1,374 Security Measures jobs in India

Data Protection and Privacy Compliance:

Ensure compliance with applicable data protection laws and regulations (e.g., GDPR, CCPA, NDPR).

Develop, implement, and maintain data protection policies, procedures, and guidelines.

Conduct regular reviews of privacy policies, consent mechanisms, and data subject rights processes.

Act as the primary point of contact for data protection authorities and external stakeholders.

2. Internal Audit:

Collaborate with internal audit teams to evaluate data protection and privacy risks.

Perform audits on data processing activities, ensuring adherence to internal and external requirements.

Provide recommendations to enhance data protection controls and mitigate identified risks.

Document audit findings and follow up on corrective actions.

3. Training and Awareness:

Develop and deliver data protection training programs for employees at all levels.

Raise awareness about data privacy and the importance of compliance across the organization.

4. Incident Management:

Monitor and respond to data breaches, ensuring timely reporting to authorities as required.

Lead investigations into potential data protection incidents and prepare detailed reports.

5. Risk Assessment and Monitoring:

Conduct regular data protection impact assessments (DPIAs).

Monitor and review data processing activities to identify and mitigate risks.

Stay updated on developments in data protection laws, regulations, and best practices.

6. Vendor Management:

Assess third-party vendors for compliance with data protection requirements.

Establish data processing agreements (DPAs) with vendors handling personal data.

7. Reporting:

Prepare reports on data protection activities, risks, and compliance status for senior management.

Provide input for the annual compliance and audit plans.

Key Skills and Qualifications:

1. Education and Experience:

Bachelors degree in IT, or a related field (Masters preferred).

Professional certifications such as CIPP/E, CIPM, CIPT, or CDPO are highly desirable.

Minimum of 5 years of experience in data protection, compliance, or internal audit.

2. Technical Skills:

Strong knowledge of global data protection laws and frameworks (e.g., GDPR, CCPA, NDPR).

Familiarity with IT systems, data protection technologies, and cybersecurity principles.

Experience in conducting DPIAs and managing data breaches.

3. Soft Skills:

Excellent communication and presentation skills.

Strong analytical and problem-solving abilities.

Ability to work independently and with cross-functional teams.

Attention to detail and a proactive approach to compliance challenges.

Key Performance Indicators (KPIs):

Compliance with data protection laws and regulations.

Completion rate of data protection training programs.

Timeliness and accuracy of data breach reporting and resolution.

Number of identified and mitigated data protection risks.

Audit findings and successful implementation of corrective actions.

Our Mission

Provide security teams with breakthrough visibility and control over all high-value enterprise data, transforming how organizations protect their data from IP theft and insider threats.

About the Role

This is an ideal opportunity for a highly motivated individual to get in on the ground floor as we build out our Professional Services and Managed Services functions at Cyberhaven. The Data Protection Analyst holds a key position in providing continuous value for our customers and is responsible for advancing the mission of identifying potential insider threats and investigating endpoint forensic incidents. You will be responsible for performing technical analysis of data security incidents, finding and exposing risk in a customers environment as well as handling documentation and project management aspects of incident response. You will also perform analysis of events and incidents.

What you'll do:

• Provide insight into DLP analytics and related issues.
• Analyze Cyberhaven's Data Detection and Response (DDR) platform event data to improve policies and incidents/alerts and bring focus to areas where data loss risk may exist.
• Refine datasets and policies and manage them as customers' data risk strategy matures and business needs evolve.
• Prepare and present summaries and reports to internal team members.
• Eliminate noise and false-positive information from analytic results to enhance detection accuracy.
• Conduct forensic analysis on people, groups, and non sanctioned egress destinations as requested.

Who you are:

• 2-5 years experience in working with a data protection product, or adjacent security tool experience (EDR, SIEM, SOAR).
• Knowledge of endpoint protection best practices and security incident mitigation workflows.
• 2+ years' experience with Insider Threat Programs and Information Security.
• Excellent problem-solving and analytical abilities with creative and logical thinking.
• Highly motivated, customer centric person, strong customer empathy and focus.
• Ability to work as part of a global team,
• Excellent written and verbal communication skills.

What you should have:

• Familiarity with technologies that are adjacent to Cyberhaven in which we integrate, (SIEM/SOAR) are desired.
• Knowledge of security controls for the handling of sensitive data types.
• Understanding of macOS, Linux and Windows environments.
• Experience with DLP, Insider Threat and CASB solutions
• Familiarity with cloud apps and services (GCP, AWS, Azure)
• Knowledge of SQL for writing queries and performing data analysis.
• Experience designing, developing and maintaining interactive dashboards and data visualizations.
• Knowledge in modifying and developing XML-based content rules to refine DLP datasets
• Knowledge with general scripting for automation and utilizing APIs.
• Excellent communication and interpersonal skills required, with a passion for cloud security and emerging technologies.

