220 Dlp Jobs - Page 8

Experience: 10-15 years of experience in infrastructure security, with a minimum of 5 years in an architecture and design role. Expertise: Strong knowledge of security technologies, including: SASE (Security Access Service Edge) solutions NIPS (Network Intrusion Prevention Systems) Firewalls (Next-Gen & Traditional) Web Application Firewalls (WAF) Data Loss Prevention (DLP) VPNs, Zero Trust, and cloud security frameworks Hands-on Implementation: Proven experience in the hands-on implementation of security solutions across large-scale enterprise environments. Certifications: Relevant certifications such as CISSP, CISM, CISA, or similar are highly preferred. Strong Network Security Understanding: Expertise in securing complex network infrastructures (routing, switching, DNS, proxies, etc.). Technical Proficiency: Familiarity with scripting and automation tools (e.g., Python, PowerShell) to streamline security operations. Problem-Solving Skills: Strong analytical skills and the ability to troubleshoot and resolve complex security issues. Communication Skills: Excellent communication abilities, with the capacity to present technical concepts clearly to non-technical stakeholders. Collaboration: Ability to work collaboratively with IT, security, and business teams to deliver security solutions effectively.

Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Are you passionate about cybersecurity and looking for an exciting role where you can make a difference? If so, we have an opportunity for you! As a Security Specialist at Kyndryl, you will play a crucial role in enabling and securing our customer organizations, cultures, and ecosystems. Your responsibilities will be varied and dynamic, spanning asset classification models, risk assessment reports, information security policies, security solution scenarios, implementation plans, organization models, procedures, security services, security effectiveness evaluation reports, and security awareness workshops. You will be tasked with configuring, monitoring, and managing the performance of networks to maintain the quality of services, while also protecting organizational infrastructure from malicious cyber-attacks. As a key member of our team, you will assess, predict, prevent, and manage the risk of IT infrastructure and data, helping our customers stay ahead of the curve and ensure their systems are secure. You will develop and implement security policies and procedures, working closely with other departments to ensure that all security measures are in place and operating effectively. But that is not all – at Kyndryl you will have the opportunity to explore innovation in CyberSecurity data science – taking information that has been gathered and looking for areas to have that “Ah Ha” moment. Drawing conclusions and patterns from the data across single and multiple clients. Creating new ideas in the area of risk management and risk quantification. In addition to your technical responsibilities, you will also play a key role in raising awareness of potential security threats through technical security training on best practices. This is an exciting opportunity to help shape the culture of our clients' organizations and make a tangible impact on their security posture. If you have a passion for cybersecurity – governance, risk and compliance, are looking for a challenging and dynamic role, and want to work with a team of like-minded individuals, then we want to hear from you! Join us as a Security Specialist and help us secure the future of our clients' organizations. Your Future at Kyndryl Every position at Kyndryl offers a way forward to grow your career. We have opportunities that you won’t find anywhere else, including hands-on experience, learning opportunities, and the chance to certify in all four major platforms. Whether you want to broaden your knowledge base or narrow your scope and specialize in a specific sector, you can find your opportunity here. Who You Are You’re good at what you do and possess the required experience to prove it. However, equally as important – you have a growth mindset; keen to drive your own personal and professional development. You are customer-focused – someone who prioritizes customer success in their work. And finally, you’re open and borderless – naturally inclusive in how you work with others. Required Technical and Professional Expertise 8-10 years of experience in Security BSc / BCA / BE / Diploma / MCA / MSc or equivalent Min 10 years of relevant experience as a Security engineer for troubleshooting security devices & BAU support. Good understanding on Next Generation Firewalls (Cisco, Palo Alto Networks, Fortinet) and experience in handling security concepts (Rule ADD/ Modify Delete, Nat, Faulty Firewall replacement, High Availability setup, packet capture, log analysis etc.) Advanced knowledge on Daily tickets & issues for security devices like Firewall, WAF, DDoS Protection, DLP, PIM/PAM, SOC EDR solution and their monitoring, troubleshooting & firmware upgrade Troubleshoot and fix high priority issues related to Firewall, Anti-Virus, WAF, EDR, DDOS, PIM & PAM, DLP, SASE, SOC issues is added advantage. Work with the HW Vendors/TAC for the SW/HW related issues and providing the fix. Involve in change management process for HW replacement/ IOS upgrade/ Config change/ BW upgrade/ Whitelisting or Blacklist URLs & FW Rule addition etc. Knowledge and experience in Incident, Change, Problem, Service request and Configuration Management Processes Monitor the queue and maintain regular updates on the Tickets as per agreed timeline, providing the detailed closure summary on the tickets. Detailed Root cause summary to be documented for the Problem tickets. Document Pre & Post implementation logs & Script for change. Network Diagram updates. Working on the assigned tickets within the agreed Timeline/SLA as per the Ticket Priority/Severity and Adhere to the ITIL process with zero noncompliance. Upskilling the technical knowledge by learning new Technology and doing relevant technical certifications Preferred Technical and Professional Expertise. At least 5 years’ experience in managing security domain. Being You Diversity is a whole lot more than what we look like or where we come from, it’s how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we’re not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you – and everyone next to you – the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That’s the Kyndryl Way. What You Can Expect With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter – wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed. Get Referred! If you know someone that works at Kyndryl, when asked ‘How Did You Hear About Us’ during the application process, select ‘Employee Referral’ and enter your contact's Kyndryl email address.

