identified as part of any of the audit, shall be followed up for timely remediation. Provide ongoing guidance and support to hospital leadership and staff on all compliance matters in India. Qualification and Experience Masters in healthcare administration, Business Administration, or any other Professional course or a related field (masters degree preferred). A bachelors degree in law would be an added advantage. Desirable Experience - Minimum of 3- 5 years of related exposure in the Indian healthcare industry. In-depth knowledge of Indian laws (specific focus on health care related requirements), including those mentioned in the responsibilities section. Proven experience in developing, implementing, and managing a comprehensive compliance program in an Indian healthcare setting. Excellent communication, interpersonal, and leadership skills with the ability to influence and guide diverse stakeholders. Strong analytical and problem-solving abilities with a focus on finding practical solutions within the Indian regulatory landscape. Ability to work independently, manage multiple priorities effectively, and meet deadlines. Excellent attention to detail and a commitment to accuracy in all compliance-related matters. Fluency in English (both written and spoken) with understanding of Malayalam is a must for this role.

Role Description: You will play a key role in the implementation and adoption of the data governance framework which will modernize Amgen's data ecosystem, positioning Amgen as a leader in biopharma innovation. This role leverages state-of-the-art technologies, including Generative AI, Machine Learning, and integrated data. You will leverage domain, technical and business process expertise to provide exceptional support of Amgens data governance framework. This role involves working closely with business stakeholders and data analysts to ensure implementation and adoption of the data governance framework. You will collaborate with the Product Owner and other Business Analysts to ensure operational support and excellence from the team. Roles & Responsibilities: Responsible for the data governance and data management framework implementation for the Development domain of the biopharma lifecycle. Responsible for the operationalization of the Enterprise data governance framework and aligning broader stakeholder community with their data governance needs, including data quality, data access controls, compliance with privacy and security regulations, foundational master data management, data sharing, communication and change management. Works with Enterprise MDM and Reference Data to enforce standards and data reusability. Drives cross functional alignment in his/her domain(s) of expertise to ensure adherence to Data Governance principles. Maintain documentation on data definitions, data standards, data flows, legacy data structures / hierarchies, common data models, data harmonization etc. for assigned domains. Ensure compliance requirements with data privacy, security, and regulatory policies for the assigned domains Jointly with Technology teams, business functions, and enterprise teams (e.g., MDM, Enterprise Data Fabric, etc.) define the specifications shaping the development and implementation of data foundations. Build strong relationships with key business leads and partners to ensure their needs are being met Functional Skills: Must-Have Functional Skills: Technical skills with knowledge of Pharma processes with specialization in the Development domain of the biopharma lifecycle. In depth knowledge of data management, common data models, metadata management, data quality, master data management, data stewardship, data protection, etc. In depth experience with data products development life cycle, including the enablement of data dictionaries, business glossary to increase data products reusability and data literacy. Customer-focused with excellent written and verbal communication skills who can confidently work with internal Amgen business stakeholders and external service partners on business process and technology topics In depth experience of working with or supporting systems used to data governance framework. E.g. Collibra, Alation Excellent problem-solving skills and committed attention to detail in finding solutions Good-to-Have Functional Skills: Experience of working with data governance councils or forums Experience with Agile software development methodologies (Scrum) Proficiency in data analysis and quality tools (e.g., SQL, Excel, Python, or SAS) Soft Skills: Highly organized and able to work under minimal supervision Excellent analytical and assessment skills Ability to work effectively with global, virtual teams Ability to manage multiple priorities successfully Team-oriented, with a focus on achieving team goals Ambitious to further develop their skills and career Ability to build business relationships and understand end-to-end data use and needs. Excellent interpersonal skills (team player). People management skills either in matrix or direct line function. Strong verbal and written communication skills High degree of initiative and self-motivation. Good presentation and public speaking skills. Strong attention to detail, quality, time management and customer focus. Basic Qualifications: Any Degree and 9-13 years of experience

