Talent.com
IDFC First Bank - Security Controls Assessor

IDFC First Bank - Security Controls Assessor

IDFC First Bank LtdNavi Mumbai
7 days ago
Job description

Description :

Job Title : Security Controls Assessor.

Experience : 7- 8 Years (Relevant : 3- 4 years) | Industry : Banking / Financial Services | Location : [Airoli - Navi Mumbai].

Reports To : Information Security Manager.

Role Overview :

The Security Controls Assessor Data Protection / DLP will be responsible for ensuring effective design, implementation, and monitoring of data security and protection controls across the banks environment.

The role involves end-to-end ownership of DLP operations, incident management, and governance, ensuring compliance with regulatory standards and internal security policies.

The position requires close coordination with internal teams and external vendors to ensure robust protection of sensitive data.

Key Responsibilities :

  • Ensure data classification and protection technologies are aligned with business, compliance, and regulatory requirements.
  • Own the incident management process and operational aspects of DLP, ensuring timely triage, investigation, escalation, and closure.
  • Work closely with vendor teams to monitor, track, and resolve incidents through to closure.
  • Translate business data protection requirements into effective DLP rules, policies, and workflows to prevent data leakage.
  • Provide expert guidance on DLP rule creation, fine-tuning, and integration with enterprise and third-party systems.
  • Drive integration of DLP with third-party tools and security platforms such as SIEM, SOAR, CASB, and Endpoint Protection solutions.
  • Own and manage the data leakage incident monitoring program, ensuring accurate reporting and timely remediation.
  • Conduct technology risk assessments of IT systems, applications, and data workflows, identifying and mitigating security gaps.
  • Liaise with ISG, SOC, IT Security, and Infrastructure teams for risk mitigation, configuration validation, and incident resolution.
  • Collaborate with Business and InfoSec teams to align data protection measures with business workflows and compliance mandates.
  • Provide support during regulatory audits (RBI, ISO 27001, GDPR, etc.) by maintaining relevant documentation and audit trails.
  • Develop and maintain secure configuration documents and data protection governance frameworks.
  • Recommend strategic enhancements to improve data protection posture and DLP operational efficiency.
  • Communicate data security risks, incident status, and remediation progress to stakeholders and leadership.
  • Continuously drive process improvement and maturity enhancement of DLP operations and incident management practices.

Skills & Technical Expertise :

Core Competencies : Data Loss Prevention (DLP), Data Protection, Data Classification, Incident Management, Security Risk Assessment, Vendor Coordination.

Tools & Platforms :

  • Microsoft O365 DLP.
  • McAfee / Trellix DLP.
  • Netskope (CASB / DLP).
  • Titus / Bolden James (Data Classification).
  • Seclore / other DRM solutions.
  • Proxy implementations and operational management.
  • SIEM / SOAR tools integration experience preferred.

    • Knowledge Areas :

  • DRM, encryption (in transit and at rest), data masking, secure configuration management.
  • Data protection frameworks (RBI, ISO 27001, GDPR) and technology governance.

    • Experience Requirements :

  • 3- 4 years of relevant experience in DLP operations, incident management, and data protection governance, preferably within the Banking or BFSI sector.
  • Hands-on experience with rule configuration, policy fine-tuning, and incident monitoring in enterprise-scale DLP environments.
  • Experience in integrating DLP tools with third-party platforms (e.g., CASB, SIEM, Proxy, Endpoint Security).
  • Proven experience in coordinating with vendors for incident handling, escalation, and closure.

    • Desired (Good to Have) :

  • Practical exposure to Microsoft 365 Security & Compliance Center, Netskope CASB / DLP, and McAfee / Trellix DLP.
  • Understanding of cloud data protection, insider threat management, and data governance.
  • Experience preparing secure configuration documents and performing risk assessments.
  • Relevant certifications such as CompTIA Security+, CISM, CISA, or Netskope NCCSS.

    • Soft Skills :

  • Strong analytical, investigative, and problem-solving skills.
  • Excellent communication and stakeholder coordination abilities.
  • Ability to manage vendors and cross-functional teams effectively.
  • Attention to detail, ownership mindset, and commitment to process excellence.
  • Ability to work under regulatory and operational pressure while maintaining accuracy and composure.

    • (ref : hirist.tech)

    Create a job alert for this search

    Security Security • Navi Mumbai

    Related jobs
    • Promoted
    Team Lead - Application Security - Bank

    Team Lead - Application Security - Bank

    ConfidentialMumbai
    OWASP, SANS / CWE and WASC (Testing approach and top web application vulnerabilities).Web application, thick client, API, Mobile (Android and ios) security testing. Vulnerability assessment and config...Show moreLast updated: 30+ days ago
    • Promoted
    Cloud Security (AWS or Azure)

    Cloud Security (AWS or Azure)

    ConfidentialMumbai
    Handling of all cloud security and controls.Understanding of major cloud setup, services and offering.Solutioning and provisioning applications in cloud. Compliance with the rules and regulations.In...Show moreLast updated: 30+ days ago
    • Promoted
    • New!
    Security Engineer - OSCP Certified

    Security Engineer - OSCP Certified

    HashiraMumbai, Maharashtra, India
    Company Description Hashira is an R&D studio focused on solving complex infrastructure challenges in blockchain and AI.Our work supports projects like Ren, KeeperDAO (Rook), Catalog, and Garden, wh...Show moreLast updated: 14 hours ago
    • Promoted
    Manager - Enterprise Security (IDAM Control & Assurance)