Job Title : Solution Architect- Security Experience Required : 5+ Years (with 3+ years in a Solution Architect role) Certifications Required :OEM Certifications from Security vendors like PaloAlto, Splunk, Cisco, Trelix, Forcepoint,crowdstrike, Microsoft etc.. Mandate Skills: EDR (Endpoint Detection and Response): Cisco, Paloalto Cortex, CrowdStrike, SentinelOne, etc. DLP (Data Loss Prevention): Trelix, Forcepoint, Symantec, etc. Cloud Security: PaloAlto PrismaCloud, TrendMicro, etc. SIEM (Security Information and Event Management): Splunk Email & Web Security: Cisco, Proofpoint, Zscaler, etc. SASE (Secure Access Service Edge): PaloAlto, Cisco, Zscaler, etc. Should work on RFPs, Define SOWs Job Summary: We are looking for a highly skilled and motivated Security Solution Architect to join our growing team. This role offers the opportunity to design, implement, and oversee cybersecurity solutions for enterprise-level IT infrastructures. The ideal candidate will possess an extensive background in cybersecurity, a proven ability to work closely with clients, and a passion for leveraging security technologies to meet business objectives. If you're a technical leader with a solution-focused mindset, we want to hear from you. Key Responsibilities: Design & Implement Security Solutions : Architect and develop comprehensive cybersecurity solutions tailored to client needs, following best practices and industry standards. Security Assessments : Conduct thorough security assessments, identify vulnerabilities, and recommend effective remediation strategies. Create Security Architecture Artifacts : Develop and maintain security architecture models, templates, and documentation that support best practices for secure IT systems. Collaboration Across Teams : Collaborate with internal teams and clients to ensure seamless integration of security technologies within existing infrastructures. Continuous Learning & Adaptation : Stay informed on the latest cybersecurity threats, industry trends, and new technologies to ensure our solutions remain cutting-edge. Pre-sales Support : Provide deep technical expertise in pre-sales activities, including solution design and security architecture for proposals. Risk Management : Lead risk assessments, identifying and implementing strategies for mitigating security risks. Ensure Compliance : Ensure solutions meet regulatory requirements and follow frameworks such as ISO 27001, NIST, etc. Mentorship & Leadership : Act as a guide and mentor to junior team members, helping them grow in their technical and security expertise. Soft Skills : Excellent communication, problem-solving, and strategic thinking skills. Collaborative Mindset : Ability to work independently and collaborate effectively within cross-functional teams

Job Purpose We are seeking a skilled Endpoint Security Engineer to join our team. The ideal candidate will be responsible for safeguarding our endpoints, implementing security measures, and ensuring compliance with industry standards. Duties and Responsibilities A-Minimum required Accountabilities for this role ‚ Own the vendor assessment end to end from scoping till closure of all observations. ‚ Work closely with IT departments to ensure effective integration of endpoint security solutions with existing infrastructure and processes. ‚ Stay current with industry trends and emerging threats, continuously seeking opportunities to enhance the organization's endpoint security posture. ‚ Evaluate, select, and manage relationships with third-party vendors providing endpoint security solutions, ensuring alignment with organizational needs. ‚ Generate regular reports on the security posture of endpoints, including incident reports and compliance status, for senior management. ‚ Ensure that endpoint security measures comply with relevant regulations and standards, conducting regular risk assessments and audits. ‚ Establish, document, and enforce endpoint security policies and procedures to safeguard sensitive data and ensure compliance with industry standards. Key Decisions / Dimensions Identification of right contacts for get vendor assessments completed on time. Review and decide if the observations shared by auditors for vendor assessment are correct and complete. Review and decide if closure evidence shared by vendors are sufficient to close the audit observations. Decide if the policy and procedure documents need changes based on new regulations or audit outcomes. Major Challenges Handling of fast changing regulatory expectations Handling of compliance expectations in stringent timelines Handling multiple stakeholders at a time including vendor, BFL team who has outsourced work to the vendor, third party consultants who assist in assessing vendors etc. Required Qualifications and Experience A) Qualifications Minimum qualification required is computer graduate with minimum of 4 Years of experience in information security. B)Work Experience Design, implement, and manage endpoint security solutions, including antivirus software, firewalls, and intrusion detection/prevention systems. Monitor network and endpoint security systems to detect and respond to security incidents. Lead a project team for the DLP deployment Spearhead the Endpoint DLP implementation and make recommendations accordingly through project plans Deliver the implementation within approved budget and timeline with minimal issues Provide and communicate the regular project progress of the deployment to stakeholders Apply effective project management methodologies and ensure appropriate action applies in corrective needs Conduct regular security assessments and vulnerability scans to identify potential security weaknesses. Ensure that endpoint security systems are configured and maintained in accordance with security best practices and industry standards. Collaborate with network and systems administrators to ensure that endpoint security solutions are integrated into the organizations overall security posture. Research and evaluate new security technologies and make recommendations for implementation. Develop and implement security policies and procedures for end-users, including guidelines for password management, email security, and the use of portable devices. Provide training and support to end-users on how to use endpoint security solutions effectively. Respond to security incidents and participate in incident response efforts as required. Stay up-to-date on the latest security trends and developments and maintain a high level of technical expertise in the field of endpoint security.

Job Purpose We are seeking a skilled Endpoint Security Engineer to join our team. The ideal candidate will be responsible for safeguarding our endpoints, implementing security measures, and ensuring compliance with industry standards. Duties and Responsibilities A-Minimum required Accountabilities for this role ‚ Own the vendor assessment end to end from scoping till closure of all observations. ‚ Work closely with IT departments to ensure effective integration of endpoint security solutions with existing infrastructure and processes. ‚ Stay current with industry trends and emerging threats, continuously seeking opportunities to enhance the organization's endpoint security posture. ‚ Evaluate, select, and manage relationships with third-party vendors providing endpoint security solutions, ensuring alignment with organizational needs. ‚ Generate regular reports on the security posture of endpoints, including incident reports and compliance status, for senior management. ‚ Ensure that endpoint security measures comply with relevant regulations and standards, conducting regular risk assessments and audits. ‚ Establish, document, and enforce endpoint security policies and procedures to safeguard sensitive data and ensure compliance with industry standards. Key Decisions / Dimensions Identification of right contacts for get vendor assessments completed on time. Review and decide if the observations shared by auditors for vendor assessment are correct and complete. Review and decide if closure evidence shared by vendors are sufficient to close the audit observations. Decide if the policy and procedure documents need changes based on new regulations or audit outcomes. Major Challenges Handling of fast changing regulatory expectations Handling of compliance expectations in stringent timelines Handling multiple stakeholders at a time including vendor, BFL team who has outsourced work to the vendor, third party consultants who assist in assessing vendors etc. Required Qualifications and Experience a)Qualifications Minimum qualification required is computer graduate with minimum of 4 Years of experience in information security. B)Work Experience Strategy Development:Design and implement an endpoint security strategy that encompasses AV, DLP, BitLocker, and MDM. Policy Creation:Develop and enforce security policies and procedures to safeguard endpoints from security threats and data breaches. System Management:Oversee the deployment, configuration, and maintenance of endpoint security solutions (AV, DLP, MDM) to ensure optimal performance and security. Incident Response:Lead incident response efforts related to endpoint security breaches, including investigation, remediation, and reporting. Monitoring and Reporting:Continuously monitor endpoint security systems for threats and vulnerabilities; provide regular reports on security posture to management. Compliance:Ensure compliance with relevant regulatory requirements and industry standards, including data protection laws and best practices. User Education:Develop and conduct training programs for staff on endpoint security awareness and best practices. Collaboration:Work closely with IT teams to ensure seamless integration of endpoint security solutions with existing infrastructure. Vendor Management:Evaluate, select, and manage relationships with third-party vendors providing endpoint security solutions.