Cyberhaven is the AI-powered data security company revolutionizing how companies detect and stop the most critical insider threats to their most important data. We've raised over $250M from leading Silicon Valley investors like Khosla and Redpoint. Cyberhaven is also backed by founders, executives, and security leaders who have built transformational technologies at Crowdstrike, Nutanix, Palo Alto Networks, Meta, Google, Slack, and others.

Our company values are:

• Think Deeply and Use Sound Reasoning
• Step Up and Take Ownership
• Continuously Learn and Grow
• Obsess About Customers
• Enjoy the Journey
• Reach for Ambitious Goals

Cyberhaven is committed to creating a diverse environment and is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.

Role & responsibilities:

1. Develops and maintains the Cyber Security data protection and privacy technical architecture to safeguard data, personnel, products and solutions that meet business requirements. Recommends guiding principles and technical standards that foster technological development.

a. Collaborates with IT and business units to understand the requirements for security of data (stability, availability, integrity, privacy, etc.).

b. Maintains architecture diagrams for both current and future states.

c. Builds security controls that transition from current to future states.

d. Stays abreast of technology innovations relating to data protection to ensure decisions align with industry best practices.

2. The Data Protection Analyst will manage our Microsoft Purview Configurations and any other tools that contribute to data security. In addition, will assist in monitoring and assessing security to maintain governance, risk and compliance requirements through technical audits, risk assessments and issue management to maintain a compliant, audit ready posture. This role may also support the Enterprise Architecture team and Project Management Office to deliver technical security advisory services.

a. Configure data classification controls and standards for the environment.

b. Define data loss prevention controls and standards to protect our most sensitive data.

c. Collaborate with Insider Risk team to identify and remediate risks.

d. Identifies security and compliance requirements that align with standards, policies, technical controls, and architecture principles. Reviews risk assessments completed as part of the project lifecycle.

3. Performs security impact assessments to determine the enterprise's specific security, AI and privacy related risks.

a. Performs risk assessment to ensure appropriate security during the introduction of modern technologies. Review and approve the findings and recommendations of risk assessments.

b. Conducts audits and monitors issues to provide assurance reporting of how complying with policies, industry and regulatory standards, and requirements to ensure the internal control framework is compliant and audit ready.

c. Conducts security due diligence of third parties (vendor, suppliers and partners) based on risk model including security contract language, and logical, physical, and administrative controls.

Designation: Senior Consultant – Data Privacy

Location: Open (India)

Experience Required: 2+ years

Role Overview

We are seeking a passionate Data Privacy professional with hands-on experience in privacy compliance and assessments. The role offers an opportunity to work closely with senior leadership while building expertise across multiple regulations and frameworks. Immediate joiners will be prioritized.

Key Responsibilities

• Assist in implementing privacy frameworks and compliance projects.
• Support Data Mapping, DPIAs, and vendor risk assessments.
• Monitor compliance with GDPR, PDPB, CCPA, HIPAA, and other regulations.
• Assist in drafting privacy notices, policies, and procedures.
• Collaborate with IT and legal teams to address privacy risks.
• Conduct awareness and training sessions on privacy compliance.

Qualifications & Skills

• 2+ years of experience in Data Privacy, Risk, or Compliance.
• Strong understanding of data protection principles and privacy operations.
• Good analytical, documentation, and reporting skills.
• Certifications: CIPP, DCPP, ISO 27001/27701, CISM, CISA preferred.
• Immediate joiner highly desirable.

Job Purpose

Management :

• To Strategize, develop and implement Data Protection Controls in coordination with stakeholders across the Organization globally.
• To ensure compliance of the Organization with the defined policy & framework with a data driven approach

Execution

• To ensure that the protection operations are executed effectively in a timely manner and with required quality
• Assists in the development and implementation of Data Protection strategic initiatives. Leads all Data protection related tasks with effective monitoring and protection of information security assets.

Manager – Data Protection has overall responsibility to coordinate and support the Head of Data Privacy and Protection to achieve organization’s Protection strategy and goals.

He/she is a T-Shaped expert with proven skills in most core capability areas of Data Protection and security: Policy, Governance, Protection Strategy & Program Management.

Performance evaluation of the role will be based on the positive impact on the bank in terms of Data protection posture enhancement rather than the effort put in place.

