- SBI Card truly lives by the work-life balance philosophy. We offer a robust wellness and wellbeing program to support mental and physical health of our employees.
- Admirable work deserves to be rewarded. We have a well curated bouquet of rewards and recognition program for the employees.
- Dynamic, Inclusive and Diverse team culture
- Gender Neutral Policy
- Inclusive Health Benefits for all - Medical Insurance, Personal Accidental, Group Term Life Insurance and Annual Health Checkup, Dental and OPD benefits
- Commitment to the overall development of an employee through comprehensive learning & development framework
Role Purpose
Data Governance Specialist will co-ordinate, embed and monitor data protection and compliance in accordance with SBI card polices and procedures and applicable regulations. Individual in this position is to assist Data Governance & TPR Management Lead in formation and implementation of data governance framework, policy, and standards. He/She should also be responsable for conducting Data security audits / assessments at the vendor locations falling under his/her scope.
Role Accountability
- Evaluating the effectiveness of the Data security controls in business process, Conducting on-site audits, including reviewing documents, observing processes, and testing controls.
- Preparing audit reports that clearly articulate findings and recommendations for improvement.
- Identifying and define Critical Data Elements (CDEs), Business Term, Business Rules, Data Sets, Data Attribute, Classifications, Report Attribute etc within business operation process
- Manage control structures within a simple environment to ensure the accuracy, integrity, and quality of data through all upstream and downstream data channels.
- Conduct Data security specific risk assessments/testing from information security perspective using ISO27001, PCI-DSS, UIDAI and RBI framework to meet the organization standards & policy requirement.
- Ensure that the Data Security risks are identified, recorded, reported, and managed properly throughout the lifecycle of Risk Management framework.
- Drive and Track remediation of Risk, further perform remediation testing.
- Partner with business stakeholders across the company to raise awareness of information security, Data protection & risk management concerns.
- Monitor and report on data governance compliance, identifying and addressing any non-compliant areas.
- Act as a subject matter expert to assist the business in identifying and mitigating data security /exposure risks on their vendor relationships.
- Supports the reporting of Key Performance Indicators (KPIs), metrics and other management needs.
- Continuously review and improve data governance processes and procedures to ensure they are up-to-date and effective.
Stakeholder/Vendor Management
- Effectively manage cross-functional internal team third-party vendors for Data Governance Program
- Maintain relationship with IT, Business Teams and Suppliers (Third Parties) to ensure control effectives across envoirnment
Functional areas
- Risk Management & Governance, IT Management and Business Functions
- Stakeholders: IT Teams, Business Operations Team, Third Party/Suppliers
Measures of Success
- Successful number of Data Security Assessment/Audit completed for Vendor location
- Increase in maturity of vendor risk Programs (Adoption & Capabilities).
- Development and maturity of the Data Security and Third-Party risk profiling of SBI Card
- Successful completion of data governance related projects & Initiatives within the budgeted timeline and cost
- Delivery of project plans, milestone updates, presentations, assessment reports and communications to senior management and other relevant stakeholders
Technical Skills / Experience / Certifications
- In-depth knowledge of the data governance industry best practices, business and technology issues related to management of enterprise data assets and approaches related to data protection.
- Strong experience of regulator mandated programs with complex coordination requirements
- Experience in a Data related field (Data Management, Records Management, Data Privacy, Information Security).
- Understand Data Security and Governance controls are inline to standards & frameworks such as DAMA, EDMC
- PCI-DSS, ISO27001 & audit experience. Strong ability to devise, drive and implement standard processes and best practices (both from a security and risk perspective) for all the suppliers.
- Ability to collaborate, challenge and influence peers. Passion for project-based execution and process improvement.
- Good Documentation, Communication, presentation, interpersonal Skills
- Well versed with key Data Security risks and mitigations (technology and manual) around database integrations & implementations
- Demonstrated ability to excel both independently and as a team member in a lively, collaborative environment.
- Excellent written and verbal communications skills with a demonstrated ability to make difficult concepts easy to understand.
- Industry-standard certifications such DCPP (DSCI Certified Privacy Professional), DSCI Certified Privacy Lead Assessor (DCPLA), CIPP/E etc.
- Experience managing Data Privacy/Security service providers/supplier relationships.
Competencies critical to the role
- Demonstrate skills to achieve stated objectives.
- Demonstrate communication skills to address different audiences.
- Demonstrate self-starter with ability to gain required knowledge in dynamic environments and remain up to date on cutting-edge technologies.
- Demonstrate teamwork & collaboration.
- Demonstrate analytical, troubleshooting, and problem-solving skills.
Qualification
Bachelor s Degree in a related area such as Computer Science or Information Technology or B. Tech
Preferred Industry
BFSI / NBFC /E-commerce/IT & ITES / Telecom