Work Locations: Hyderabad & Bangalore only (local candidates are required as the final round will be in-person) Minimum 4yrs of experience of SOC L2 is required for this position. JD: Work you'll do As a Fusion Level 2 Consultant you will support the Security Operations Center (SOC) as the first line of defense to identify potential information security incidents. Monitor client sources of potential security incidents, health alerts with monitored solutions and requests for information. This includes the monitoring of real-time channels or dashboards, periodic reports, email inboxes, helpdesk or other ticketing system, telephone calls, chat sessions. Follow client and incident-specific procedures to perform triage of potential security incidents to validate and determine needed mitigation. Escalate potential security incidents to client personnel, implements countermeasures in response to others, and recommend operational improvements. Keep accurate incident notes in case management system. Maintain awareness of the clients technology architecture, known weaknesses, the architecture of the security solutions used for monitoring, imminent and pervasive threats as identified by client threat intelligence, and recent security incidents. Provide advanced analysis of the results of the monitoring solutions, asses escalated outputs and alerts from Level 1 Analysts. Perform web hunting for new patterns/activities. Advise on content development and testing. Provide advice and guidance on the response action plans for information risk events and incidents based on incident type and severity. Ensure that all identified events are promptly validated and thoroughly investigated. Provide end-to-end event analysis, incident detection, and manage escalations using documented procedures. Devise and document new procedures and runbooks/playbooks as directed. Assist the Shift Leads and fulfill Shift Lead responsibilities in their absence. Maintain monthly Service Level Agreements (SLAs). Maintain compliance with processes, runbooks, templates and procedures-based experience and best practices. Assist Cyber Hunting team with advanced investigations as needed. Provide malware analysis (executables, scripts, documents) to determine indicators of compromise, and create signatures for future detection of similar samples. Continuously improve the service by identifying and correcting issues or gaps in knowledge (analysis procedures, plays, client network models), false positive tuning, identifying and recommending new or updated tools, content, countermeasures, scripts, plug-ins, etc. Perform peer reviews and consultations with Level 1 analysts regarding potential security incidents. Serve as a subject matter expert in at least one security-related area (e.g. specific malware solution, python programming, etc.) Actively seek self-improvement through continuous learning and pursuing advancement to a SOC Shift Lead. Provide shift status and metric reporting. Support weekly Operations calls. Adhere to internal operational security and other policies. Perform light project work as assigned. Required skills 4-6 years working in a SOC and/or strong security technology operations experience. Certified Information Systems Security Professional (CISSP), Certification in Certified Intrusion Analyst (GIAC), Continuous Monitoring (GMON), Certified Ethical Hacker (CEH) or equivalent. Able to work shifts on a rotating basis for 24/7 support of clients. Experience in security technologies such as: Security information and event management (SIEM), IDS/IPS, Data Loss Prevention (DLP), Proxy, Web Application Firewall (WAF), Endpoint detection and response (EDR), Anti-Virus, Sandboxing, network- and host- based firewalls, Threat Intelligence, Penetration Testing, etc. Knowledge of Advanced Persistent Threats (APT) tactics , technics and procedures. Understanding of possible attack activities such as network probing / scanning, DDOS, malicious code activity , etc. Understanding of common network infrastructure devices such as routers and switches. Understanding of basic networking protocols such as TCP/IP, DNS, HTTP. Basic knowledge in system security architecture and security solutions. Preferred skills Excellent interpersonal and organizational skills. Excellent oral and written communication skills. Strong analytical and problem-solving skills. Self-motivated to improve knowledge and skills. A strong desire to understand the what as well as the why and the how of security incidents. Qualification Bachelors degree is required. Ideally in Computer Science, Cyber Security, Information Security, Engineering, Information Technology.

Provide remote corrective and preventive maintenance support on assigned security solutions via emails and remote call sessions. Perform fulfillment of service requests on assigned SaaS-based security solutions, such as onboarding, setup of custom reports and dashboards. Develop and maintain support documents including instructions to perform patching, version upgrades, and other operational tasks related to the assigned security solutions. Log support cases with the respective vendors to resolve product issues, which may involve arranging remote call sessions with the vendor support. Respond to inquiries on assigned security solutions, including remediation steps for security vulnerabilities, hardening, and checks on applicable CVEs by working with vendor support. Take ownership of the support cases assigned and follow up until case closure. Attend remote calls with the Ensign team to update on case status. Share solution knowledge with the Ensign team. Adhere to response time and periodic update time of 1 business day and 2 business days, respectively. Demonstrated skillsets in one of the following solutions (certifications and/or 2-year experience in deployment, operations, and/or maintenance of the solutions): Privileged Access Management (PAM) “ CyberArk, BeyondTrust, Delinea Content Disarm Reconstruction (CDR) - Votiro Secure Service Edge (SSE) €“ Zscaler, Palo Alto Prism Access Data Loss Prevention (DLP) €“ Trellix, Forcepoint, Microsoft Defender / Purview Strong troubleshooting and analytical skills for resolving issues and delivering updates to stakeholders. Basic project management, customer service, and stakeholder management skills. Support hours: 9 AM to 6 PM Indian Time on business days. On standby after support hours. Resources should come online to attend to urgent support cases within 3 hours upon notification (via emails and calls).

