Functional Manager - DLP/Data Configuration

JD :

• Understand the requirement to conduct comprehensive cyber security risk assessment of 3rd party service provider (Vendor) to onboard or engage new services/applications.
• Plan and conduct periodic assessment of existing vendors as per organization’s TPRM framework
• Experience on risk profiling of 3rd party vendor as per engagement with vendor
• Coordination with the business team, vendor and respective stakeholders to carry out end to end cyber security Third party risk assessment
• Due diligence and validation of responses & evidences on Infosec/cyber security controls, network and application architecture review of technical integration of 3rd party services which to be onboarded.
• Must have knowledge of information/Cyber security risks for systems, applications, technical environments, networks, cloud infrastructure, projects, and workflows.
• Classify identified information/cyber security risk and record those potential risks that could impact the organisation, and publish risk area report to management.
• Provide recommendation on highlighted information security risk, follow ups and track for closure
• Knowledge and experience on Information/ Cyber security risk control as per ISO27001, NISTCSF, Comptia Security+
• Must have knowledge of IT Infrastructure & Cloud Security, Data security, API security
• Should have experience on Data leakage Prevention (DLP) systems ( preference is Forcepoint DLP) and channels – like endpoint DLP, email DLP, network DLP, web DLP
• Should have experience of DLP incidents analysis, data classification , data discovery
• Should have experience of DLP work flows to handle the DLP incident management & exception handling.
• Should have experience to Define, implement and refinement ( fine tuning) of DLP policies and keywords/rules as per organisation requirement