Key result Areas

• Develop and coordinate with stakeholder (internal/external) to implement Data Protection policies, procedures, and protocols.
• Collaborate with internal departments, such as human resources, business and IT, to ensure compliance with security protocols and standards.
• Drive the creation of a comprehensive data protection framework, ensuring compliance with applicable data security laws.
• Develop and maintain metrics (Key Performance / Risk Indicators) for measuring effectiveness of the managed solution and reporting to key stakeholders.
• Work closely with legal and compliance teams to manage risk, breaches, and audits related to data protection.
• Advice on implementation robust security controls across all stages of the data lifecycle, including data collection, storage, processing, transmission, and destruction.
• Ensure the use of encryption (at rest, in transit) and secure key management strategies.
• Apply anonymization and pseudonymization techniques where required to mitigate privacy risks.
• Collaborate with IT teams to integrate security measures into application and system design from the outset (security by design).
• Good understanding/hands-on knowledge of DLP solution and data classification concepts.
• Raise awareness and provide training about information handling rules to end-users;
  
• Design and implement controls to reduce information risk and coordinate remediation actions with the support of the business;
  
• Gather and document business and security requirements, identify and define opportunities and lead the development and implementation of Data Protection Controls that meet business needs.
• Establish an exception management process for scenarios where data protection policies cannot be fully enforced.
• Evaluate and approve security exceptions, ensuring that any deviations from standards are properly justified, documented, and risk-assessed.
• Monitor and review approved exceptions regularly to ensure ongoing security and compliance.

Knowledge, Skills and Experience

Essential knowledge

• Graduate/ Post Graduate degree in Science/ Engineering/ IT.
• Minimum 2 Professional certification related to Information Security like CISM / CISSP./CASP+/ CEH / CCSP
• 8+ years Information Security experience in large financial institution/ banks with minimum 5 years’ experience within Compliance, audit and/or risk function, with recent experience in Data protection projects implementation.
• In-depth knowledge of data encryption, anonymization, pseudonymization techniques.
• Strong understanding of security controls required at different stages of the data lifecycle.

Skills and Application

• Coordinate with internal stakeholders and cross-functional teams to execute Protection initiatives, ensuring that projects are completed on time and achieve desired outcomes.
• Excellent communication skills with the ability to work cross-functionally with different teams.

Strong analytical skills and the ability to evaluate the effectiveness of implemented security measures

Hi,

We are having an opening for IT Backup Manager at our Mumbai location

Job Summary :

Seeking a skilled and experienced Middle-Level Manager to oversee and manage our Backup Operations team. The ideal candidate will be responsible for ensuring data integrity, availability, and recoverability across all systems along with compliances, especially pharma compliances. This role requires strong technical expertise in backup technologies, leadership capabilities, and a proactive approach to risk mitigation and compliance.

Areas Of Responsibility :

• Manage day-to-day operations of backup and recovery environments across on-premise and cloud platforms.
• Lead and mentor a team of backup administrators and support staff to ensure high system availability and performance.
• Develop, enforce, and maintain backup policies, schedules, and procedures aligned with business continuity and disaster recovery (BCDR) strategies.
• Monitor backup jobs, investigate failures, and resolve issues in a timely manner to minimize risk and data loss.
• Collaborate with application, database, and infrastructure teams to meet and maintain data protection and retention requirements.
• Maintain comprehensive and up-to-date documentation of backup configurations, processes, and recovery procedures, aligned with GSOP standards.
• Provide evidence and support for internal and external audits across regions, ensuring timely and accurate responses.
• Ensure compliance with legal, regulatory, and internal data retention policies and audit requirements.
• Evaluate, recommend, and implement new technologies and tools to optimize backup performance, cost, and reliability.
• Provide regular reporting on backup status, capacity usage, risk assessments, and improvement opportunities to senior management.
• Lead and participate in disaster recovery drills, ensuring operational readiness for real-world incidents.
• Drive the creation, upkeep, and periodic review of Standard Operating Procedures (SOPs).
• Act as a primary liaison for audit activities related to backup operations, coordinating with internal and external auditors.
• Govern and oversee backup vendor teams responsible for BAU (Business As Usual) support, ensuring SLAs and KPIs are met.
• Plan and execute migration of global storage and backup resources, ensuring minimal disruption to business operations.
• Implement and monitor security measures to safeguard data from unauthorized access, physical threats, ransomware, and malware attacks.
• Oversee Incident, Change, and Problem Management processes related to backup operations, including CR (Change Requests) evaluation.
• Manage vendor relationships, including service contracts, equipment maintenance, and support delivery.
• Monitor backup utilization, analyse trends, forecast future capacity, and plan accordingly.
• Govern regular backup testing initiatives and implement enhancements to reduce cost, time, and improve reliability.
• Continuously improve internal systems and change management processes, exercising judgment on critical change requests.