What You'll Do You will further develop our privacy governance that aligns with domestic and international regulations. The manager will conduct regular privacy risk assessments and manage privacy impact assessments across the company. Main responsibilities include the delivery of training programs aimed at promoting a strong culture of data protection awareness amongst employees. By advocating for privacy by design principles and practices, the Privacy Compliance Manager will ensure Avalara upholds the highest standards of data protection to improve our compliance posture and build trust with partners. What Your Responsibilities Will Be Conduct privacy compliance activities, including working with data owners and stewards on creating privacy impact assessments, records of processing activities, data protection impact assessments, and privacy gap analyses Identify gaps in internal privacy compliance and documentation; report on related metrics Work with partners such as Legal, Risk, Security, Product and Engineering to ensure processes are in place to manage evolving privacy obligations, including the management of data subject access requests As an important member of Avalara's Global Privacy Office, facilitate and manage process tracking Help implement Privacy by Design principals into product development Champion privacy awareness across the company through developing training on privacy policies, procedures and global regulations Keep up to date with new technologies and regulatory changes, advising the Privacy Office and senior management on privacy trends and compliance strategies Support projects to address global privacy obligations across multiple teams Manage privacy related inquiries from all partners Track, investigate, and help respond to privacy/security incidents What You'll Need to be Successful You have 5+ years experience managing privacy programs You have a completed Bachelor's degree You enjoy using your knowledge of GDPR, CCPA\" DPDPA and LGPD You have some experience with BigID, OneTrust and ServiceNow. You are experienced in translating legal or contractual requirements to technical controls You have some professional experience participating in audits such as SOC and ISO You are certified in CISSP or CIPP

You will play a key role in the implementation and adoption of the data governance framework which will modernize Amgen's data ecosystem, positioning Amgen as a leader in biopharma innovation. This role leverages state-of-the-art technologies, including Generative AI, Machine Learning, and integrated data. You will leverage domain, technical and business process expertise to provide exceptional support of Amgens data governance framework. This role involves working closely with business stakeholders and data analysts to ensure implementation and adoption of the data governance framework. You will collaborate with the Product Owner and other Business Analysts to ensure operational support and excellence from the team. Roles & Responsibilities: Responsible for the data governance and data management framework implementation for the Research domain of the biopharma lifecycle. Responsible for the operationalization of the Enterprise data governance framework and aligning broader stakeholder community with their data governance needs, including data quality, data access controls, compliance with privacy and security regulations, foundational master data management, data sharing, communication and change management. Works with Enterprise MDM and Reference Data to enforce standards and data reusability. Drives cross functional alignment in his/her domain(s) of expertise to ensure adherence to Data Governance principles. Maintain documentation on data definitions, data standards, data flows, legacy data structures / hierarchies, common data models, data harmonization etc. for assigned domains. Ensure compliance requirements with data privacy, security, and regulatory policies for the assigned domains Jointly with Technology teams, business functions, and enterprise teams (e.g., MDM, Enterprise Data Fabric, etc.) define the specifications shaping the development and implementation of data foundations. Build strong relationships with key business leads and partners to ensure their needs are being met Functional Skills: Must-Have Functional Skills: Technical skills with knowledge of Pharma processes with specialization in the Research domain of the biopharma lifecycle. In depth knowledge of data management, common data models, metadata management, data quality, master data management, data stewardship, data protection, etc. In depth experience with data products development life cycle, including the enablement of data dictionaries, business glossary to increase data products reusability and data literacy. Customer-focused with excellent written and verbal communication skills who can confidently work with internal Amgen business stakeholders and external service partners on business process and technology topics In depth experience of working with or supporting systems used to data governance framework. E.g. Collibra, Alation Excellent problem-solving skills and committed attention to detail in finding solutions Good-to-Have Functional Skills: Experience of working with data governance councils or forums Experience with Agile software development methodologies (Scrum) Proficiency in data analysis and quality tools (e.g., SQL, Excel, Python, or SAS) Soft Skills: Highly organized and able to work under minimal supervision Excellent analytical and assessment skills Ability to work effectively with global, virtual teams Ability to manage multiple priorities successfully Team-oriented, with a focus on achieving team goals Ambitious to further develop their skills and career Ability to build business relationships and understand end-to-end data use and needs. Excellent interpersonal skills (team player). People management skills either in matrix or direct line function. Strong verbal and written communication skills High degree of initiative and self-motivation. Good presentation and public speaking skills. Strong attention to detail, quality, time management and customer focus. Basic Qualifications: Any Degree and 9-13 years of experience

