Location Name: Pune Corporate Office - Mantri
Job Purpose
The Security Configuration Specialist is responsible for designing, creation, review, and continuous improvement of Security Configuration Documents (SCDs) across enterprise systems, applications, and infrastructure. The role ensures configurations align with industry standards, regulatory requirements and BFL security policies, reducing risk and enhancing system hardening. The role validates and approves the configuration implementation reports and evidences as a defined calendar activity.
Duties And Responsibilities
- SCD Development & Documentation
- Develop Security Configuration Documents (SCDs) for - Operating systems, Network devices, Cloud environments (Azure, AWS, GCP), Databases, Middleware, and Applications
- Define baseline configurations based on - CIS Benchmarks, NIST guidelines and OEM best practices
- Ensure clear, structured, and standardized documentation of SCDs
- Review & Validation
- Conduct periodic SCD Reviews/Audits
- Track and ensure closure within the TAT
- Governance & Compliance
- Ensure SCDs align with - BFL security frameworks & Regulatory requirements
- Support internal and external audits related to SCDs
- Track and manage exceptions and risk acceptances
- Continuous Improvement
- Regularly review and update SCDs to reflect - Emerging threats, Vulnerabilities and Technology changes
- Incorporate lessons learned from - Security incidents, VAPT and audits
- Collaboration & Stakeholder Engagement
- Work with IT Teams (IT Infrastructure/CoE, DevOps/Cloud teams, Application Support, InfoSec Compliance, Data Privacy, SOC, Endpoint Security, Network, Database and Middleware etc.)
- Work with IT Compliance
- Work with Corporate Audit
- Ensure closure of regulatory observations and avoid recurrence through continual improvements
- Automation & Documentation
- Support automation of SCD enforcement using - Configuration Management and various Security Tools
- Maintain central repository of SCDs and templates
Key Decisions / Dimensions
- SCD checks adequacy in-line with regulatory expectations
- Exception handling
Major Challenges
- Document standardization across the IT landscape
- Timely review and closure of all Secure Configurations
- Exception handling and relevant documentation
Required Qualifications And Experience
- Qualifications
- Post-Graduate or Graduate with 5-7 years of experience in Security Configurations (Security baselines/hardening standards, Audit and Compliance Management) preferably in NBFCs, Banks, Fintech or regulated financial institutions.
- Work Experience
Technical Skills
- Strong understanding of - System hardening, Secure configurations, OS, Network, Cloud, Databases, Middleware, SOC, Endpoint Security and Applications
- Knowledge of frameworks - CIS Benchmarks, NIST (800-53, 800-128), ISO 27001 controls and RBI requirements
- Familiarity with - Vulnerability management tools, Configuration/Security tools
- Basic scripting knowledge
Soft Skills
- Team Management
- Strong documentation and writing skills
- Executive Dashboard preparation and reporting
- Analytical and risk-based thinking
- Stakeholder management and communication
- Ability to standardize and simplify complex technical content