Cyber Security Engineer: Review security measures and software configuration to protect systems and information infrastructure, including firewalls and data encryption programs. Cyber Security Threat hunting, Intelligence, response Document security breaches and assess the damage they cause. Work with security team to perform tests and uncover network vulnerabilities. Coordinate with IT and Fix detected vulnerabilities to maintain a high-security standard. Stay current on IT security trends and news. Develop company-wide best practices for IT security. Help colleagues install security software and understand information security management. Research security enhancements and make recommendations to management. Stay up-to-date on information technology trends and security standards. Handle security Audits and customer reviews Analyse and recommend improvement in security posture Support for RFP response Monitor computer networks for security issues. Investigate security breaches and other cyber security incidents. Identify Data leak Discuss and present security findings to senior management. Security compliance Required Skills and Experience: Bachelor's degree is a must Experience in information security or related field. Experience with computer network penetration testing and techniques. Understanding of firewalls, proxies, SIEM, antivirus, Active Directory, and IDPS concepts. Handon experience with PA Traps and Antimalware products. Ability to identify and mitigate network vulnerabilities and explain how to avoid them. Understanding of patch management with the ability to deploy patches in a timely manner while understanding business impact. Scripting knowledge is a plus Security Standard awareness NIST, ISO 27001 and 270002 Knowledge of data privacy regulations like GDPR Certification CEH & CISSP. Cyber Security Threat hunting, Intelligence, response experience MITRE framework, DLP, Encryption knowledge, TTP Malware and Phishing analysis

Responsibilities: Lead the design and implementation of a scalable and robust security architecture that aligns with business goals and regulatory requirements. Define and promote security design patterns, reference architectures, and architectural frameworks that address emerging threats and align with industry standards. Collaborate with engineering teams to architect secure cloud and on-premise solutions, ensuring the integration of security controls. Proactively engage in presales activity with Virtusa sales representatives to drive customer conversations by coming up with creative solutions to business problems while demonstrating vertical industry expertise Act as a thought leader by staying up-to-date on security trends, technologies, and emerging threats, sharing insights and best practices with teams. Identify, evaluate, and manage relationships with strategic partners, vendors, and third-party security providers to enhance our security capabilities. Publish whitepapers, deliver presentations, and provide thought leadership to foster security awareness across the organization and the industry. Mentor and train junior security professionals, fostering a culture of continuous learning and professional growth. Work closely with executive management to ensure that proper pre-implementation and post-implementation activities are accounted for and in compliance with the corporate policies Write and present complex proposals for customers and prospects Collaborate on resourcing and recruiting. Ensure alignment of consulting team skills to pipeline demandTechnical Experience: 15+ years of experience, including at least 5 years of security consulting and solution designing. Knowledge of popular security tools in the space of EUC security, SIEM, Cloud security, MDR/XDR, DLP, Nework security and email security Drive security automation and accelerator initiatives to enhance efficiency and consistency in security offerings Strong understanding of the sales drivers, value proposition, for pre-sales and solutioning in cyber security Engage with customer stakeholders to validate solution requirements, explore solution options, and identify solution integration requirements Experience in scoping, planning, developing service proposal and Statement of Work. Build proactive pitches, offerings and commercial proposition presentation to internal and external customers Ability to generate effective present solutions via MS office tools Excellent communication skills, you will be working with sales and technology professionals across Fortune 500 clients Experience building and developing a high performing solutioning team (including remote resources) Deep understanding of both on premises and cloud security Demonstrated ability to work and interact with high-level client executives

Roles & Responsibilities: Experience in Splunk implementations and use case creation. Experience with Splunk ES, Splunk ITSI, Splunk UBA, Splunk SOAR Experience in any other SIEM along with Splunk is an advantage. Splunk Certification (Splunk Power User, Splunk Admin, Splunk Cloud Admin etc) Should be ready for travelling wherever projects demand

Description: Generic JD We are seeking an experienced Windows 10 to Windows 11 Migration Specialist to lead and manage the migration process across our organization. This role involves planning, coordinating, and executing the migration of end-user devices from Windows 10 to Windows 11 while ensuring minimal disruption to business operations. The successful candidate will work closely with various business units, IT teams, and stakeholders to ensure a smooth and efficient transition. Key Responsibilities: Migration Planning:o Develop a comprehensive migration strategy and timeline for the transition from Windows 10 to Windows 11. o Assess the current state of Windows 10 deployments, including hardware compatibility, software dependencies, and user requirements. o Identify potential risks and challenges associated with the migration and develop mitigation strategies. Business Coordination:o Act as the primary liaison between IT and business units, ensuring clear communication and alignment of migration objectives. o Collaborate with business leaders to understand their specific needs and constraints, and adjust migration plans accordingly. o Coordinate with business units to schedule migrations at times that minimize operational disruption. o Provide regular updates to stakeholders on the progress of the migration, addressing any concerns or issues that arise. Technical Execution:o Lead the technical deployment of Windows 11, including the development of deployment packages, scripting, and automation of the migration process. o Ensure that all devices meet the minimum hardware and software requirements for Windows 11. o Conduct pilot migrations to test and validate the process before full-scale deployment. o Oversee the deployment of Windows 11 across all end-user devices, ensuring a consistent and reliable upgrade experience. End-User Support:o Provide training and support to end-users before, during, and after the migration to ensure a smooth transition. o Develop and distribute user guides, FAQs, and other resources to help users adapt to Windows 11. o Address any technical issues that arise during the migration, working closely with support teams to resolve them quickly. Post-Migration Activities:o Conduct post-migration reviews to identify any issues, gather user feedback, and implement improvements for future migrations. o Ensure that all devices are fully operational and compliant with organizational policies after the migration. o Monitor the performance and stability of Windows 11 deployments, addressing any long-term issues that may arise. Documentation and Reporting:o Document all aspects of the migration process, including technical procedures, user communications, and project plans. o Provide detailed reports on the progress, challenges, and outcomes of the migration to IT leadership and business stakeholders. o Maintain an inventory of devices, tracking their status throughout the migration process. Qualifications: Education:o Bachelors degree in Information Technology, Computer Science, or a related field. o Relevant certifications (e.g., Microsoft Certified:Windows Client, ITIL) are a plus. Experience:o Minimum of 5 years of experience in IT, with significant experience in Windows OS migrations, particularly from Windows 10 to Windows 11. o Proven experience in managing large-scale IT projects, including coordination with business units and stakeholders. o Strong understanding of Windows 11 features, requirements, and deployment tools (e.g., Microsoft Endpoint Manager, SCCM, Intune). Skills:o Excellent project management skills, with the ability to manage multiple tasks and priorities effectively. o Strong communication and interpersonal skills, with the ability to work collaboratively with both technical and non-technical stakeholders. o Proficiency in automation and scripting (e.g., PowerShell) for deployment and migration tasks. o Strong problem-solving skills and attention to detail. o Ability to work independently and make decisions that balance technical requirements with business needs. Preferred Qualifications: Experience in enterprise environments with a large and diverse user base. Familiarity with software and hardware compatibility assessments for Windows 11. Experience with Microsoft Endpoint Manager, SCCM, Intune, and other deployment tools. Named Job Posting? (if Yes - needs to be approved by SCSC) Additional Details Global Grade :B Level :To Be Defined Named Job Posting? (if Yes - needs to be approved by SCSC) :No Remote work possibility :Yes Global Role Family :To be defined Local Role Name :To be defined Local Skills :Microsoft Windows;data migration Languages Required::ENGLISH Role Rarity :To Be Defined

