Product Security Analyst

Systems Engineer

STL Digital is a global IT Services and Consulting company that enables enterprises to experience the future of digital transformation. We provide end to end services across product engineering, software, cloud, data and analytics, enterprise application services, and cyber-security. 

Purpose - We Engineer Experiences that create value. We blend the agility of a startup with the stability of an established enterprise. We're passionate about innovation. Our culture is built on 4 core values:

1.   Respect for Individuals: We value every team member's unique perspective and contributions.

2.   Hunger to Learn: We encourage continuous growth and development.

3.   Promises Delivered: We are committed to delivering on our commitments.

4.   Keep it Simple: We strive for clarity and efficiency in everything we do.

We're looking for talented individuals to join us on this exciting journey, working with our 25+ Global Customers. Let's build the future of tech together.

Job Title           : Data Protection Officer

Work Location : Jharsuguda

Experience       : 5 to 8Yrs

Job Mode        : onsite, Jharsuguda(6 days working)

Role Overview
The Data Protection Officer (DPO) is responsible for ensuring compliance with the Digital Personal
Data Protection (DPDP) Act 2023, and other applicable privacy regulations. The DPO oversees data
governance, privacy risk assessments, and ensures responsible data handling across Vedanta
Jharsuguda’s IT, HR, including all operational systems.
Governance & Compliance
Implement and maintain Vedanta Jharsuguda’s Data Protection & Privacy Framework in line
with DPDP Act 2023 and global standards (GDPR, ISO 27701).
Develop policies and procedures for lawful collection, processing, storage, and sharing of
personal data.
Maintain a Record of Processing Activities (RoPA) for all business processes involving
personal or sensitive data.
Coordinate with Group Legal and CISO on regulatory submissions, audits, and incident
responses.
Risk & Impact Assessments
Conduct Data Protection Impact Assessments (DPIA) for new systems, technologies, or
vendors.
Review data flows and ensure data minimization, purpose limitation, and consent
management practices.
Awareness & Training
Drive data privacy awareness programs for employees, vendors, and contractors.
Train business teams on privacy best practices and data breach reporting mechanisms.
Incident & Breach Management
Collaborate with CISO and IT teams to handle data breach identification, response, and
notification to affected stakeholders and authorities.
Maintain documentation of all privacy incidents and remediation actions.
Vendor & Third-Party Management
Ensure all vendors and service providers comply with data protection clauses in contracts.
Periodically assess vendor data handling and storage practices.
Key Skills & Qualifications
BE, BTech., BCA, MCA, B.Sc., MTech. Computer Science or Information Technology.
5+ years of experience in Cybersecurity leadership in large industrial or manufacturing
environments.
Certifications preferred: CIPP/E, DCPP, ISO 27701 Lead Implementer, or DSCI Certified
Privacy Professional (India).
Strong knowledge of DPDP Act 2023, GDPR principles, and cross-border data flow
regulations.
Excellent communication and stakeholder engagement skills.
Key Deliverables
Full compliance with DPDP Act 2023 requirements.
No major data breach or regulatory penalty.
Complete privacy training for 100% of employees handling personal data.
Effective coordination with CISO and Group Privacy Office on assessments and audits.