You will play a key role in the implementation and adoption of the data governance framework which will modernize Amgen's data ecosystem, positioning Amgen as a leader in biopharma innovation. This role leverages state-of-the-art technologies, including Generative AI, Machine Learning, and integrated data. You will leverage domain, technical and business process expertise to provide exceptional support of Amgens data governance framework. This role involves working closely with business stakeholders and data analysts to ensure implementation and adoption of the data governance framework. You will collaborate with the Product Owner and other Business Analysts to ensure operational support and excellence from the team. Roles & Responsibilities: Responsible for the data governance and data management framework implementation for a given domain of expertise (Research, Development, Supply Chain, etc.). Responsible for the operationalization of the Enterprise data governance framework and aligning broader stakeholder community with their data governance needs, including data quality, data access controls, compliance with privacy and security regulations, foundational master data management, data sharing, communication and change management. Works with Enterprise MDM and Reference Data to enforce standards and data reusability. Drives cross functional alignment in his/her domain(s) of expertise to ensure adherence to Data Governance principles. Create and maintain privacy policies and procedures to protect sensitive data and ensure compliance. Conduct regular privacy risk assessments and audits to identify and mitigate potential risks as required Maintain documentation on data definitions, data standards, data flows, legacy data structures / hierarchies, common data models, data harmonization etc. for assigned domains. Ensure compliance requirements with data privacy, security, and regulatory policies for the assigned domains including GDPR, CCPA, and other relevant legislations. Jointly with Technology teams, business functions, and enterprise teams (e.g., MDM, Enterprise Data Fabric, etc.) define the specifications shaping the development and implementation of data foundations. Build strong relationships with key business leads and partners to ensure their needs are being met Functional Skills: Must-Have Functional Skills: Technical skills with knowledge of Pharma processes with specialization in a domain (e.g., Research, Clinical Trials, Commercial, etc.) In depth knowledge of data management, common data models, metadata management, data quality, master data management, data stewardship, data protection, etc. Strong understanding of data protection laws and regulations, including GDPR, CCPA, and other relevant legislations. In depth experience with data products development life cycle, including the enablement of data dictionaries, business glossary to increase data products reusability and data literacy. Customer-focused with excellent written and verbal communication skills who can confidently work with internal Amgen business stakeholders and external service partners on business process and technology topics In depth experience of working with or supporting systems used to data governance framework. E.g. Collibra, Alation Excellent problem-solving skills and committed attention to detail in finding solutions Good-to-Have Functional Skills: Experience of working with data governance councils or forums Experience with Agile software development methodologies (Scrum) Proficiency in data analysis and quality tools (e.g., SQL, Excel, Python, or SAS) 3-5 years of experience in data privacy, compliance, or a related field. Soft Skills: Integrity: Commitment to maintaining the highest ethical standards and protecting confidential information. Adaptability: Ability to adapt to changing regulations and emerging privacy challenges. Proactivity: Self-motivated with a proactive approach to identifying and addressing privacy issues. Leadership: Strong leadership skills and the ability to influence and drive change within the organization. Highly organized and able to work under minimal supervision Excellent analytical and assessment skills Ability to work effectively with global, virtual teams Ability to manage multiple priorities successfully Team-oriented, with a focus on achieving team goals Ambitious to further develop their skills and career Ability to build business relationships and understand end-to-end data use and needs. Excellent interpersonal skills (team player). People management skills either in matrix or direct line function. Strong verbal and written communication skills High degree of initiative and self-motivation. Good presentation and public speaking skills. Strong attention to detail, quality, time management and customer focus. Basic Qualifications: Any Degree and 9-13 years of experience

Skills Required : 7+ years of experience in the field of information security. Strong technical expertise in DLP and data classification methodologies Desirable Skills : Work done in AI, automations