Experience in monitoring and analyzing incidents on DLP solution. Strong knowledge of various data security tool & techniques such as DLP, DRM (e.g. Symantec DLP,CASB, Zscaler, Seclore etc.) Hands-on experience with implementation of DLP Required Candidate profile Ability to handle, resolve data security incidents minimizing impact. Proficient in preparation of reports, dashboards and documentation. Experience in maintaining various metrics and SLAs.

Position: Information Protection Lead Keywords: Insider Risk Management, Insider Threat, Data Protection, DLP, Data Classification, Data Discovery, Data Loss, Data Security Job Description: We are seeking a highly motivated and experienced professional to build and lead our Insider Threat & Risk Management team within the Data Security group. This role is critical in identifying, assessing, and mitigating insider risks to protect our firms critical data, intellectual property, and operational integrity. The Consultant/Lead will develop and execute an insider threat program, leveraging behavioral analytics, security tools, and cross-functional collaboration to proactively detect and respond to threats. Responsibilities: Program Development & Leadership: Design and implement a comprehensive insider threat and risk management program aligned with business and security objectives. Threat Detection & Response: Utilize data analytics, behavioral indicators, and security tools (e.g., UEBA, DLP, SIEM) to monitor and investigate potential insider threats. Familiarity with network security, endpoint protection, and cloud security principles. Ability to balance proactive prevention with reactive incident response. High ethical standards and discretion when handling sensitive information. Demonstrated ability to build and lead teams, with excellent communication and interpersonal skills. ¢ Risk Assessment & Mitigation: Conduct insider risk assessments, define detection methodologies, and recommend mitigation strategies. ¢ Collaboration & Stakeholder Engagement: Work closely with Legal, HR, IT, Security Operations, and Compliance teams to develop policies, response frameworks, and training initiatives. ¢ Incident Handling & Investigations: Lead investigations into potential insider threats, ensuring timely response and remediation while adhering to privacy and legal considerations. ¢ Security Awareness & Training: Drive awareness programs to educate employees and leaders about insider risks and best practices. ¢ Regulatory & Compliance Alignment: Ensure the program aligns with industry standards (e.g., NIST, ISO 27001, SOC2) and regulatory requirements. ¢ Continuous Improvement: Regularly assess and refine the program to adapt to evolving threats and business needs. Qualifications : - Bachelors degree in information security, Cybersecurity, or related field. - years of experience in information security, with a focus on information protection, DLP and data protection. - Strong understanding of information security frameworks, regulations, and standards (e.g., ISO 27001, NIST, GDPR). - Experience with security technologies such as data classification, DLP, encryption, SIEM, and access controls. - Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or equivalent. - Excellent analytical and problem-solving skills, with the ability to assess risks and recommend effective solutions. - Strong communication and interpersonal skills to collaborate with various teams and stakeholders. - Proven track record of successfully implementing and managing information protection programs.

Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Email Security Good to have skills : NA Minimum 2 year(s) of experience is required Educational Qualification : Related qualifications and certifications As a Security Engineer, you will be responsible for applying your expertise in Email Security to design, build, and protect enterprise systems, applications, data, assets, and people. Your typical day will involve safeguarding information, infrastructures, applications, and business processes against cyber threats using your knowledge of Email Security. Roles & Responsibilities: Design, implement, and maintain Email Security solutions to protect enterprise systems, applications, data, assets, and people. Conduct regular security assessments and audits to identify vulnerabilities and recommend appropriate remediation measures. Collaborate with cross-functional teams to ensure that security policies, procedures, and standards are implemented and adhered to. Provide technical guidance and support to other teams on Email Security-related issues and incidents. Professional & Technical Skills: Must To Have Skills:In-depth knowledge of Email Security technologies and solutions like minecast, O365 and bitlocker tools Good To Have Skills:Experience with other security technologies such as Firewalls, IDS/IPS, SIEM, and DLP. Strong understanding of security policies, procedures, and standards. Experience with security assessments and audits. Excellent analytical and problem-solving skills. Additional Information: The candidate should have hands-on experience on minecast, O365 and bitlocker tools The candidate should have a minimum of 3 years of experience in Email Security. The ideal candidate will possess a strong educational background in Computer Science, Information Technology, or a related field, along with relevant certifications such as CISSP, CISM, or CEH. This position is based at our Bangalore office. Qualification Related qualifications and certifications

Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Email Security Good to have skills : NA Minimum 3 year(s) of experience is required Educational Qualification : Related qualifications and certifications Summary :As a Security Engineer, you will be responsible for applying your expertise in Email Security to design, build, and protect enterprise systems, applications, data, assets, and people. Your typical day will involve safeguarding information, infrastructures, applications, and business processes against cyber threats using your knowledge of Email Security. Roles & Responsibilities: Design, implement, and maintain Email Security solutions to protect enterprise systems, applications, data, assets, and people. Conduct regular security assessments and audits to identify vulnerabilities and recommend appropriate remediation measures. Collaborate with cross-functional teams to ensure that security policies, procedures, and standards are implemented and adhered to. Provide technical guidance and support to other teams on Email Security-related issues and incidents. Professional & Technical Skills: Must To Have Skills:In-depth knowledge of Email Security technologies and solutions like minecast, O365 and bitlocker tools Good To Have Skills:Experience with other security technologies such as Firewalls, IDS/IPS, SIEM, and DLP. Strong understanding of security policies, procedures, and standards. Experience with security assessments and audits. Excellent analytical and problem-solving skills. Additional Information: The candidate should have hands-on experience on minecast, O365 and bitlocker tools The candidate should have a minimum of 5 years of experience in Email Security. The ideal candidate will possess a strong educational background in Computer Science, Information Technology, or a related field, along with relevant certifications such as CISSP, CISM, or CEH. This position is based at our Gurugram office. Qualifications Related qualifications and certifications

8 years of relevant exp in TrendMicro, Proofpoint, Trellix, Microsoft email security, solution design, implementation, POC and Presales. Manage the design, deploy of DLP solutions. Well versed with all the protocols of email exchanges DKIM,Dmarc,etc.

