Senior Manager - Enterprise Security (Data Security)

We are M&G Global Services Private Limited (formerly known as 10FA India Private Limited, and prior to that Prudential Global Services Private Limited). We are a fully owned subsidiary of the M&G plc group of companies, operating as a Global Capability Centre providing a range of value adding services to the Group since 2003. At M&G our purpose is to give everyone real confidence to put their money to work. As an international savings and investments business with roots stretching back more than 170 years, we offer a range of financial products and services through Asset Management, Life and Wealth. All three operating segments work together to deliver attractive financial outcomes for our clients, and superior shareholder returns.

M&G Global Services has rapidly transformed itself into a powerhouse of capability that is playing an important role in M&G plc’s ambition to be the best loved and most successful savings and investments company in the world.

Our diversified service offerings extending from Digital Services (Digital Engineering, AI, Advanced Analytics, RPA, and BI & Insights), Business Transformation, Management Consulting & Strategy, Finance, Actuarial, Quants, Research, Information Technology, Customer Service, Risk & Compliance and Audit provide our people with exciting career growth opportunities. Through our behaviours of telling it like it is, owning it now, and moving it forward together with care and integrity; we are creating an exceptional place to work for exceptional talent.

Primary Key Responsibilities (Top 3-5 KRA)

• Assist with the implementation, support, and development of data security solutions to enhance M&G data security posture.
• Contribute in creating, running, managing and enhancing data security Project/BAU related tasks.
• Assist with milestone planning, provide operational support, deployment coordination, change management, and documentation of new and existing data security technologies
• Contribute/research in development of tools like Microsoft DLP, Varonis, and SailPoint, Microsoft AIP Scanner,  Keyfactor to strengthen the Data security controls and coverage.

Additional Responsibilities :

• Strengthen technical controls for protection against data exfiltration.
• Support newcomers with Data security related queries, escalations, investigations and closures.
• Support SAAS based applications/website access requests, remote printing, data room access, Endpoint portable storage device access, database cloning, DRM/IRM requests, data transfer requests, etc. received via ARC/SNOW or email.
• Periodically run re-certification exercise for various data security related exceptions.
• Handle Data security related queries and lead them to proper conclusive end.
• Understand the operating model of immediate businessareas the team interfaces with.
• Adopt a Project Management approach to drive things at a speed and work with others to unblock challenges.
• Proactively manage customer expectations through either effective resolution of or updating on progress of their outstanding queries.
• Supports audits / reviews on team activities by providing relevant evidences.
• Support delivery of awareness sessions on Data Security.
• Support/Create MI to showcase progress/trends/issues.
• Work effectively with other Information Security teams and outsourcing providers globally to ensure technology security solutions are in alignment with organizational strategic goals.
• Provide support and guidance to any business led initiatives.
• Identify and close process gaps in line with Information Security guidelines.
• Adept at communicating the results of data analysis in written form to various business stakeholders.
• Conducting information security risk assessments based on industry risk frameworks to identify and evaluate mitigating controls.
• Evaluate the cyber security risks, attacks and threats associated with various technologies and ways to manage them.

Knowledge:

• SSCP, Security+ certified (any relevant Security domain experience will suffice )
• Good knowledge of DLP tools and understanding about Data security concepts.
• Good knowledge of IT Networking.
• Good knowledge of DRM, , CASB, KMS tools.
• Endpoint Data Loss Prevention - such as McAfee, Symantec, Forcepoint, Zscaler.
• Basic understanding of Firewalls and network security.
• Basic Understanding of Database Security and terminologies.
• Data Classification - such as AIP, Bolden James
• Basic understanding of Cloud technologies.
• Application Deployment/support experience for Varonis, Ivanti, Microsoft AIP
• Proficiency in information security domains, including policies and standards, access controls, regulatory compliance, technology resiliency, risk and control governance and metrics, incident management, secure systems development lifecycle, vulnerability management, Key management systems and data protection,

Skills:

• Experienced in working with UK stakeholders.
• Awareness of the GDPR.
• Able to look at and understand processes and infrastructure.
• Good facilitation, communication, negotiation and presentation skills.
• Ability to build relationships at all levels in the business.
• Ability to present reports in meetings.
• Ability to understand organizational culture and use this knowledge to gain commitment and get work done.
• Ability to provide support to and accept direction from colleagues in other areas.
• Remain effective in situations when responsibilities, tasks, priorities and / or work environment change significantly.
• Allocate high priority to customer satisfaction at all times.
• Ability to assess multiple options (including consequences) in parallel, while working on possible solutions.
• Must have ability to engage the target audience both in writing and verbally.
• Good Customer Service skills.
• Problem solving and analytical skills (should have proven ability to analyse both technical/non-technical data, translate it and present practical solutions).
• Good knowledge of Microsoft 365 suite.
• Ability to work with limited supervision, seeking guidance where appropriate.

Experience:

• Minimum 4+ years of total experience in Data Security or any relevant field
• Hands on experience in Encryption management or Microsoft Security tooling(Purview) .

Educational Qualification:

Graduate / Masters in (BE/B.Tech/M.Tech / ME / B.SC ) in Computer Science / Information Technology, MCA or legal related qualification demonstrating significant application of data protection laws and rules.

We have a diverse workforce and an inclusive culture at M&G Global Services, regardless of gender, ethnicity, age, sexual orientation, nationality, disability or long term condition, we are looking to attract, promote and retain exceptional people. We also welcome those who take part in military service and those returning from career breaks.