Gautam Buddha Nagar, Uttar Pradesh
Job Summary
This role is responsible for driving pre-sales activities focused on Governance, Risk, and Compliance (GRC) security solutions, ensuring alignment with client requirements and organizational objectives. The individual leads large-scale, complex operations, providing expert guidance in security solution design, proposal development, and process optimization, while fostering innovation and empowering teams to exceed client expectations.
The Data Security Consultant will support Project Osprey’s Data Protection & Data Governance program to plan and execute the safe data exception migration and Microsoft sensitivity labeling for existing files and email content being transferred to NewCo. The consultant will provide hands‑on configuration guidance, cross‑team coordination, documentation, and operational readiness deliverables to ensure controlled, auditable, and compliant transfer and labeling of sensitive assets.
Key Responsibilities
1. Lead the development of security pre-sales solutions by leveraging Security Pre-sales and GRC frameworks, ensuring alignment with client requirements and business objectives.
2. Utilize security risk assessment tools and GRC platforms to analyze client environments, identify gaps, and recommend tailored risk mitigation strategies.
3. Oversee the preparation and delivery of security solution proposals, presentations, and RFP responses using industry-standard security and GRC methodologies.
4. Drive process improvements in pre-sales operations by implementing best practices in security solution design, workflow automation, and management reporting.
5. Mentor and guide pre-sales consultants and product management teams in the application of security standards, regulatory compliance requirements, and solution positioning.
6. Engage with internal teams to promote innovation in security pre-sales offerings, introducing new tools and approaches to enhance service delivery and client satisfaction.
7. Ensure effective communication of project goals, solution benefits, and technical details to both technical and non-technical stakeholders.
The consultant will perform the following activities: Review and update the existing SOW, roadmap, and detailed project plan; document and communicate any scope or schedule changes. Kick off and coordinate separation and transfer activities related to Microsoft sensitivity labeling and associated enforcement policies. Identify, copy, and catalogue Safe Data Program artifacts (SOPs, knowledge articles, ITForMe content) required for NewCo operations. Work with IAM to create/configure Safe Data exception groups for USB, fileshare, and webmail use cases in NewCo. Coordinate with ServiceNow to replicate and automate exception intake (individual and bulk), and integrate the intake process with IAM workflows. Produce a Safe Data Exception inventory that identifies in‑scope users and maps migration needs for USB, fileshare, and webmail exceptions. Collaborate with Security Engineering and End User Services (EUS) to define the recommended methodology for configuring and migrating Microsoft sensitivity labels and enforcement policies (subject to Microsoft technical decisions). Deliver detailed project artifacts: workstream project plans, timelines, storyboards, step‑by‑step runbooks, FAQs, and training materials for operational teams. Produce regular status reporting (monthly and quarterly), capture stakeholder feedback, and highlight milestones, risks, issues, and opportunities. Provide ongoing Data Security consultation and subject‑matter expert support throughout the engagement. 3. Key Deliverables Updated SOW, roadmap, and change log. Kickoff briefing and separation/transfer plan for sensitivity labeling. Catalog of Safe Data Program artifacts (SOPs, knowledge articles, ITForMe). Configured IAM exception groups and documented configuration steps. ServiceNow exception intake design and automation specification, with IAM integration. Safe Data Exception inventory (CSV/recorded dataset) with migration recommendations. Technical approach and recommendation for Microsoft sensitivity label configuration and policy enforcement. Workstream project plans, timelines, storyboards, runbooks, training deck, and user FAQs. Monthly and quarterly status reports and a final engagement closeout report.
Skill Requirements
1. Excellent Knowledge Of Security Technologies, Grc Platforms (Such As Archer, Servicenow Grc), And Security Operations Processes.
2. Advanced Skills In Developing And Presenting Security Solution Proposals, Including Technical Documentation And ExecutiveLevel Presentations.
3. Excellent Communication, Stakeholder Management, And Leadership Skills, With The Ability To Drive HighImpact Initiatives And Mentor Teams.