Project Role : Application Lead Project Role Description : Lead the effort to design, build and configure applications, acting as the primary point of contact. Must have skills : ServiceNow Good to have skills : NA Minimum 5 year(s) of experience is required Educational Qualification : 1 Minimum 15 years of Fulltime Education Summary :As a ServiceNow Application Lead, you will be responsible for leading the effort to design, build, and configure applications, acting as the primary point of contact. Your typical day will involve collaborating with cross-functional teams, developing and deploying ServiceNow applications, and ensuring the successful delivery of projects. Roles & Responsibilities: Development in Servicenow and support Testing for the GRCR portfolio Support and participate in platform related activities as required Support Integrations with other Cloud services.Professional & Technical Skills: Team Player Work Experience in ServiceNow Development / Implementation Experience in working in Scrum / Agile Model Extensive work experience with ServiceNow. Extensive Development experience in IRM/GRC module Certified in ServiceNow IRM/GRC module.Additional Information: The candidate should have a minimum of 5 years of experience in ServiceNow development and configuration. The ideal candidate will possess a strong educational background in computer science or a related field, along with a proven track record of delivering impactful ServiceNow solutions. This position is based at our Chennai office. Qualification 1 Minimum 15 years of Fulltime Education

Project Role : Application Lead Project Role Description : Lead the effort to design, build and configure applications, acting as the primary point of contact. Must have skills : ServiceNow Good to have skills : NA Minimum 7.5 year(s) of experience is required Educational Qualification : 1 Minimum of 15 years of education Summary :As a ServiceNow Application Lead, you will be responsible for leading the effort to design, build, and configure applications, acting as the primary point of contact. Your typical day will involve collaborating with cross-functional teams, analyzing business requirements, and developing solutions using ServiceNow. Roles & Responsibilities:1 Development in ServiceNow and support Testing for the GRCR portfolio2 ServiceNow Developer Certified and should have IRM knowledge, Having IRM certification is preferred3 Support Integrations with other Cloud services Professional & Technical Skills:1 Extensive work experience with ServiceNow.2 Extensive Development experience in IRM/GRC module.3 Certified in ServiceNow IRM/GRC module.4 Team Player5 Work Experience in ServiceNow Development / Implementation6 Experience in working in Scrum / Agile Model Additional Information:1 The candidate should have a minimum of 7 years of experience in ServiceNow development.2 The ideal candidate will possess a strong educational background in computer science or a related field, along with a proven track record of delivering impactful ServiceNow solutions.3 This position is based at our Chennai office. Qualification 1 Minimum of 15 years of education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Managed Cloud Security Services Good to have skills : NA Minimum 7.5 year(s) of experience is required Educational Qualification : 15 years of education Summary :As a Security Architect, you will be responsible for defining the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve documenting the implementation of the cloud security controls and transitioning to cloud security-managed operations. Roles & Responsibilities: Lead the development and implementation of cloud security frameworks and architectures for Managed Cloud Security Services. Ensure that the cloud security framework meets business requirements and performance goals. Document the implementation of cloud security controls and transition to cloud security-managed operations. Collaborate with cross-functional teams to ensure the successful implementation of cloud security solutions. Stay updated with the latest advancements in cloud security and integrate innovative approaches for sustained competitive advantage. Professional & Technical Skills: Must To Have Skills:Strong experience in Managed Cloud Security Services. Good To Have Skills:Experience with cloud security technologies such as AWS, Azure, and Google Cloud Platform. Strong understanding of cloud security frameworks and architectures. Experience with security tools such as SIEM, IDS/IPS, and DLP. Experience with security compliance frameworks such as ISO 27001, SOC 2, and PCI DSS. Solid grasp of network security concepts such as firewalls, VPNs, and load balancers. Additional Information: The candidate should have a minimum of 7.5 years of experience in Managed Cloud Security Services. The ideal candidate will possess a strong educational background in computer science, information technology, or a related field, along with a proven track record of delivering impactful data-driven solutions. This position is based at our Bengaluru office. Qualification 15 years of education

Project Role : Cloud Advisor Project Role Description : Implement scalable, high performance hosting solutions using Cloud Technologies. Identify business requirements and corresponding cloud based solutions. Plan and deliver legacy infrastructure transformation and migration to drive next-generation business outcomes. Must have skills : Microsoft Endpoint Configuration Manager Good to have skills : Microsoft Windows Desktop Management Minimum 3 year(s) of experience is required Educational Qualification : Graduated Summary :As a Cloud Advisor for Infra Managed Service, you will be responsible for implementing scalable, high-performance hosting solutions using Cloud Technologies. Your typical day will involve identifying business requirements and corresponding cloud-based solutions, planning and delivering legacy infrastructure transformation and migration to drive next-generation business outcomes, and utilizing your expertise in Microsoft Endpoint Configuration Manager. Roles & Responsibilities: Lead the implementation of scalable, high-performance hosting solutions using Cloud Technologies. Identify business requirements and corresponding cloud-based solutions. Plan and deliver legacy infrastructure transformation and migration to drive next-generation business outcomes. Utilize your expertise in Microsoft Endpoint Configuration Manager to ensure successful implementation and management of cloud-based solutions. Collaborate with cross-functional teams to ensure successful delivery of cloud-based solutions. Professional & Technical Skills: Must To Have Skills:Expertise in Microsoft Endpoint Configuration Manager. Good To Have Skills:Experience with Microsoft Windows Desktop Management. Strong understanding of Cloud Technologies and their implementation. Experience in legacy infrastructure transformation and migration. Ability to collaborate with cross-functional teams to ensure successful delivery of cloud-based solutions. Additional Information: The candidate should have a minimum of 3 years of experience in Microsoft Endpoint Configuration Manager. The ideal candidate will possess a strong educational background in computer science or a related field, along with a proven track record of delivering impactful cloud-based solutions. This position is based at our Gurugram office. Qualifications Graduated

