Deputy Vice President - Information Security Operation - BFSI

- BS/BA degree or equivalent combination of related work experience desired. Post-Graduation (Preferred)

- Prior SOC Management experience highly desired.

- Prior Security Engineering Experience desired.

- Prior security analysis experience is desired.

- CISSP Certification required

- PMP Certification highly desired

- Desirable certifications include, Security+, CEH, GCIA, GCIH or similar

- Strong risk assessment capabilities, technology and platforms across a broad range of industries

- Strong experience in IT Infrastructure, Data Center, Project management, problem solving and operationalization of resources

- Strong knowledge and understanding of enterprise IT Systems, applications and databases, cloud infrastructure and security principles, solutions and technologies (like SIEM, DLP, IDAM, Malware protection, WAF, Proxy)

- Ability to adapt to changes in the original project plans; effectively communicates changes or delays to team members and key stakeholders

- Strong managerial skills with ability to impact individual project direction through influence and collaboration.

- Highly proactive and results-oriented with proven track record of success in all phases of project development.

- Ability to establish and communicate work load prioritization within and between project teams.

- Ability to handle multiple projects and tasks simultaneously.

- Ability to lead, collaborate, challenge and influence peers. Passion for project based execution and process improvement.

- Excellent Documentation (Excel, PowerPoint, Word), Communication, Presentation, interpersonal and managerial skills

Security Operations Center (SOC)

- The Security Operations Center Lead role requires a subject matter expert in the Area of Security Operations, Security technology Stack, security product life cycle management. Effective communication with key Sr. stakeholders, business function leadership and technology leaders is a key to the success of this role.

- Plan, direct and control the functions and operations of the 24/7 Security Operations Center (SOC). Monitor and analyze security incidents to protect Company and its information assets from unauthorized access, misuse, modification or destruction

- Develop and maintain an incident response management program that includes incident detection, analysis, containment, eradication, recovery and chain of evidence/ forensic artifacts required for additional investigations.

- Evaluate RFIs/ RFPs/BRDs, vendor proposals, cost estimates for key technology platforms being introduced or revamped in the organization from information security perspective.

- Liaise with multiple vendors/solution providers for product evaluation throughout the lifecycle of the Security Operations related project.

- Develop business cases for security investments and set priorities based on risk assessment.

- Ensure adherence to regulatory compliance, banking laws governing information security, customer identification program, personal identifiable information and assets

- Monitor all intelligence sources to identify potential threats/compromises and develop proactive strategies to minimize the impact of these threats

- Manage the collection, documentation and research of security incidents

- Conduct scheduled and ad hoc training exercises to ensure staff are current with the latest threats and incident response techniques

- Oversee and develop strategies to identify, detect, and prevent fraudulent activity

- Establish performance goals and priorities. Prepare, conduct and review performance appraisals. Develop, mentor and counsel staff

- Provide input and/or prepare budget requirements for Annual Financial Plan

- Lead SOC Integrations with new infra, network, and applications

- Ensures integration of security requirements in project design, timely and high quality delivery of projects

- Develop operational run/play books

- Liaison with IT teams and other biz functions to ensure security incidents are contained as per the SLA

Vendor Management

- Lead and manage outsourced SOC operations

- Manage outsourced SOC services for quality of implementation of Scope of work and performance/ fulfillment of Service Level Agreements (SLA)

- Monitor key performance indicators, determine gaps in performance metrics, and recommend/execute change management techniques for efficiency/quality improvements

- Oversee the monitoring, identification and resolution of security incidents to detect threats through analysis, investigations and prioritization of incidents based on risk/exposure

- Manage multiple vendors involved in the area of security operations