Infrastructure Security Operations Leader - IT

We have an opportunity for an Infrastructure Security Operations Leader for one of our client in Bangalore.

Security Operations :

- Accountable for the Security Operation and delivery of the assigned service line.

- Ensure that the quality of service is maintained, client targets are met and opportunities are developed to maximize revenue

- Participate in the establishment and development of the operation, leveraging previous (Cyber Security) experience in order to provide a differentiated service to the client

- Ensure delivery of commercial aspects of the outsourcing agreement, as well as standards of service (relating to quality, effectiveness, productivity, efficiency etc.) are to the agreed SLAs

- Demonstrate, and seeks to deepen, an awareness of business/ industry issues and drivers

- Make decisions to improve the operation of the assigned service line and contribute to the advancement of the clients business

- Provide solutions to complex business problems within the service line

- Establish and maintain key relationships with the client, team leads and client management

- Ensure new solutions affecting the assigned service line are operationally efficient

- Good Knowledge of IT Security, Application security, new technology with relevant standard/ regulation. Good Knowledge of ISO 27001, PCI DSS, HIPAA, SSAE 16, SOX control etc. IT Risk and Resiliency Management. Information security Governance, Regularity Compliance. Managerial skills to drive requirement independently.

Job description :

- Vulnerability Assessments, Data Protection, Proactive identification of threats and implementing the solutions/ mitigation plans. Customer management, Project management Skill. Metrics and Reporting skill.

- Capable to Perform security architecture reviews for infrastructure and provide feedback on proposed design. Can take care of Risk Management, Vulnerability Management, Incident Management, regulatory requirements. Be aligned with concerned person for a while to understand existing setup / requirements Work closely with operations teams, application and network/ telecom/ systems teams to maintain compliance levels.

- Manage the assignment of specific responsibilities relating to information security by coordinating with representatives from different parts of the organization with relevant roles and job functions.

- Work to ensure that all local IT systems and initiatives are secure and meet published global security requirements, and ensure that they do not conflict with global IT direction/plans.

- Manage and oversee the effective local information risk and security implementation of strategic activities with direction from Global while accommodating any specific local requirements.

- Implement and enforce Organization's Global Information Security Policies, Requirements (including those issued as part of special programs and initiatives (e.g. Enhanced Security Program, Cyber Resilience Initiative)) & Specifications together with any other applicable local policies.

- Serve as the single point of contact for all client information security queries and requirements.

- Implement and maintain a comprehensive, ongoing (at least annual) information risk and security awareness campaign.

- Assess information security risks and provide risk assessment signoff (including new systems acceptance and emerging risks).

- Follow local established processes for responding to security incidents, closely monitoring the situation and escalating to ITS Global in the following instances

- Coordinate inter-firm responses to client queries and questionnaires on information protection topics. Provide answers on behalf of their member firm and work with others to ensure consistent responses from all Organization's firms that are delivering services to the client (including consulting services).

- Carry out an annual internal audit according to the standardized approach provided by Global, based on a set of pre-defined compliance - Key Controls

- Address action items resulting from internal audits and GRC, prioritizing the compliance Key Controls.

- Identify and document instances of non-compliance with security policies, and report non-compliance to ITS Global.

- Security incident monitoring and reporting to Global Security Operation Center (GSOC)

Operational :

- Request and assign resources and responsibilities within the service line to deliver business results

- Accountable for the Identification and implementation of procedural and policy improvements on an ongoing basis in order to deliver differentiated levels of service across Service Line

- Design and implement the procedures and principles for daily operations of the service line

- Implement the necessary reporting and governance arrangements to ensure effective management controls are established to oversee effective and efficient operation of the service line

- Accountable for client satisfaction with the service line

- Act as the escalation point for problems/issues within the service line

- Actively look for ways to grow skills and experience within the Service Line

Role Accountability :

- Accountable for the results of the Service Line activities

- Accountable for ongoing management of effective client service relationship within the service line

- Develop new approaches and processes

- Interface with other team leads, management and client staff and ensures good working relationships

- Ensure the service line operations are efficient and effective and that SLA"s are met

- Generate revenue opportunities and maximize margin

- Ensure the first class delivery of service to clients

Scope :

- Demonstrated excellent client care skills

- Recognized as having expert knowledge and vision for the assigned service line

- Produces solutions to complex business problems

- Develop new concepts and opportunities within their Service Line

- Contribute to policy and direction setting

- Comply with all Client and Data Security and Quality requirements