Project Role : Security Delivery Lead Project Role Description : Leads the implementation and delivery of Security Services projects, leveraging our global delivery capability (method, tools, training, assets). Must have skills : Microsoft 365 Security & Compliance Good to have skills : NA Minimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Delivery Lead, you will lead the implementation and delivery of Security Services projects, leveraging our global delivery capability. You will be responsible for ensuring the successful execution of projects, utilizing our method, tools, training, and assets. Your role will involve managing and coordinating the team, making key decisions, and collaborating with multiple teams to provide solutions to problems. You will contribute to the overall success of the projects and ensure the delivery of high-quality security services. Roles & Responsibilities: Expected to be an SME in Microsoft 365 Security & Compliance. Collaborate and manage the team to perform effectively. Responsible for team decisions and ensuring their successful execution. Engage with multiple teams and contribute to key decisions. Provide solutions to problems for their immediate team and across multiple teams. Ensure the delivery of high-quality security services. Manage and coordinate the team to meet project objectives. Identify and mitigate risks to ensure project success. Professional & Technical Skills: Must To Have Skills:Proficiency in Microsoft 365 Security & Compliance. Strong understanding of security principles and best practices. Experience in implementing and managing security solutions. Knowledge of security frameworks and standards. Hands-on experience with security tools and technologies. Good To Have Skills:Experience with cloud security solutions. Professional & Technical Skills: Must To Have Skills:Experience in Microsoft 365 Security & Compliance, Microsoft Defender for Endpoint, EDR, Threat Vulnerability Management, Qualys scanner Good To Have Skills:Experience in other security technologies such as SIEM, IDS/IPS, and firewalls. Strong understanding of security best practices and standards. Experience in leading security services projects. Excellent communication and interpersonal skills. Additional Information: The candidate should have a minimum of 7.5 years of experience in Microsoft 365 Security & Compliance. This position is based at our Pune office. A 15 years full time education is required. Qualifications 15 years full time education

Reports To - Group IT Manager Job Overview: Due to continued growth of our business, we have an exciting opportunity for an enthusiastic and highly motivated technical support engineer to join our team at our Manila office. Assisting with the smooth running of the IT infrastructure, the successful candidate will be part of a robust team that provide support across the business ensuring hardware and software issues are resolved promptly and effectively. The successful candidate will have a wealth of experience in EUC support, Enterprise IT Infrastructure implementation and support both on Cloud and on premise. They will have a thorough understanding of IT Security best practices. Excellent communication skills both face to face and over the phone and have worked in a similar position supporting end users and troubleshooting Role Responsibilities (Key Responsibilities and Tasks) To provide support to users in resolving IT application-related incidents, service requests and problems in a timely and efficient manner in line with Business requirements. To provide timely communication to users on the status of their service requests and incidents. Prioritise and schedule assigned support activities and tasks To apply appropriate application maintenance, support and incident management processes and procedures to support and maintain IT applications, and to investigate and resolve IT application-related incidents Provide first line support for business applications and support of associated business software Liaise with 3rd Party Suppliers of solutions in support of IT application-related incidents and ensure problems are resolved in a timely and professional manner Design, test and modify management reports using existing tools To support the development of applications under the supervision of the Group IT Manager Maintain IT application support technical documentation Police IT Policies and Procedures to ensure compliance with ISO 27001. Monitoring of Hardware and Software inventory and ensuring that only approved/licenced devices and softwares are used Carry out ad hoc duties as required by the Group IT Manager Implementation of a Global IT Strategy at a Global and Regional level Role Requirements (Professional & Technical Expertise) The successful candidate would have technical skills in the following areas: Understanding of and experience with Incident/Request/Problem ITIL principles End user compute support across all locations Microsoft Windows Desktop, Server OS and Virtual environment administration Knowledge of Server based hardware (e.g., Dell, HP) Excellent knowledge of the Microsoft Cloud stack, including Azure Cloud, Azure AD, M365 product suite with a particular focus on Exchange online, SharePoint and M365 Copilot administration Can display a strong understanding of Microsoft Defender suite for Endpoints (Intune), AIP, DLP and Cloud security Experience in the implementation and management of Networks, Wi-Fi and Enterprise Firewall solutions across a wide range of vendors Knowledge of enterprise Backup Solutions (e.g., Veeam, Azure Backup) Implement and maintain Cloud and on-prem storage solutions Experience with monitoring solutions utilizing traffic analyzer, NetFlow collectors, and capacity management tools Experience in the following areas SIEM, Azure Sentinel, Vulnerability Intelligence: Qualys, Tenable IO or Nessus - Windows patch management, 3rd party application patch management tools Thorough understanding of Threat Prevention and Detection technologies along with Malware Detection and Remediation technologies Knowledge of Information Security Management frameworks such as ISO 27001, NIST Cybersecurity, CIS Controls. Understanding of the Policies and Processes required for compliance Experience with the setup and support of Secure Email Gateway and Email archiving systems. Experience with the Autodesk product suite would be an advantage Good organizational and time management skills Must be presentable, with good customer facing skills Excellent written and verbal communication skills and can provide comprehensive documentation. Ability to plan and prioritise workload Ad hoc travel maybe required to other B&W offices . Getting Results And Working Together : At B&W our VISION is to be a Leading Global MEP Consultancy and we have five STRATEGIC BUSINESS THEMES that guide how we achieve this. These priorities are fundamental to our business planning process and underpin our ability to achieve our goals and objectives. The way we work with each other, and our clients is critical to our success, and we have five VALUES to support this: Accountability > Everyone is accountable. Integrity > We are straight talking, respectful and fair. Simplicity > Both in our approach and solutions. Supportive > We are approachable, inclusive and recognise success. Quality > We strive to get it right first time, every time. When Working Together We Are: Supportive Accountable Collaborative Respectful The Key Tools To Be Effective Are: Attention to detail Planning Solving problems Making decisions .

