Job Title

Program Lead – Cyber Security Operations Management and Governance

Reporting Structure

Reports to AVP Cyber Security Operations Management and Governance

Position Summary

Responsible for leading and managing the security operations center (SOC) team and activities. Main responsibilities are Service Delivery, Shift/Roster Management, Train/Assess staff, Escalation handling, Change Management, Incident Management, Audit & compliance, SOC Performance metrics, SLA measurement, Reporting and notifications, Design and direct security operations documentation, automation, and sustenance plans for increasing existing performance.

Education:

University degree in the field of engineering and technology such as BE/B.Tech, BSc/MSc/BCA/MCA.

Looking for Immediate to 30 Days Joiners

Location : Navi Mumbai

Work Experience

8 – 10 years of related experience in Cyber Security/Information Security Management, Risk Assessment and Advisory

7 years relevant experience in Cyber / Information security operation center management and technical risk management as well as risk advisory services related hands on experience.

Handon experience on next gen SOC tools like SIEM IBM Qradar, PIM, DAM IBM Guardium, NBAD, SOAR, TIP, UEBA, IAM, Threat Hunting & Vulnerability Management.

Experience with Cyber / Information Security Policy, standards, and controls definition.

Strong knowledge of current and emerging Cyber / Information Security Tools. risks, and innovative risk management methods and solutions.

Ability to collaboratively develop a risk strategy in conjunction with stakeholders.

Strong analytical thinking, written, and oral communication, and presentation skills.

Broad understanding of security and privacy concepts.

Experience working in the Indian Banking domain.

Skilled at planning, tracking plans, working cross departments to review processes and controls, and gathering and organizing documentation and test results.

Able to understand contracts and technical documentation and can assess it for consistency and alignment with processes and controls outlined in requirements and audit materials.

Ability to effectively communicate and relate to all levels of the organization.

Industry

Financial Domain (Banking / NBFC experience is desirable)

Responsibilities

• Strategic Planning: Responsible for developing the strategic vision, objectives, and goals for the SOC.
• Team Management: Will oversee a team of security analysts and professionals. Responsible for hiring, training, and managing the SOC staff. This includes assigning tasks, setting performance expectations, providing feedback, and promoting professional development.
• Incident Response: One of the key responsibilities of this position is to ensure the effective response to security incidents. Develop and implement incident response plans, establish processes and procedures, and coordinate with relevant stakeholders to ensure timely and effective incident resolution.
• Technology Management: Responsible for selecting, implementing, and managing the technologies used in the SOC.
• Policy and Procedure Development: SOC manager will establish and enforce security policies, procedures, and guidelines for the SOC's operations. He will ensure that the SOC's activities comply with regulatory requirements and industry best practices. He will also conduct periodic reviews and updates to keep the policies and procedures current and effective.
• Collaboration and Communication: SOC manager will collaborate with other teams within the organization, such as IT, risk management, and compliance, to ensure a coordinated and cohesive approach to security. He will also communicate with senior management and stakeholders to provide updates on security incidents, threats, and the overall effectiveness of the SOC.
• Continuous Improvement: SOC managers continuously assess and improve the SOC's capabilities, processes, and procedures. They stay updated with the latest trends and developments in cyber security and incorporate them into the SOC's operations. They may conduct regular assessments, audits, and evaluations to identify areas for improvement and implement changes accordingly.

Certifications

Industry recognized certification in Cyber Security / Information security - At least one of the (CISSP, CISM, CRISC)