Talent.com
Security Controls Assessor

Security Controls Assessor

IDFC FIRST BankNavi Mumbai, Maharashtra, India
14 days ago
Job description

Job Title : Security Controls Assessor

Experience : 7–8 Years (Relevant : 3-4 years) | Industry : Banking / Financial Services | Location : [Airoli – Navi Mumbai]

Reports To : Information Security Manager

Role Overview :

The Security Controls Assessor – Data Protection / DLP will be responsible for ensuring effective design, implementation, and monitoring of data security and protection controls across the bank’s environment. The role involves end-to-end ownership of DLP operations, incident management, and governance , ensuring compliance with regulatory standards and internal security policies. The position requires close coordination with internal teams and external vendors to ensure robust protection of sensitive data.

Key Responsibilities :

  • Ensure data classification and protection technologies are aligned with business, compliance, and regulatory requirements.
  • Own the incident management process and operational aspects of DLP, ensuring timely triage, investigation, escalation, and closure.
  • Work closely with vendor teams to monitor, track, and resolve incidents through to closure.
  • Translate business data protection requirements into effective DLP rules, policies, and workflows to prevent data leakage.
  • Provide expert guidance on DLP rule creation, fine-tuning, and integration with enterprise and third-party systems.
  • Drive integration of DLP with third-party tools and security platforms such as SIEM, SOAR, CASB, and Endpoint Protection solutions.
  • Own and manage the data leakage incident monitoring program , ensuring accurate reporting and timely remediation.
  • Conduct technology risk assessments of IT systems, applications, and data workflows, identifying and mitigating security gaps.
  • Liaise with ISG, SOC, IT Security, and Infrastructure teams for risk mitigation, configuration validation, and incident resolution.
  • Collaborate with Business and InfoSec teams to align data protection measures with business workflows and compliance mandates.
  • Provide support during regulatory audits (RBI, ISO 27001, GDPR, etc.) by maintaining relevant documentation and audit trails.
  • Develop and maintain secure configuration documents and data protection governance frameworks .
  • Recommend strategic enhancements to improve data protection posture and DLP operational efficiency.
  • Communicate data security risks, incident status, and remediation progress to stakeholders and leadership.
  • Continuously drive process improvement and maturity enhancement of DLP operations and incident management practices.

Skills & Technical Expertise :

  • Core Competencies : Data Loss Prevention (DLP), Data Protection, Data Classification, Incident Management, Security Risk Assessment, Vendor Coordination
  • Tools & Platforms :
  • Microsoft O365 DLP
  • McAfee / Trellix DLP
  • Netskope (CASB / DLP)
  • Titus / Bolden James (Data Classification)
  • Seclore / other DRM solutions
  • Proxy implementations and operational management
  • SIEM / SOAR tools integration experience preferred
  • Knowledge Areas :
  • DRM, encryption (in transit and at rest), data masking, secure configuration management
  • Data protection frameworks (RBI, ISO 27001, GDPR) and technology governance

    • Experience Requirements :

  • 3–4 years of relevant experience in DLP operations , incident management , and data protection governance , preferably within the Banking or BFSI sector .
  • Hands-on experience with rule configuration, policy fine-tuning , and incident monitoring in enterprise-scale DLP environments.
  • Experience in integrating DLP tools with third-party platforms (e.g., CASB, SIEM, Proxy, Endpoint Security).
  • Proven experience in coordinating with vendors for incident handling, escalation, and closure.

    • Desired (Good to Have) :

  • Practical exposure to Microsoft 365 Security & Compliance Center , Netskope CASB / DLP , and McAfee / Trellix DLP .
  • Understanding of cloud data protection, insider threat management, and data governance .
  • Experience preparing secure configuration documents and performing risk assessments .
  • Relevant certifications such as CompTIA Security+ , CISM , CISA , or Netskope NCCSS .

    • Soft Skills :

  • Strong analytical, investigative, and problem-solving skills.
  • Excellent communication and stakeholder coordination abilities.
  • Ability to manage vendors and cross-functional teams effectively.
  • Attention to detail, ownership mindset, and commitment to process excellence.
  • Ability to work under regulatory and operational pressure while maintaining accuracy and composure.
    • Create a job alert for this search

    Security • Navi Mumbai, Maharashtra, India

    Related jobs
    • Promoted
    Security (DevSecOps)and QA (Automation)

    Security (DevSecOps)and QA (Automation)

    PioVation GmbHKalyan-Dombivli, IN
    If you care about European-grade safety, quality, and compliance, read on.Senior Security Engineer (DevSecOps).Application & cloud security (threat modeling, secure SDLC).Kubernetes security (netwo...Show moreLast updated: 15 days ago
    • Promoted
    • New!
    SAP Security Consultant

    SAP Security Consultant

    YASH Technologiesmumbai, maharashtra, in
    Dear Connection Yash Technologies is looking for Senior SAP Security Consultant.Skill : SAP Security Consultant / sr.SAP GRC AC Consultant About Role Seeking a highly skilled SAP GRCAccess Control Con...Show moreLast updated: 22 hours ago
    • Promoted
    • New!
    SAP Security GRC Consultant

    SAP Security GRC Consultant

    YASH Technologiesthane, maharashtra, in
    We’re Hiring : SAP Security GRC Consultant at YASH Technologies!.YASH Technologies is looking for SAP Security GRC Consultant Professionals to join our dynamic team in Pune.Notice Period : Immediate ...Show moreLast updated: 22 hours ago
    • Promoted
    Lead Security Engineer

