Vice President- Security Operations lead

Exp: 12-19 Years

Job Description

Job Description

Below are key responsiblities.

Security Solution design and implimentation.

Design & develop strong, sustainable, and highely secure solution to protect the Orgnaisation asset.
brainstoirming with EEM and vendor to prose and design the suecirty solution.
project management through out project life cycle.
Security operation support for implimented solution.

IT Security Operations

Manage security solution, like NIPS, APT, Anti Virus,WAF etc.
Responsible for high uptime for all security solution and their management
Manage & maintain the SLAs, operation metrics & support ongoing maintenance activities
Manages security incident, problem and change management.
work with application and other stakeholder to enhance application security.
Work with Infosec,Compliance,legal team to work on day to day security realted task.

Vulnerability management

Responsible for OS, Non-OS, vulnerability managment.
Responsible for VA/PT assessement , mitigation and managment.
Responsible for 98% compliance with respect to Vulnerability management.
co-ordination with all IT team/Leads to get maintanance window, pre and post sanity of weekly and monthly basis.

Auditing and compliance

responsible to work along with Infosec team to conduct PCI-DSS, ISO 27001 etc and related internal or external auditing.
Responsible to work on RED team and Blue team security assessment and mitigation on the finding.
Manage compliance requirement on external & internal audit on IT vertical
implementation for security hardening configuration on all IT devices which include compute, Network and servers.
manage the compliance , IT security policy adherence, user access control etc.

Network & Security Project Management

Identifying new technologies to enhance network efficacy, supporting vendor finalizations, deployment of new technologies and monitoring performance metrics
Design & develop strong, sustainable, and high available network design
Review network infrastructure architecture and solutions
Deliver long term sustainable and scalable network solutions
Take lead in implementing network security solutions to ensure the network security from internal and external users
Provide technical design support, sizing, availability guidance for network

Network Operations Management

Deliver high network uptime for IT Operations
Manage & review network SLAs, operation metrics & support ongoing maintenance activities
Manages incident, problem and change management for networking equipment
Manage performance tuning and capacity planning activities to enhance the performance of the network resources
Mentor and lead internal and external network management team

Vendor Management

Maintain relationship with network and services vendor leadership to ensure effective implementation and network operations, ongoing support, and deployment of competent resources
Responsible for coordinating and managing external network vendors for data connectivity
Provide technical & program management expertise and oversight over vendor teams
Monitor vendor SLAs, perform regular review with vendor management and report to SBI Card leadership
Ensure timely renewals of vendors contracts

Risk & Compliance Management

Oversee the implementation, and maintenance of standard operating procedures/ run book in line with SBI Card policies & standards
Review network inventory and maintain patch compliance & vulnerability management as per defined SLA
Manage compliance requirement on external & internal audit on network equipment
Manage risk register & review periodic risk mitigation actions
Manage network availability at DR/BCP locations

Measures Of Success

Security Solution design and implimentation

IT Security Operations

Vulnerability management

Responsible for 98% compliance with respect to Vulnerability management.
co-ordination with all IT team/Leads to get maintanance window, pre and post sanity of weekly and monthly basis.

Auditing and compliance

All IT infra related finding in the auditing should be closed as per agreed timeline.
All hardware should be on agreed OS firmware (N-2)compliance.
All IT hardware /tools should have hardening configuration implimented.

Network & Security Project Management

Network Operation Management

Network uptime SLA - 99.9% uptime of Network Operations
Change Management Report Change failure should not be more than 5%
Problem Management Report - 80% of P-1 incident RCA to be closed in 7 Working Days

Vendor Management

Risk & Compliance Management

Budgeting

Education & Technical Skills

BE /B Tech/MCA
Experience of 19 years in Designing,IT & Cyber Security .
Security certification: CISM/CISSP
Security compliance certification: CISA, PCI DSS implimenter
Network Technology Certifications - CCIE/CCNP, CCIP
Project managementCertifications - PMP,PRince2, ITIL
Candidate should have 12-15 years of technical experience in Network Operations and Management
Network Technology Certifications - CCIE/CCNP, Network Security Firewall, Proxy, VPN etc
Experience of ISO 27001 and PCI DSS implementation

Competencies Critical For The Role

Good experience in security design, security solution and operation.
Good experience in network design, security solution and operation.
Strong knowledge on security tools WAF, NIPS, DLP, NAC, SOAR, threat hunting, Mitre framework.
Should have experience in managing contracts and dealing with external vendors / third parties
Depth knowledge of Network Design and Operations
Should have experience in managing contracts and dealing with external vendors / third parties
Strong working knowledge of Network Switches, Routers, Firewalls, Load balancer, WAN Optimizer, WAF, Proxy, APT, NAC and IPS/IDS solutions
Excellent project management skill, stakeholder management, time management.
Excellent Communication, Interpersonal, Presentation and Leadership Skills
Strong verbal and written communication skills with both business and technical areas