4. Strong Analytical And ProblemSolving Abilities In The Context Of Security And Grc Operations.
Responsibilities & Coordination Consultant: lead technical design, runbooks, documentation, status reporting, and stakeholder coordination. Partner with IAM Team: configure exception groups, support integration testing. Partner ServiceNow Team: implement intake automation and bulk intake capabilities. Partner with MS, Security Engineering & EUS: define and implement label enforcement and migration approach. Project Stakeholders / NewCo representatives: provide access to required systems, approve exception inventories, and participate in acceptance testing. 5. Assumptions Microsoft sensitivity label migration approach and enforcement options are available and agreed with Microsoft / Security Engineering prior to execution of large‑scale migrations. Necessary access, documentation, and stakeholders from IAM, ServiceNow, Security Engineering, and EUS will be made available in a timely manner. Exception intake and IAM integration can be implemented using existing ServiceNow and IAM capabilities or with minor configuration/customization. Any third‑party licensing, tooling, or Microsoft professional services required are procured separately and are out of scope unless explicitly added. 6. Reporting & Governance Weekly working sessions with core teams during active workstreams. Monthly steering updates and a quarterly executive summary. Issue/risk log maintained and escalated according to project governance. 7. Acceptance Criteria Updated SOW/roadmap approved by project sponsor. ServiceNow intake and IAM exception groups deployed and demonstrably integrated in a test environment. Safe Data Exception inventory validated by stakeholders. Sensitivity label configuration approach validated in lab/test and documented. Training materials, runbooks, and closeout report delivered and accepted by operational owners. 8. Qualifications Bachelor’s degree in IT, Cybersecurity, Privacy, Law, or a related field, or equivalent practical experience. 3–5+ years’ experience in data protection, privacy, or security, with hands‑on experience in secured data protection and sensitivity labeling. Practical experience with Microsoft sensitivity labeling technologies (e.g., MS Purview) and endpoint/data protection tooling. Strong analytical skills and clear written and verbal communication. Demonstrated ability to work across IAM, ServiceNow, Security Engineering, and EUS teams. Knowledge of regional data protection considerations relevant to the project. Commitment to confidentiality and adherence to NDAs. 9. Work Environment & Logistics Onsite, remote, or hybrid arrangements available as agreed with Project Osprey stakeholders. Consultant will coordinate travel and onsite presence with the project manager where required.
Other Requirements
Responsibilities & Coordination Consultant: lead technical design, runbooks, documentation, status reporting, and stakeholder coordination. Partner with IAM Team: configure exception groups, support integration testing. Partner ServiceNow Team: implement intake automation and bulk intake capabilities. Partner with MS, Security Engineering & EUS: define and implement label enforcement and migration approach. Project Stakeholders / NewCo representatives: provide access to required systems, approve exception inventories, and participate in acceptance testing. 5. Assumptions Microsoft sensitivity label migration approach and enforcement options are available and agreed with Microsoft / Security Engineering prior to execution of large‑scale migrations. Necessary access, documentation, and stakeholders from IAM, ServiceNow, Security Engineering, and EUS will be made available in a timely manner. Exception intake and IAM integration can be implemented using existing ServiceNow and IAM capabilities or with minor configuration/customization. Any third‑party licensing, tooling, or Microsoft professional services required are procured separately and are out of scope unless explicitly added. 6. Reporting & Governance Weekly working sessions with core teams during active workstreams. Monthly steering updates and a quarterly executive summary. Issue/risk log maintained and escalated according to project governance. 7. Acceptance Criteria Updated SOW/roadmap approved by project sponsor. ServiceNow intake and IAM exception groups deployed and demonstrably integrated in a test environment. Safe Data Exception inventory validated by stakeholders. Sensitivity label configuration approach validated in lab/test and documented. Training materials, runbooks, and closeout report delivered and accepted by operational owners. 8. Qualifications Bachelor’s degree in IT, Cybersecurity, Privacy, Law, or a related field, or equivalent practical experience. 3–5+ years’ experience in data protection, privacy, or security, with hands‑on experience in secured data protection and sensitivity labeling. Practical experience with Microsoft sensitivity labeling technologies (e.g., MS Purview) and endpoint/data protection tooling. Strong analytical skills and clear written and verbal communication. Demonstrated ability to work across IAM, ServiceNow, Security Engineering, and EUS teams. Knowledge of regional data protection considerations relevant to the project. Commitment to confidentiality and adherence to NDAs. 9. Work Environment & Logistics Onsite, remote, or hybrid arrangements available as agreed with Project Osprey stakeholders. Consultant will coordinate travel and onsite presence with the project manager where required.
#body.unify div.unify-button-container .unify-apply-now: focus, #body.unify div.unify-button-container .unify-apply-#body.unify div.unify-button-container .unify-apply-now: focus, #body.unify div.unify-button-container .unify-apply-