Summary The User and Endpoint Systems (UES) Collaboration team manages several of Expeditors cloud-based collaboration technologies, including SharePoint, OneDrive, Azure DevOps, ServiceNow, Power Platform, and Microsoft Purview. As a UES Configuration Administrator, you will collaborate with our team, Cybersecurity and Data Protection groups, and other key stakeholders to ensure our data adheres to company standards. Your primary focus will be the administration and support of Microsoft Purview. You will follow the strategic framework provided by our team and stakeholders, leveraging the platform to secure our cloud data through the creation and deployment of sensitivity labels and DLP policies. Additionally, you will review and address any incidents and alerts that arise from these policies. You need to be constantly on the lookout for opportunities to improve our Infrastructure in ways that support development team autonomy. You take pride in your excellent customer service. You work well in a team environment and know how to bring out the best in your colleagues. Key Responsibilities Create and deploy Data Loss Prevention (DLP) policies using Microsoft Purview. Develop and manage sensitivity labels to protect sensitive information. Review and address incidents and alerts generated by DLP policies and sensitivity labels. Monitor system performance and troubleshoot issues to ensure optimal functionality. Collaborate with stakeholders to understand data protection requirements and implement appropriate policies. Maintain and update internal technical documentation. Provide training and support to end-users on DLP policies and sensitivity labels. Participate in IT projects related to Microsoft Purview and other collaboration technologies. Ensure compliance with data protection regulations and best practices. Qualifications Minimum Qualifications 6 to 10+ years of experience in the relevant technologies / skillset mentioned below. Experience in IT administration, specifically with Microsoft Purview or similar data protection platforms. Proven experience in creating and managing DLP policies and sensitivity labels. Strong understanding of data protection regulations and best practices. Excellent analytical skills that demonstrate expertise with break/fix issues and opportunities for proactive improvements. Proven interpersonal skills and the ability to communicate effectively with a wide spectrum of people. Assertive personality, including outcome driven leadership, bias for action and a strong self-starter. Desired Qualifications Experience with other Microsoft 365 compliance tools and technologies. Familiarity with scripting languages such as PowerShell. Relevant certifications in Microsoft Purview or data protection. Experience in a similar role within a large enterprise environment. Knowledge of Azure and M365 cloud-based services and platforms. Reporting Structure Team Manager, Information Services.

Role & responsibilities Product Strategy & Roadmap: Develop and maintain a compelling, customer-centric product roadmap that aligns with strategic business goals and customer needs. Customer and Market Insights: Conduct detailed market analysis, competitive assessments, and customer feedback reviews to drive product innovation and positioning. Cross-Functional Collaboration: Collaborate effectively with engineering, product marketing, sales, and support teams globally to ensure successful product execution and market introduction. Requirement Definition: Develop clear and detailed product requirements, user stories, and specifications, ensuring alignment between customer requirements and technical feasibility. Go-to-Market Execution: Partner with product marketing and sales teams to craft and execute effective launch strategies and materials, ensuring successful adoption and revenue growth. Performance Analysis: Continuously track product performance, revenue, customer adoption, and satisfaction metrics to inform roadmap adjustments and ongoing improvements. Preferred candidate profile Bachelors degree in Engineering, Computer Science, Business, or related field; MBA preferred. 5+ years of proven product management experience in the data storage, backup, or enterprise IT industry. Strong understanding of backup, deduplication technologies, and enterprise storage ecosystems. Exceptional communication and presentation skills, with demonstrated experience engaging global stakeholders. Proven analytical and strategic thinking skills, capable of translating market data into actionable product insights and strategies. Experience working with globally distributed teams, particularly collaborating effectively with stakeholders based in the U.S. Desired Skills Prior experience managing enterprise backup or deduplication products. Technical depth and familiarity with storage infrastructure and software-defined storage architectures. Strong customer orientation with a track record of effectively representing the voice of the customer within product decisions. If you're passionate about product leadership, customer success, and cutting-edge enterprise technologies, we welcome you to apply and lead Quantum DXi into its next stage of growth.

A subject matter expert in Data Protection laws and having good experience in handling Data Privacy matters. Have experience in conducting DPIA/PIA for a Global Company. Have extensive experience and knowledge of data privacy matters including GDPR. Experience in Middle East countries would be preferred but is not necessary. Have a good understanding of emerging technologies such as cloud computing, RPA, AI etc. Excellent interpersonal skills with the ability to effectively communicate with Business stakeholders.