    Lead Security Engineer

    interface.aiKalyan-Dombivli, IN
    Our cutting-edge Generative AI-powered platform serves over 100 banks and credit unions, delivering hyper-personalized customer interactions across voice, chat, and employee-assisting solutions.To ...Show moreLast updated: 30+ days ago
    • Promoted
    • New!
    Security IAM Engineer

    Security IAM Engineer

    Tata Consultancy Servicesmumbai, maharashtra, in
    Required Technical Skill Set - GCP Identity and Access Management (IAM), Access Policies, Security Protocols, Networking Troubleshooting. Location - Ahmedabad & Chennai.A clear understanding of acce...Show moreLast updated: 22 hours ago
    • Promoted
    • New!
    SAP Security GRC

    SAP Security GRC

    YASH Technologiesnavi mumbai, maharashtra, in
    Understanding of Role Administration.GRC Access Risk SoD Simulation Expertise.Ability to troubleshoot and resolve High / Medium complexity issues. Expert in User & Role Administration.Expert in GRC Ac...Show moreLast updated: 22 hours ago
    • Promoted
    • New!
    Security Engineer III

    Security Engineer III

    CME Groupmumbai, maharashtra, in
    The Application Security Engineer leads efforts to enhance application security and the secure software development lifecycle. This individual is responsible for performing manual application securi...Show moreLast updated: 22 hours ago
    • Promoted
    Azure Security Centre Analyst

    Azure Security Centre Analyst

    PwCmumbai, maharashtra, in
    Seeking an Azure Security Centre Analyst with proven experience in cloud security operations within the Microsoft Azure ecosystem. Key responsibilities include managing Azure security tools, vulnera...Show moreLast updated: 12 days ago
    • Promoted
    Senior Application Security Engineer

    Senior Application Security Engineer

    SpheraThane, IN
    Sphera is a leading global provider of enterprise software and services that enables companies to manage and optimize their environmental, health, safety and sustainability.Our mission is to create...Show moreLast updated: 4 days ago
    • Promoted
    SAP GRC Security Lead Consultant - Australia (Onsite)

    SAP GRC Security Lead Consultant - Australia (Onsite)

    Avensys ConsultingThane, IN
    Avensys is a reputed global IT professional services company headquartered in Singapore.Our service spectrum includes enterprise solution consulting, business intelligence, business process automat...Show moreLast updated: 12 days ago
    • Promoted
    Security Auditor

    Security Auditor

    Helo.ai by VivaConnectMumbai, Maharashtra, India
    Join Us as an Information Security Auditor – Be the Guardian of Trust!.SMS, WhatsApp, RCS, Voice, to Contact Centre Solutions. Meta, Google, and leading telecom operators.If you’re looking to elevat...Show moreLast updated: 14 days ago
    • Promoted
    Security Engineer

    Security Engineer

    VipraTech LabsThane, IN
    VipraTech Labs is a forward-thinking technology startup specializing in end-to-end product development, security, automation, and AI-driven workflows. The company builds complete solutions, from bac...Show moreLast updated: 23 hours ago
    • Promoted
    Lead Security Engineer

    Lead Security Engineer

    ArcanaMumbai, IN
    As our Lead Security Engineer, you'll own and elevate Arcana's overall security posture - cloud, on-prem, and everything in between. You'll design and enforce policies, automate controls, and harden...Show moreLast updated: 30+ days ago
    • Promoted
    SAP GRC Security Consultant

    SAP GRC Security Consultant

    YASH TechnologiesKalyan-Dombivli, IN
    Founded in 1996, YASH Technologies is a global technology integrator and one of the largest independent SAP partners worldwide. Headquartered in the USA, with.Manufacturing, Life Sciences, BFSI, Min...Show moreLast updated: 23 hours ago
    • Promoted
    Oracle Fusion ERP-Security and Controls

    Oracle Fusion ERP-Security and Controls

    SutherlandThane, IN
    Oracle Fusion ERP-Security and Controls.Design and maintain the security model for the Oracle Fusion ERP applications (Financials, Procurement, Projects, Supply Chain, etc) including : roles, role h...Show moreLast updated: 23 hours ago
    • Promoted
    • New!
    SAP Security Consultant

    SAP Security Consultant

    LogFix SCM Solutions Pvt Ltdmumbai city, maharashtra, in
    Position Title : SAP GRC Security Consultant.Location : Bangalore / Chennai / Hyderabad.Notice Period : Immediate to 15 Days. We are seeking a highly skilled SAP GRC Security Consultant with strong exp...Show moreLast updated: 22 hours ago
    • Promoted
    Application Security Engineer

    Application Security Engineer

    FoodsmartMumbai, IN
    Foodsmart is the leading telenutrition and foodcare solution, backed by a robust network of Registered Dietitians.Our platform is designed to foster healthier food choices, drive lasting behavior c...Show moreLast updated: 30+ days ago
    • Promoted
    Security Engineer

    Security Engineer

    Check Point SoftwareMumbai, Maharashtra, India
    As the world’s leading vendor of Cyber Security, facing the most sophisticated threats and attacks, we’ve assembled a global team of the most driven, creative and innovative people.At Check Point, ...Show moreLast updated: 12 days ago