About the company
SBI Card is a leading pure-play credit card issuer in India, offering a wide range of credit cards to cater to diverse customer needs. We are constantly innovating to meet the evolving financial needs of our customers, empowering them with digital currency for seamless payment experience and indulge in rewarding benefits. At SBI Card, the motto 'Make Life Simple' inspires every initiative, ensuring that customer convenience is at the forefront of all that we do. We are committed to building an environment where people can thrive and create a better future for everyone.SBI Card is proud to be an equal opportunity & inclusive employer and welcome employees without any discrimination on the grounds of race, gender, religion, creed, disability, sexual orientation, gender identity, marital status, caste etc. SBI Card is committed to fostering an inclusive and diverse workplace where all employees are treated equally with dignity and respect which makes it a promising place to work.Join us to shape the future of digital payment in India and unlock your full potential.
What’s In It For YOU
- SBI Card truly lives by the work-life balance philosophy. We offer a robust wellness and wellbeing program to support mental and physical health of our employees.
- Admirable work deserves to be rewarded. We have a well curated bouquet of rewards and recognition program for the employees.
- Dynamic, Inclusive and Diverse team culture
- Gender Neutral Policy
- Inclusive Health Benefits for all - Medical Insurance, Personal Accidental, Group Term Life Insurance and Annual Health Checkup, Dental and OPD benefits
- Commitment to the overall development of an employee through comprehensive learning & development framework
Role Purpose
Data Governance Specialist will co-ordinate, embed and monitor data protection and compliance in accordance with SBI card polices and procedures and applicable regulations. Individual in this position is to assist Data Governance & TPR Management Lead in formation and implementation of data governance framework, policy, and standards. He/She should also be responsable for conducting Data security audits / assessments at the vendor locations falling under his/her scope.
Role Accountability
- Evaluating the effectiveness of the Data security controls in business process, Conducting on-site audits, including reviewing documents, observing processes, and testing controls.
- Preparing audit reports that clearly articulate findings and recommendations for improvement.
- Identifying and define Critical Data Elements (CDEs), Business Term, Business Rules, Data Sets, Data Attribute, Classifications, Report Attribute etc within business operation process
- Manage control structures within a simple environment to ensure the accuracy, integrity, and quality of data through all upstream and downstream data channels.
- Conduct Data security specific risk assessments/testing from information security perspective using ISO27001, PCI-DSS, UIDAI and RBI framework to meet the organization standards & policy requirement.
- Ensure that the Data Security risks are identified, recorded, reported, and managed properly throughout the lifecycle of Risk Management framework.
- Drive and Track remediation of Risk, further perform remediation testing.
- Partner with business stakeholders across the company to raise awareness of information security, Data protection & risk management concerns.
- Monitor and report on data governance compliance, identifying and addressing any non-compliant areas.
- Act as a subject matter expert to assist the business in identifying and mitigating data security /exposure risks on their vendor relationships.
- Supports the reporting of Key Performance Indicators (KPIs), metrics and other management needs.
- Continuously review and improve data governance processes and procedures to ensure they are up-to-date and effective.
Stakeholder/Vendor Management
- Effectively manage cross-functional internal team third-party vendors for Data Governance Program
- Maintain relationship with IT, Business Teams and Suppliers (Third Parties) to ensure control effectives across envoirnment
Functional areas
- Risk Management & Governance, IT Management and Business Functions
- Stakeholders: IT Teams, Business Operations Team, Third Party/Suppliers
Measures of Success
- Successful number of Data Security Assessment/Audit completed for Vendor location
- Increase in maturity of vendor risk Programs (Adoption & Capabilities).
- Development and maturity of the Data Security and Third-Party risk profiling of SBI Card
- Successful completion of data governance related projects & Initiatives within the budgeted timeline and cost
- Delivery of project plans, milestone updates, presentations, assessment reports and communications to senior management and other relevant stakeholders
Technical Skills / Experience / Certifications
- In-depth knowledge of the data governance industry best practices, business and technology issues related to management of enterprise data assets and approaches related to data protection.
- Strong experience of regulator mandated programs with complex coordination requirements
- Experience in a Data related field (Data Management, Records Management, Data Privacy, Information Security).
- Understand Data Security and Governance controls are inline to standards & frameworks such as DAMA, EDMC
- PCI-DSS, ISO27001 & audit experience. Strong ability to devise, drive and implement standard processes and best practices (both from a security and risk perspective) for all the suppliers.
- Ability to collaborate, challenge and influence peers. Passion for project-based execution and process improvement.
- Good Documentation, Communication, presentation, interpersonal Skills
- Well versed with key Data Security risks and mitigations (technology and manual) around database integrations & implementations
- Demonstrated ability to excel both independently and as a team member in a lively, collaborative environment.
- Excellent written and verbal communications skills with a demonstrated ability to make difficult concepts easy to understand.
- Industry-standard certifications such DCPP (DSCI Certified Privacy Professional), DSCI Certified Privacy Lead Assessor (DCPLA), CIPP/E etc.
- Experience managing Data Privacy/Security service providers/supplier relationships.
Competencies critical to the role
- Demonstrate skills to achieve stated objectives.
- Demonstrate communication skills to address different audiences.
- Demonstrate self-starter with ability to gain required knowledge in dynamic environments and remain up to date on cutting-edge technologies.
- Demonstrate teamwork & collaboration.
- Demonstrate analytical, troubleshooting, and problem-solving skills.
Qualification
Bachelor’s Degree in a related area such as Computer Science or Information Technology or B. Tech
Preferred Industry
BFSI / NBFC /E-commerce/IT & ITES / Telecom
