Deputy General Manager - Cyber Security

Job Description:

We are currently seeking an experienced Cyber Defense with minimum 10+ years of relevant experience to lead our team in ensuring the security and integrity of our organization's systems and data. The ideal candidate will have a strong background in security operations, including data loss prevention, ZT technology, endpoint protection and incident response. This role requires a proactive approach to identifying and mitigating security threats, as well as strong leadership skills to manage a team of security analysts effectively.

Key Responsibilities:

-Cyber Defense Strategy:

Develop and execute a comprehensive cyber defense strategy aligned with organizational goals, risk tolerance, and industry best practices. Define priorities, objectives, and initiatives to enhance the organization's resilience against cyber threats.

-Security Operations Centre (SOC):

Build the SOC to cater the IT and OT infrastructure as a green field setup

Define and Oversee the day-to-day operations of the SOC, and response to security events and incidents.

Lead a team of security analysts and MSS Partners in detecting and responding to security threats in a timely manner.

Develop and implement SOC policies, procedures, and workflows to ensure effective security monitoring and incident response.

Drive automation to improve efficiency.

Explore and leverage Open Source Platform across the process

Ensure adequate TI feeds are identified and leveraged.

-Cyber Threat Hunting:

Implement proactive threat hunting activities to identify and mitigate threats that may evade traditional security controls. Utilize threat hunting techniques, analytics, and tools to detect advanced and persistent threats within the organization's environment.

-Data Loss Prevention & Email Security:

Define, Implement and manage data loss prevention (DLP) solutions to prevent the unauthorized disclosure of sensitive information across different technology landscape ( endpoint, Network, Cloud etc..).

Monitor and analyse email traffic for security threats and policy violations, and implement controls to mitigate risks.

Define and drive the appropriate controls to restrict the data across different partners and suppliers based on business need.

-Data Classification:

Develop and implement data classification policies and procedures to ensure the appropriate handling and protection of sensitive data.

Educate employees on data classification requirements and best practices.

-Mobile Security:

Implement and manage mobile device management (MDM) solutions to secure mobile devices and data.

Enforce security policies and controls for mobile devices to prevent unauthorized access and data leakage.

-Zero Trust (Endpoint and Perimeter):

Identify a technology which full fill the business need to drive Zero Trust security philosophy.

Implement a Zero Trust security model for both endpoint and network perimeter security.

Utilize advanced security technologies and methodologies to continuously verify the trustworthiness of devices and users.

-Technology Identification and Deployment:

Identify and deploy versatile technology stack across different services as SIEM, EDR, DLP, DC, Secure Remote Access, Secure Web Gateway, TI in the combination of Commercial and Open Source solutioning.

Define and promulgate the necessary process across organization.

-Security Incident response:

Develop and maintain incident response plans and procedures specific to security incidents and ensure appropriate remediations are achieved with proper team.

Provide support and expertise during security incidents raised by relevant stake holders.

Key Skills and Qualifications:

Bachelor's degree in Information Security, Computer Science, or related field. Advanced degree or relevant certifications (e.g., CISSP, CISM, GIAC) preferred.

Extensive experience in security operations, including SOC management, application security, and incident response.

Strong understanding of security technologies and methodologies, including data loss prevention, email security, and mobile security.

Knowledge of data classification principles and practices.

Familiarity with Zero Trust security models and implementation strategies.

Experience managing special access networks and implementing strict access controls.

Excellent leadership and communication skills, with the ability to effectively lead and motivate a team.

Strong analytical and problem-solving abilities.

Experience working with external incident response partners and vendors.