Role Description:Oversee security assurance for data across the bank, ensuring sensitive information is securely stored, processed, and shared in compliance with regulatory requirements and all internal policies.Core Responsibilities:•Lead assurance reviews for databases, applications, and data flows, validating that sensitive data is appropriately protected at rest, in transit, and in use.•Oversee implementation and enforcement of data protection measures such as encryption, masking, and anonymization, and confirm their effectiveness through assurance activities.•Manage the operation and validation of data loss prevention (DLP) systems, ensuring policy effectiveness and incident follow-up.•Conduct risk assessments for data pipelines and repositories, documenting vulnerabilities and working with owners to apply mitigating controls.•Review and validate access control mechanisms for databases and sensitive repositories, ensuring that only authorized users retain access.•Oversee backup and recovery assurance testing, ensuring data confidentiality and integrity are preserved during recovery scenarios.•Coordinate with IT and business teams to ensure secure data retention and disposal practices are consistently applied.•Monitor data-related incidents, investigate potential breaches, and confirm root causes are addressed to prevent recurrence.•Prepare dashboards and assurance reports summarizing the bank’s data security posture for the Head of Assurance and governance purposes.•Lead third-party assurance reviews of data platforms, ensuring compliance with contractual and regulatory requirements.•Collaborate with digital transformation teams to ensure secure adoption of new data and AI-driven solutions.•Continuously benchmark the bank’s data protection controls against industry best practices and update standards as needed.Requirements:▪Bachelor's degree in engineering, Information Technology or Computer Science.▪Experience; 8-10 years of experience in Information Security Field.▪Data security frameworks (GDPR, PCI DSS, CBE guidelines).▪Database assurance (SQL, Oracle, MongoDB).▪Data loss prevention tools and practices.▪Secure data retention and disposal processes.