Security & Privacy Services-Identity & Access Management - Sr. Analyst- Deloitte

Designation	Security & Privacy Services-Identity & Access Management - Sr. Analyst
Job Description	Business models today encourage, and even require, opening boundaries between customers, suppliers, and partners. Technology can enable that openness and is also seen as a means to help achieve compliance with corporate policy and regulation. Technology can support compliance efforts, act as a business enabler, and provide a foundation to achieving secure systems. The increasing occurrence and complexity of security threats indicate that security has become a business imperative. such as stakeholder value, consumer confidence, brand and reputation protection, and legal and regulatory compliance can be addressed. Digital information security is a management issue with global business implications. To succeed in today's network economy requires more than simply a focus on IT issues - it also requires a focus on security strategy and management. Deloitte & Touche provides Security Services that address how to take advantage of this dynamic situation while managing risks and are based on an enterprise-wide approach that focuses on security through seven areas: Application Integrity Business Continuity Management Identity & Access Management Infrastructure & Operations Security Privacy & Data Protection Security Management Vulnerability Management Writing reports Contribute to a strong client relationship through interactions with client personnel Understand engagement as it relates to client's business Demonstrate knowledge in some areas of industry or functional specialty Assume responsibility for small components of engagements. May have greater role on small engagements Contribute to engagement planning and ensuring that products/deliverables meet contract/work plan Deliver services that meet Deloitte & Touche task leader specifications Recognize and communicate opportunities to sell "add-on" work to client Ability to perform risk assessments Audit plan and program development Testing controls and evaluation of records Designing and conducting internal audits
Desired Profile	Educational Qualifications B.E / B.Tech / MBA / M.Tech / CA Work Experience Total 4 to 5 years Relevant 4 to 5 years Relevant Business Skills (Must have experience in one or more of the following areas): Experience implementing data classification schemas and assigning assurance levels to information assets. Experience performing risk assessments, using risk assessment software or developing risk assessment tools at the enterprise level. Experience performing surveys and inventories across globally distributed organizations; including application, database and policy inventories a plus. Experience with privacy legislation such as HIPAA, COPPA, FCRA, GLB and EU Data Protection Directive. Experience complying with international privacy regulations in EU, Asia, Australia and Canada through Safe Harbor, model contracts, binding corporate rules and local registration a plus. Experience with intellectual property protection legislation and rules such as the UTSA, TRIPS, and others. Experience implementing programs and controls for intellectual property protection a plus. Relevant Technical Skills (Must have experience in one or more of the following areas): Understanding of technologies used to collect, share, access and use personal data. This includes an understanding of technologies like cookies, P3P, JavaScript, CGI scripts, client side software, CRM, HRIS, data warehouse, and web analytic and decision support software. Understanding of security methods and technical elements to protect personal data, i.e., access controls in the operating system, application and network environment, firewall, SSL, IDS, VPN, DMZ, encryption, digital certificates, biometrics, monitoring tools, mobile data protection, enterprise DRM. Understanding of data masking, aggregation, and minimization solutions in support of operations and/or SDLC processes. Experience assessing regulatory and industry requirements, building privacy and data protection requirements frameworks and performing audits of networks, operating systems and applications for privacy and data protection requirements.
Experience	2 - 7 Years
Industry Type	Banking/Financial Services/Broking
Functional Area	Corporate Planning, Consulting
Education	UG - Any Graduate - Any Specialization PG - Any PG Course - Any Specialization
Location	Hyderabad / Secunderabad