'%3e%3cpath d='M15.3069 13.1535H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3cpath d='M15.3069 8.15347H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3cpath d='M15.3069 3.30693H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3c/g%3e%3cdefs%3e%3cclipPath id='clip0_126_10407'%3e%3crect width='16' height='16' fill='white'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e){kind=small}
Lead - Security Operations Center/IR & Threat Intelligence - BFSI
MumbaiActionable :
- Complete oversight on all aspects of the Cyber Security Operations Center (CSOC)
- Define, develop and maintain appropriate policy, procedures and process.
- Develop appropriate metrics to measure effectiveness of SOC alerts, tickets closure
- Review operational and tactical metrics
- Guide and mentor the team, ensure training & skill development of the team.
- Develop executive metrics summary on SOC alerts
- Contribute strategically to move each area to next level
- Periodically review security events/incidents and ensure that they are classified appropriately, prioritize and escalated within the defined timelines.
- Ensure all the security events/incidents are captured within the incidents register and ITGRC system
- Ensure all the required regulatory reporting are performed of all the security events/incidents
- Handling the threat Intelligence received from different TI sources.
- Process documentation for Incident Management work programs in the bank.
- Review all the data to be provided to statutory and regulatory authority
- Lead operations committee meeting on Incident Response to ensure all the operational challenges are resolved on a periodic basis.
- Escalate to senior management and CISO if issues are not getting resolved affect the IR domain
- Execute projects to take IR domain to the next level
- Track and monitor strategy to achieve operational excellence through automation
- Escalate critical incidents that require management attention in a timely manner and provide timely updates
- Oversee emerging cyber threats, proactive modeling, threat validation
- Prepare threat awareness communications
- Developing and maintaining new technical and non-technical sources of information, threat research, threat profile development, analysis, briefings, and warnings
- Plan, track and monitor threat intelligence research to identify new threats
- Process documentation for Threat Intelligence work programs in the bank.
- Develop threat intelligence tactics, techniques and procedures
- Converting threat intelligence and research data into actionable intelligence
- Perform technical research into advanced, targeted attacks, crimeware campaigns, malware and other emerging technologies and techniques to identify and report on cyber attacks
- Assess threat risk and develop a contextual threat blueprint on the likelihood and impact to company networks and infrastructure based on the guidance provided by the Lead
- Perform proactive research on threats which are targeting organization, relevant industry and in some cases country specific
- Execute strategy to monitor the threat vectors across the black market / dark web which are involved into harmful activities against the organization
- Creating threat intelligence reports for senior management. These threat reports will help them understand the changing threat landscape
- Manage strategic initiative projects for Cyber Security
- Ensure appropriate budgets are maintained for the new cyber security projects
- Prepare funding approval documentation for new projects
- Engage with third party industry experts to conduct maturity reviews
- Be a single point of contact for IA and regulatory/compliance data requirements and evidences
- Ensure audit reports for the respective area managed are responded to in a timely manner
- Maintain appropriate evidence records
- Ensure no major non-conformance in the area managed.
- Maintain all SOC event, Incident in the appropriate format for regulatory submissions
- Maintain Cyber Security incident register
- Report critical cyber incidents to regulators in a timely manner
- Periodically conduct RBI Cyber Security circular gap assessment and review
- Involve in providing inputs with respect to Cyber Defense area for any regulatory Cyber Security circulars that may come
- Manage all the documentation for the area managed
- Review and update the design of the Cybersecurity Policy, Procedure, Process time to time to close gaps.
- Manage, maintain and enhance Cyber Resilience framework documentation.
- Involve in providing appropriate inputs to cover various scenarios during insurance renewal and procurement.
Didn’t find the job appropriate? Report this Job
'%3e %3cpath d='M24 48C37.2548 48 48 37.2548 48 24C48 10.7452 37.2548 0 24 0C10.7452 0 0 10.7452 0 24C0 37.2548 10.7452 48 24 48Z' fill='%23333333' fill-opacity='0.8'/%3e %3cpath fill-rule='evenodd' clip-rule='evenodd' d='M22.5299 19.0115V19.5849V29.0154V31.5316C22.5299 32.3403 23.1967 33 24.004 33C24.8114 33 25.4784 32.3358 25.4784 31.5316V29.0154V19.5849V19.013L29.4885 23.0077C30.0627 23.5795 31.0044 23.5743 31.5733 23.0077C32.1421 22.441 32.1423 21.4975 31.5735 20.9308L30.1054 19.4684C30.0891 19.4504 30.0724 19.4329 30.0551 19.4156L25.0837 14.4634L25.0479 14.4264C24.9234 14.3024 24.7807 14.2055 24.6281 14.1358L24.5952 14.1212C24.5751 14.1126 24.549 14.1022 24.5286 14.0946C24.0039 13.8983 23.3839 14.0068 22.9622 14.4268L22.9533 14.436L21.4743 15.9093C21.4615 15.9211 21.449 15.933 21.4367 15.9452L16.4286 20.934C15.8598 21.5008 15.8545 22.4389 16.4286 23.0108C17.0027 23.5826 17.9394 23.5827 18.5135 23.0109L20.0019 21.5283C20.0147 21.5164 20.0274 21.5043 20.0399 21.492L22.5299 19.0115ZM24.5952 14.1212C24.5751 14.1126 24.549 14.1022 24.5286 14.0946L24.5952 14.1212Z' fill='white'/%3e %3c/g%3e %3cdefs%3e %3cclipPath id='clip0_99_1825'%3e %3crect width='48' height='48' fill='white'/%3e %3c/clipPath%3e %3c/defs%3e%3c/svg%3e "Scroll Up"){kind=small}