Data Security

Objective of job

Protect MB’s sensitive data and systems from cyber threats, security breaches, and unauthorized access. This involves a wide range of responsibilities focused on designing, implementing, and maintaining security measures. Responsible for the governance of compliance with policies and processes to protect the confidentiality, integrity and availability of IT assets (information, data and IT services) within the organization.
-Protect sensitive data and systems from unauthorized access and cyber threats.
-Identify and mitigate security vulnerabilities through risk assessments and penetration testing.
-Respond to security incidents, investigate breaches, and coordinate remediation efforts.
-Develop and enforce security policies, standards, and best practices.
-Ensure compliance with relevant cybersecurity regulations and frameworks.
-Collaborate with IT & RD application teams to integrate security into all processes.
-Stay updated on emerging threats and security technologies.
-Continuously improve security measures and incident response capabilities.

Job designation

•Planning and Implementation
-Plan, implement, manage, monitor, and upgrade security measures to protect data, systems, and networks
-Threat Monitoring and Incident Response    Monitor systems for security breaches, investigate breaches and anomalies, and respond to data security crises

•Policy Enforcement
-Define, implement, and enforce corporate security policies and best practices

•Project management
-Lead data security relevant project implementation and task forces.

•Compliance
-Ensure compliance with relevant cybersecurity laws and frameworks

•Data Loss Prevention
-Implement and manage Data Loss Prevention (DLP) solutions
-Continuous Improvement    Focus on continuous improvement of data security capabilities

•Risk Assessment and Data Security Audits
-Conduct and work together with other department in terms of security assessments to identify vulnerabilities in existing systems and them focus on risk mitigation. 
-Conduct regular data security audits to identify weaknesses and ensure compliance with policies and regulations

•Collaboration and Communication
-Collaborating with other IT teams, developers, and business stakeholders. 
-Providing security training and awareness to employees.
-Communicating security risks and recommendations to management.

Qualification

•Technical Skills and Knowledge:
-Strong technical background and a deep understanding of computer networks, operating systems, and software development.
-Experiences on data security relevant areas.
-Familiarity with security protocols and encryption techniques.
-Knowledge of functionality, operations, and maintenance of endpoint security systems, security software, and firewalls.
-Experience with cloud technologies (e.g., AWS, GCP).
-Knowledge of encryption, logging, log aggregation, and analytics domains.
-Ability to use Python and Java to construct automation tools.
-Knowledge of SQL and NoSQL data security architectures.
-Experience with security frameworks, such as NIST, and ISO 27001.
-Relevant certifications, CISA, CISSP, CISM
->5 years experience with focus in areas of data security
-Education: Bachelor's degree and above in Computer Science encompassing Information Security