ABOUT THE ROLE Role Description: You will play a key role in the implementation and adoption of the data governance framework which will modernize Amgen's data ecosystem, positioning Amgen as a leader in biopharma innovation. This role leverages state-of-the-art technologies, including Generative AI, Machine Learning, and integrated data . This role involves working closely with business stakeholder and data analysts to ensure implementation and adoption of the data governance framework. You will collaborate with Data Product Owners, Data Stewards and technology teams to increase the trust and reuse of data across Amgen. Roles & Responsibilities: Responsible for the execution of data governance framework for a given domain of expertise (Research, Development, Supply Chain, etc.). Contribute to the operationalization of the Enterprise data governance framework and aligning broader stakeholder community with their data governance needs, including data quality, data access controls, compliance with privacy and security regulations, foundational master data management, data sharing, communication and change management. Works with Enterprise MDM and Reference Data to enforce standards and data reusability. Contribute to the cross functional alignment in his/her domain(s) of expertise to ensure adherence to Data Governance principles. Maintain documentation on data definitions, data standards, data flows, legacy data structures / hierarchies, common data models, data harmonization etc. for assigned domains. Partner with business teams to identify compliance requirements with data privacy, security, and regulatory policies for the assigned domains Jointly with Technology teams, business functions, and enterprise teams (e.g., MDM, Enterprise Data Fabric, etc.) delivers data foundations. Build strong relationship with key business leads and partners to ensure their needs are met. Functional Skills: Must-Have Functional Skills: Technical skills (Advanced SQL, Python etc) with knowledge of Pharma processes with specialization in a domain (e.g., Research, Clinical Trials, Commercial, etc.) Experience of working with or supporting systems used to data governance framework. E.g. Collibra, Alation General knowledge of data management, common data models, metadata management, data quality, master data management, data stewardship, data protection, etc. Experience with data products development life cycle, including the enablement of data dictionaries, business glossary to increase data products reusability and data literacy. Customer focused with excellent written and verbal communication skills who can confidently work with internal Amgen business stakeholders and external service partners on business process and technology topics Excellent problem-solving skills and a committed attention to detail in finding solutions Good-to-Have Functional Skills: Experience with Agile software development methodologies (Scrum) Soft Skills: Excellent analytical skills Ability to work effectively with global, virtual teams Ability to manage multiple priorities successfully Team-oriented, with a focus on achieving team goals Ability to build business relationships and understand end-to-end data use and needs. Strong verbal and written communication skills Basic Qualifications: Experience with 5 - 9 years of experience in Business, Engineering, IT or related field

