AVP - Insider Threat - IT

Roles and Responsibilities:

- Define and Manage end to end Insider threat management program

- Define policies, processes related to insider threats, identify potential instances of data loss/exfiltration and related activity.

- Evaluate new tools and technologies pertaining to insider threat management, i.e. Data Classification, Data Right Management etc.

- Escalation of security incidents alerts to Compliance Team & Co-ordination with them for presentation in the steering committees for formal review and decision on the Disciplinary actions Feedback to the DLP(Data Leak prevention) Team basis review of the Alerts, Incidents identified as per the existing DLP rules. Additionally, review the classification of alerts raised on a periodic basis to decrease false positives.

- Research and provide suggestions for new DLP rules basis discussions with various business teams

- Govern the overall data discovery and remediation engagements

- Lead maintain staff related security incidents which could indicate a potential Insider Threat risk, and maintain detailed trackers for incidents witnessed and actions taken

- Provide inputs to the Enterprise risk management committee(ERMC)/Information Security Committee(ISC) as per the prescribed frequency regarding incidents and actions taken on incidents Program Management: '

- Requires experience leading both people and process which includes managing Tasks pertaining to Data Discovery, Information Classification, process improvements, and alignment with various information security programs

- Develop business cases for Insider Threat Programme, and set priorities based on risk assessment

- End to end tracking of Insider threat alerts and incidents, including disciplinary actions taken by responsible business/ Human resource/ legal function

- Prepare, operationalize the relevant Alert/ Incident metrics, as part of the overall infosec function"

- Successful development, implementation and operationalizing the insider threat Management programme

- Increase in maturity of insider threat Programs (Adoption & Capabilities) - '

- Successful go live of security projects & Initiatives within the budgeted timeline and cost

- Minimum Business disruption through an effective Change management program, including communication, training/ awareness sessions etc. while rolling out new tools and technology, Configuring additional rules in existing systems"

Skillsets Required:

- Expert knowledge and in-depth understanding of Insider threat management processes, tools and technologies

- Experience in a similar type of role in a multinational business, governments and industry bodies, - Knowledge of cybersecurity risks and information security standards

- Experience in managing data privacy incidents, investigations and breaches

- Understand security controls from a people, process and technology perspective.

- Ability to interact and work with various senior stakeholders. Manage congruent relationships among different teams.

- Excellent written & verbal communication & presentation skills.

- Ability to lead, collaborate, challenge and influence peers. Passion for project based execution and process improvement.

- Excellent Documentation, Communication, presentation, interpersonal and leadership Skills "

- A Bachelor's Degree or advance course in Computer Science or Information Security related areas

- Must have prior experience of successfully running the insider threat program for an organization of at least our size

- Should have strong knowledge of insider and privacy frameworks such as - NIST, DSCI, ISO, PCI, GDPR, etc.

- Working knowledge of compliance frameworks and security management standards (e.g., ISO 27001, NIST CSF, PIC_DSS etc.) "

- 7-10 years overall experience, Out of which 5+ yrs. Of experience in Data Leakage Prevention, Incident Management, Incident Investigations, Digital right management, data classification, Data security auditing and related domains. "