    Manager - Enterprise Security (IDAM Control & Assurance)

    ConfidentialMumbai, India
    We are M&G Global Services Private Limited (formerly known as 10FA India Private Limited, and prior to that Prudential Global Services Private Limited). We are a fully owned subsidiary of the M&G pl...Show moreLast updated: 5 days ago
    • Promoted
    Workday - GDC India – Security Consultant

    Workday - GDC India – Security Consultant

    ConfidentialPune, Mumbai
    Cognizant is seeking a Workday Consultant certified / experienced in Workday Security.In this role you will work with customers during all phases of deployment as well as post-production to assist wi...Show moreLast updated: 30+ days ago
    • Promoted
    Contractor Security Engineer Level 3 – GRC Tech Solutions

    Contractor Security Engineer Level 3 – GRC Tech Solutions

    MindlanceKalyan-Dombivli, IN
    Remote Role | Contractor Security Engineer Level 3 – GRC Tech Solutions.This position focuses on enabling process clarity, automation, and efficiency while creating insights that empower our busine...Show moreLast updated: 15 days ago
    • Promoted
    SAP Security & GRC Consultant

    SAP Security & GRC Consultant

    LTIMindtreeMumbai, Maharashtra, India
    SAP Security Job Description Senior Level.We are seeking experienced professionals for the role of SAP Security Specialist. Only candidates with a minimum of 5 years’ experience in SAP S / 4HANA Secur...Show moreLast updated: 30+ days ago
    • Promoted
    Security Auditor

    Security Auditor

    Helo.ai by VivaConnectMumbai, Maharashtra, India
    Join Us as an Information Security Auditor – Be the Guardian of Trust! Location : [Add Location] Experience : Minimum 5+ years Notice Period : [Add if applicable] About Helo.VivaConnect , we’re...Show moreLast updated: 1 day ago
    • Promoted
    Senior Manager Enterprise Security (IDAM Control & Assurance)

    Senior Manager Enterprise Security (IDAM Control & Assurance)

    ConfidentialMumbai, India
    We are M&G Global Services Private Limited (formerly known as 10FA India Private Limited, and prior to that Prudential Global Services Private Limited). We are a fully owned subsidiary of the M&G pl...Show moreLast updated: 5 days ago
    • Promoted
    Security Consultant

    Security Consultant

    ConfidentialMumbai, India
    Note : By applying to this position you will have an opportunity to share your preferred working location from the following : . Bengaluru, Karnataka, India; New Delhi, Delhi, India; Hyderabad, Telanga...Show moreLast updated: 30+ days ago
    • Promoted
    Security Controls Assessor

    Security Controls Assessor

    IDFC FIRST BankMumbai, Maharashtra, India
    Job Title : Security Controls Assessor Experience : 7–8 Years (Relevant : 3-4 years) | Industry : Banking / Financial Services | Location : [Airoli – Navi Mumbai] Reports To : Information Security Mana...Show moreLast updated: 1 day ago
    • Promoted
    Security Tester

    Security Tester

    ConfidentialMumbai, India
    About BNP Paribas India Solutions.Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas SA, European Union's leading bank with an international reach.With del...Show moreLast updated: 5 days ago
    • Promoted
    Security Controls Assessor

    Security Controls Assessor

    ConfidentialNavi Mumbai, Mumbai, India
    Job Title : Security Controls Assessor.Banking / Financial Services |.Security Controls Assessor – Data Protection / DLP. DLP operations, incident management, and governance.The position requires clo...Show moreLast updated: 5 days ago
    • Promoted
    • New!
    Security Consultant

    Security Consultant

    TechfullyBorivali, Maharashtra, India
    Job Title : Security Consultant - Vulnerability Assessment & Penetration Testing (VAPT) Designation : Security Consultant Location and way of working Base location : Bangalore Professional is requ...Show moreLast updated: 15 hours ago
    • Promoted
    Senior Security Consultant (Cloud Security)

    Senior Security Consultant (Cloud Security)

    Claranet IndiaDombivli, Republic Of India, IN
    Founded at the beginning of the dot.Com bubble in 1996, our CEO Charles Nasser had a light bulb moment to develop a truly customer-focused IT business. Since then, Claranet has grown from an Interne...Show moreLast updated: 1 day ago
    • Promoted
    AWS Security Professional

    AWS Security Professional

    ConfidentialMumbai
    Cloud and Infrastructure Security Implementation.Implement best-practice security configurations across AWS cloud and on-premise datacentre environments. Support deployment of security tools across ...Show moreLast updated: 30+ days ago
    • Promoted
    IBM Guardium - DAM

    IBM Guardium - DAM

    ConfidentialMumbai, India
    Plan, implement and upgrade security measures and controls Define database related.Define security guidelines for database hardening Experience in working on Database activity.Support on prem and c...Show moreLast updated: 5 days ago
    • Promoted
    SAP Security Consultant

    SAP Security Consultant

    AptimizedThane, Maharashtra, India
    ERP– SAP Security(BTP, S / 4 HANA Cloud, SAC, Datasphere).We are looking for an experienced.SAP Business Technology Platform (BTP) ,. SAP Analytics Cloud (SAC) security ,.SAP S / 4HANA Public Cloud secu...Show moreLast updated: 1 day ago