What you will do In this vital role the Specialist Data Security Engineer covering Data Loss Prevention (DLP) and Cloud Access Security Broker (CASB) technologies. This role will report to the Manager, Data Security. This position will provide essential services that enable us to better pursue our mission. Specialist Data Security Engineers operate, manage, and improve Amgens DLP and Cloud Access Security Broker (CASB) solutions. In our Data Security team, they will identify emerging risks related to changes in cloud technologies, advise management, and develop technical remediations to address those risks. Specialists lead the development of processes and procedures for multiple solutions which enable business units to remediate identify cloud data exposures. They run multiple projects simultaneously to implement and improve the cloud data security protection and use advanced analytics to demonstrate success. This engineer will play a key role in educating and evangelizing to technologists and business leaders the security strategies that both protect and enable business processes related to cloud data handling. Roles & Responsibilities: Designs, operates, maintains, and enhances capabilities for the technical systems that ensure protection of data for all Amgen global operations. Identifies new risk areas for data and plans controls to mitigate those risks. Researches new technologies, processes, and approaches based on industry practices and recommends future plans for data protection. Authors procedures and guidelines and advises on policies related to data protection requirements and remediation or investigation of violations. Develops and conducts training on data protection technologies for operations staff. Educates business leadership about data risk. Advises other technology groups on data protection strategies and recommends appropriate points of both technical and process integration. Partners with the Manager of Data Security to liaise to legal and human resources leadership on violation remediations. Collaborates with cloud strategy leaders and business unit leadership to ensure that cloud data protection is incorporated by design into new business projects. Collaborates with Cloud Security Engineers to integrate cloud data protection technology into the operations of traditional Data Loss Prevention operations. Basic Qualifications: Masters degree and 4 to 6 years of experience OR Bachelors degree and 6 to 8 years of experience OR Diploma and 10 to 12 years of experience. Functional Skills: Must-Have Skills Familiarity with one or more security frameworks, especially in regulated environments. Proficiency specifying requirements for technical systems, as well as designing, implementing, and operating those systems. Expertise in global IT operations, including an understanding of regulatory and cultural differences encountered when dealing with international peers and customers. Demonstrated competence maintaining applications on Windows and Linux based operating systems, and basic understanding of one or more programming or scripting languages. Demonstrated proficiency with one or more Cloud Access Security Platforms (Elastica, Netskope, SkyHigh,etc) Track record of project management leadership, preferably using Agile methodology. Deep knowledge of the principles of Data Protection, including availability, integrity, and confidentiality of data. Good-to-Have Skills: Proficiency with communications focused on both the development of written technical processes and the ability to convey complex ideas clearly in front of an audience. Experience with data analytics focused on building executive reports Reputation of successfully navigating large enterprise environments, understanding both ITIL driven processes and business relationship building Ability to self-direct work on multiple priorities with little to no oversight, based on critical initiatives. Professional Certifications (please mention if the certification is preferred or required for the role): Systems Security Certified Practitioner (SSCP) or Security+ SANS Certifications Cloud security certifications Relevant vendor-specific certifications Soft Skills: Established analytical and gap/fit assessment skills. Ability to work effectively with global, virtual teams High degree of initiative and self-motivation. Ability to manage multiple priorities successfully. Team-oriented, with a focus on achieving team goals Effective presentation and public speaking skills.

Underwrite new business applications against an established set criteria for Consumer finance applications Assess all new applications in line with Retail Lending Standards and Policy Work in conjunction with our sales teams to identify and resolve any challenges in relation to decisions and appeals Be responsible for dealing with the more complex enquiries from both staff and external sources to provide an informed response which results in a TCF outcome for those concerned. Apply Consumer Duty principles, and aim to deliver fair outcomes in all of our day-to-day activities. Share and maintain best practice in lending appropriately and fairly, achieving compliance with all applicable internal and external standards including but not limited to Regulation, Group Internal Audit, Group Credit Risk Policy and Lending Standards, in addition to operating within stated levels of risk appetite/mandate Maintain a comprehensive and up to date knowledge and understanding of MotoNovo Finance products and services, providing accurate information and proactively promoting them where appropriate. Work collaboratively and assist and support with the Training and Competence of new underwriters ensuring this is appropriately and suitably evidenced, both initially throughout the induction process, and subsequently on an ongoing basis at all mandate levels. Maintain an up-to-date knowledge of regulatory and legislative information related to MotoNovo Finance products and services (e.g. ICOB, CONC, FCA Rules, Money Laundering, Data Protection, CDD, KYC etc.) Maintain an excellent knowledge and understanding of all relevant policies and procedures relevant to the role, being compliant with these policies and procedures at all times.

Role & responsibilities - 1. Documentation & Legal Drafting: Draft, review, and negotiate commercial and regulatory agreements including: Platform terms and conditions, investor and issuer onboarding documents. Product-related documentation, disclosures, and consent forms. Technology, data processing, API integration, SaaS, NDAs, and vendor contracts. 2. Governance & Risk Mitigation: Monitor legal risks and develop mitigation strategies. Support internal and external audits; ensure proper legal documentation is in place. Maintain legal repositories, version control, and execution records 3. Investor Protection & Dispute Handling: Address investor grievances, coordinate with the grievance redressal team, and manage escalation matrix as per SEBI norms. Draft legal responses and represent the company in legal/regulatory proceedings, if necessary. 4. Product Structuring Support: Collaborate with product, technology, and compliance teams to ensure that business referral models, workflows, and investor journeys comply with regulatory frameworks. Conduct legal feasibility reviews for new features or business initiatives Preferred Candidate Profile - Prior experience in a legal role within a SEBI-registered intermediary (e.g., stockbroker, portfolio manager, RTA, or investment platform). Exposure to handling legal aspects of API-based platforms, digital onboarding, and consent architecture. Familiarity with IT Act, data protection obligations, and grievance redressal frameworks. Required Qualifications & Skills: Educational Qualification: CS is preferred. LL.B. or equivalent law degree from a reputed institution. Experience: 510 years in legal roles, preferably in securities law, FinTech, stock broking, or capital markets. • In-depth understanding of SEBI regulations, especially SEBI (NCS) Regulations, SEBI (Stock Broker) Regulations. Strong command over legal drafting, contract negotiation, and regulatory analysis. Ability to work in a fast-paced, tech-driven environment

