Skip to main content

Head- Security Operations

Navi Mumbai

This position is closed as on 2021-05-20

 

AVP SOC and Incident Response

Reporting Structure

Reports to SVP – Cyber Security, ReBIT

Location – Navi Mumbai

 

Education

  • University degree in the field of computer science or IT.

Experience/ Qualifications

  • A Minimum of 16+ years of working experience in the Cyber security domain with at least 5 years in security operations.
  • Experience in building and maintaining a high-performance team of analysts.
  • Expertise with industry standard frameworks like NIST, ISO 27001, PCI-DSS
  • Strong knowledge of Security incident management and Incident Response, problem management and change management best practices.
  • A high level understanding of multi-tiered applications, load balancing and firewalls
  • Knowledge of network security, intrusion prevention system, System information and event management (SIEM), integrating servers/ devices/ application with SIEM, co-relation rules creation.
  • Familiarity with web related technologies (Web applications, Web Services, Service Oriented Architectures) and of network/web related protocols
  • Knowledge of Web Application Firewall, Privileged Identity Management, Database Access Monitoring and Vulnerability assessments.
  • Knowledge of Anti-phishing and Dark web monitoring services

Industry

  • Financial Domain (Banking / NBFC experience is desirable)

Responsibilities

  • Lead a team of Security Operations Centre’s covering Technology, People, Process and Governance.
  • Assist in developing SOC vision, align to business, and build a roadmap to achieve it. 
  • Ensure that all servers, key applications, networking devices, security devices are integrated to SOC.
  • Ensure that all attacks on information systems are detected and managed
  • Build Threat Hunting, Deception technology capabilities
  • Build relationship between SOC team and internal departments to ensure monitoring, smooth incident response and compliance.
  • Lead and manage security incidents from identification through remediation, carry out Incidence response activities
  • Ensure that generic, banking specific customized use cases are created, implemented and managed.
  • Ensure that logs from devices are collected/stored and preserved as per forensic investigation requirements
  • Build SOC governance and share timely reports to relevant stakeholders
  • Manage SOC Vendors and Vendor contracts.
  • Manage SOC team efforts, mapping of team vs efforts, monitor security events, manage incidents effectively with available resources and provide first and final escalation analysis.
  • Manage staff, including selection, goal setting, annual reviews, and compensation planning and career development.
  • Professional Communication, including executive level, and documentation of metrics, SLAs and procedures
  • Have passion for cyber security innovation, should be a thought leader
  • Plan and Manage Annual budgets for Security Operations.

Industry Certifications

  • Industry certifications such as CEH/CISSP, CISA/CISM
  • Technology vendor certifications (Cisco/Checkpoint/RSA/IBM/HP etc.)
  • Industry standard frameworks (ITIL/ISO/NIST/PCI-DSS)