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Palo Alto Networks Prisma Access Secure Access Service Edge (SASE) Good to have skills : NA Minimum 12 year(s) of experience is required Educational Qualification : 15 years full time education "Primary Skill :Good experience in security architecture design in Cloud and on-prem.Team management, Delegating responsibilities, Capablity development, Motivating team."Design and implementation in NGFW (PA/Fortinet/Checkpoint/cisco),Web Security( Zscaler, Symantec), in on-prem and Cloud, End point protection, multi-factor authenticationFirewall rule migration using tool and Data center migrationGood Hand-on Experience in AWS, Azure, GCP," Design and implementation experience of network security technologies - Next Generation Firewall (NGFW), Web Application Firewall (WAF), Intrusion Prevention / Detection System (IPS/IDS) - Fortigate / PaloAlto, F5, Imperva, Design and implementation experience of Endpoint Security Solutions - Antivirus, AntiMalware, Endpoint Detection and Response (EDR), Device Control, Vulnerability Protection, Application Control - Trend Micro, Crowdstrike, Sentinel One Design and implementation experience of Cloud Proxy Servers (Zscaler/NetSkope/ForcePoint/PaloAlto Prisma/McAfee) Design and implementation experience of Data Protection Solutions (Endpoint DLP, Network DLP (Email & Web), CASB) Design and implementation experience of Firewall Rule-set Analyzer Tools like Skybox / Algosec / Firemon / Tufin. Design and implementation experince of NAC solution ( Cisco ISE, Aruba) Data center migration experince and firewall rule migration using various tools." Hand-on experience in Azure/AWS design , Installation & configuration of various NGFW such as Paloalto, FortiGate, Checkpoint, Cisco, Prisma Cloud. End point protection as Symantec, Mcafee, Trend micro, EDR solution. Good Hands on experience and troubleshooting experience in NGFW such as Paloalto, Prisma, fortigate, Checkpoint, Cisco. End point protection as Symantec, Mcafee, Trend micro, EDR solution. Design and hands on experience to skybox, firemon, Tufin Firewall rule review tool, Firewall on-boarding Checkpoint, Cisco, Palo alto Certification, Cloud certification Experince on Infra Security tools Assessment and security standards like (NIST, CIS, ISO HIPPA & PCI DSS ) NAC, Cisco ISE, CASB Solution Netscope, Web security technologies as Zscaler,SymantecWeb security technologies as Zscaler, Symantec. Good conceptual and working knowledge around Workflow, Approval process.* Manageing and leading the team.* Good Articulation and presentation skills B.E or MCA or M.Sc with Good Computer Science Background with good academic record of 65% and above Presentation skill Qualifications 15 years full time education

Roles and Responsibilities Design, implement, and maintain security solutions such as Firewall, IPS/IDS, WAF, DLP, APT, NDR, DDoS Tool, Web Gateway, Anti-Spam and Email Security Gateway. Configure F5 Load Balancer for high availability and scalability. Monitor network traffic using tools like Insider Threat Management System to detect potential threats. Implement Insider Threat Management strategies to mitigate risks from within the organization. Ensure compliance with industry standards for IT security best practices. Mandatory Certifications / Diplomas: NSE4/PCNSE/F5/ F5 Certified BIG-IP Administrator/CISSP

Principal Duties and ResponsibilitiesWe are focused on helping our valued clients to design and implement large scale transformational programs to manage cyber threats. We enable our clients to define their overall cyber strategy by designing global and pan-enterprise programs that focus on reducing threats, evaluate their priorities, strengths and weaknesses and roll out large scale changes to achieve goals. If dynamic and fast-paced environments, cross-capability exposure, freedom to work and the ability to have a real impact on a rapidly growing team appeals to you, then that is what we are looking for. Youll join an ambitious team of highly motivated security specialists who interface with CIOs, CTOs, CISOs and CFOs in addressing their complex requirements on a day-to-day basis.We are looking for a Data Security expert, with a great eye for risk reduction and continual improvement opportunities. Following are some of the responsibilities that you will handle: Advise clients in understanding the problems and challenges in data security and work collaboratively with them to enhance capabilities Gather requirements, develop use cases, evaluate vendor solutions, develop architecture & design, and test data protection and data security solutions Design people, process and technology solutions to reduce the potential of data compromise Qualifications Bachelors Degree in Engineering MBA Degree from Tier 1 College 6+ years of experience in multiple domains with expertise in Data Security Excellent analytical skills; able to breakdown complex problems, multi-faceted problems with actionable steps Exposure to Cloud and On-prem security requirements ExperienceExposure and knowledge in at least 3 of the following Data Security domains: Data Security Assessment: Develop the Data Security framework, perform the assessment and generate roadmap Data Discovery, Classification, Handling and Inventory: Design Data classification and inventory programs including the use of data discovery tools Define and maintain data classification and labeling policies based on business and regulatory requirements Collaborate with business units to understand data protection needs and ensure the appropriate protection and handling of sensitive data Develop data retention and disposition policies to ensure compliance with retention requirements and relevant regulations. Design Data Classification Schema Information Rights Management (IRM) Design the information rights management use cases Develop the information rights management schema Evaluate the tools available in the market for IRM Design the strategy to implement IRM Develop the user supporting documents to implement IRM Data Obfuscation Design and develop encryption strategy and use cases for the databases, applications, servers, etc. Design PKI, Certificate Management and Key management strategy Map industry best practices around encryption tools like Keyfactor/Hashi Data Loss Prevention Design and develop use cases for DLP across endpoints, network, cloud, etc. Design the DLP rulesets based on the identified use cases Provide a comparative analysis of the DLP solutions and fitment report Identify the ways of circumventing existing DLP controls Develop high-level and low-level design documents Database Activity Monitoring Design the Database Activity Monitoring use cases Evaluate the landscape to ensure coverage for type of databases like Oracle, MySQL, applications, etc. Evaluate the CSPs native solutions and opportunities of integrating with SIEM/PAM etc. Cloud Access Security Broker (CASB) Develop use cases for CASB Evaluate the native CSPs control and develop a comparative analysis Design the several implementation modes of CASB based on the use cases Evaluate integration of CASB with other upstream and downstream solutions Qualifications Key Competencies and Skills Good understanding of Microsoft Purview or similar data governance and protection tools like Varonis, Symantec, ForcePoint, Trellix, IBM Guardium, Boldon James, Titus, etc. Relevant certifications such as Microsoft Certified:Information Protection Administrator or similar credentials would be beneficial CISSP, CISM or related certifications preferred Strong oral and written communication skills Good understanding of information security frameworks like NIST, ISO27K, PCI DSS, CCPA, GDPR, HIPAA, etc. Strong interpersonal and leadership skills Demonstrated ability to analyze and resolve problems Demonstrated ability to lead programs / projects Strong documentation and planning skills. Established project management skills Ability to analyze and interpret data protection metrics and reports to identify trends and potential issues Additional Information Experience in geographies like North America, EU, UK, Japan and Middle East will be good to have.