EC-Council is the world's largest cyber security technical certification body. We operate in 145 countries globally and we are the owner and developer of various world-famous cyber security programs. We are proud to have trained and certified over 220,000 information security professionals globally that have influenced the cyber security mindset of countless organizations worldwide. The role of DPO as supporting Data Protection Officer (DPO) activities to ensure the organization meets its legal, regulatory, and security obligations. Data Protection & DPO Support Help maintain the Records of Processing Activities (RoPA) as required under GDPR. Support Data Subject Access Requests (DSARs), incident documentation, and breach notification processes. Assist the DPO in reviewing data processing agreements and privacy impact assessments (PIAs). Track and report on data protection training completion rates and privacy KPIs. Audit and Monitoring Coordinate with internal and external auditors during audit cycles. Track audit findings, prepare status reports, and monitor closure of compliance gaps. Support periodic reviews of vendor security and privacy compliance. Documentation and Reporting Maintain accurate records of risk assessments, audits, data privacy documentation, and security-related decisions. Generate dashboards, compliance status reports, and metrics for leadership. Training and Awareness Contribute to the design and rollout of security and privacy awareness programs. Help track and measure the effectiveness of awareness activities across business units. Technical and Functional Skills Familiarity with compliance frameworks and standards (ISO 27001, SOC2, NIST CSF, GDPR). Basic understanding of information security principles, risk concepts, and audit processes. Experience using GRC Risk Management framework (e.g., Excel-based risk register) is a plus. Understanding of privacy concepts such as personal data, consent, DPIA, and DSAR. Communication Skills Good written and verbal communication skills with the ability to document processes and prepare clear reports. Ability to interact professionally with teams across IT, legal, HR, and business functions. Education and Certifications Bachelors degree in Information Security, Computer Science, IT Management, or a related field. Certification or coursework in ISO 27001, SOC2, NIST, GDPR, CIPP/E, or similar areas is a plus. Personal Attributes and Soft Skills Strong attention to detail and documentation skills. Eagerness to learn and grow in the GRC and privacy domains. Organized and reliable, with the ability to manage multiple compliance tasks simultaneously. Ethical and trustworthy in handling confidential information. Additional Information We are an equal opportunity workplace and are an affirmative action employer. We are always committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, or Veteran status and we do not discriminate based on such characteristics, or any other status protected by the laws or regulations in the locations where we work. This job description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job. EC-Council is committed to working with and providing reasonable accommodation to individuals with disabilities. If you have a medical condition or disability which inhibits your ability to complete any part of the application process and need a reasonable accommodation to complete the process, please contact us ecchr@eccouncil.org and let us know how we may assist you. This notice together with our Privacy Policy and Terms of Use of this website and any other documents we mention here are meant to inform you on what personal data about you we collect, use, disclose, share, or otherwise process when you are applying for a job at EC-Council or when EC-Council contacts you for recruitment purposes. Please read carefully to understand our views and practices on how we protect your personal data - Privacy Policy | EC-Council (eccouncil.org).

SC100: MS Cybersecurity Certified 10 yrs in Cybersecurity, 4+ Architecture Compliance - NIST,ISO 27001,RBI,GDPR Zero Trust Architecture KQL Queries Logic Apps Cloud Security Identity Governance Threat Detection SC-200/AZ-500/SC-300 TOGAF, CISSP, CISM