Educational Qualification : Degree or appropriate professional qualification

Specific Certification :

Certification & Trainings on following technology domains:

• Backup
• Storage
• ITIL

• Experience : 10-12 Years of experience

Skill (Functional & Behavioural):

• Knowledge of Integrated IT Backup Solutions
• Knowledge of manufacturing IT domain. (OT IT)
• Experience working with distributed IT teams across globe.
• Mandatory Knowledge of the following areas:
• Backup Mgmt.
• VMware knowledge
• Server hardware management.
• SLA Tracking for BAU and Partners.
• Basic Network Management
• Project management.
• Knowledge in Pharma compliance 21CFR part 11
• Experience in preparing CSV (Computer system Validation) documents.
• Basic Knowledge in Veritas, Actifio, Commvault, Spectrum Protect etc are added advantage.
• Knowledge in GCP, AWS is added advantage.
• Pharma industry experience is an advantage.

Rubrik Backup Technology ( L2/L3)

7+

TCS - Bangalore

Required Technical Skill Set (Must have keywords) Rubrik Backup Technology ( L2/L3) 4 Desired Experience Range 4-5 Years 5

Bangalore, Hyd Desired Competencies (Technical/Behavioral Competency)

Must-Have Required Skills:

● Good working knowledge Management of Backup using Rubrik Security Cloud as well as both physical and virtual appliances including NCD & replication

● Implement, and manage data backup and recovery solutions, ensuring data protection and availability Monitor backup systems to ensure successful backups and address any failures or issues promptly. Perform standard and test restores of requested files, folders, databases, and virtual machines. Participate in disaster recovery planning and testing to ensure data can be restored in the event of a disaster. Troubleshoot backup software, hardware, and networking issues, escalating complex issues as needed.

● Good customer handling skills and a quick learner.

● Flexible, self-motivated with the ability to work under pressure and need to support and coach junior resources.

● Coordination with multiple stakeholders / Third party Vendors for break-fix. Must be able to lead the critical outage calls

● Willing to work on 24X7 rotational shifts Highly Desirable

● Working knowledge Backup Technlogies – Rubrik, Commvault

● ITIL Certification ● ITSM Ticketing Tool ServiceNow Required Qualifications

● Bachelor’s degree or Masters in Computer Science

● Previous experience working as a Active directory L3 Support Engineer

● Good communication and interpersonal skill

We are seeking a skilled Infrastructure Operations Engineer to manage and maintain core IT infrastructure components including physical servers, operating systems, backup solutions, storage systems, databases, networking, and health monitoring tools. The ideal candidate will ensure availability, reliability, and security of the enterprise infrastructure.

Key Responsibilities: Physical Servers & OS: Install, configure, and maintain physical servers in data center environments. Manage operating systems (Windows/Linux), including patching, hardening, and performance tuning. Perform OS upgrades, configuration backups, and lifecycle management.

Backup & Storage: Administer backup tools (e.G., Veeam, Commvault, NetBackup) and ensure backup/restore success rates. Manage SAN/NAS storage solutions and perform capacity planning, replication, and snapshot management. Database: Support database platforms (e.G., SQL Server, Oracle, MySQL) for patching, backup, and uptime monitoring. Work with DBA team to support infrastructure needs related to databases. Networking: Perform basic configuration and troubleshooting of switches, routers, firewalls, and load balancers. Collaborate with network teams to ensure optimal connectivity and performance across environments.

Health Monitoring: Implement and maintain infrastructure monitoring tools (e.G., Nagios, SolarWinds, Zabbix, PRTG). Proactively monitor system health and respond to alerts to prevent outages or performance degradation.

Required Skills and Qualifications: Experience with server hardware (Dell, HPE, Cisco UCS). Strong knowledge of Windows/Linux system administration. Familiarity with enterprise backup and storage solutions. Basic knowledge of networking fundamentals (TCP/IP, VLANs, routing). Hands-on experience with monitoring tools and log analysis. Good scripting knowledge (PowerShell, Bash) for automation. Familiarity with endpoint/server hardening, system configuration management, and patching. Experience using configuration and compliance management tools (e.G., Ansible, Chef, SCCM, GPO). Ability to document policies, procedures, and control deviations. Preferred Qualifications: ITIL Foundation or Practitioner certification. Experience in audit/compliance functions, particularly in regulated industries (BFSI, healthcare, government). Familiarity with ISO 27001, NIST 800-53, or other security frameworks.

Education Requirements: BE, B.Tech in IT/CS/ECE, BCA, BSc CS and MCA

Certification: Certifications: MCSE, RHCE, CCNA, VCP, or equivalent.