Security Operations Center (SOC) – The Security Operations Center Lead role requires a subject matter expert in the Area of Security Operations, Security technology Stack, security product life cycle management.
Effective communication with key Sr. stakeholders, business function leadership and technology leaders is a key to the success of this role. – Plan, direct and control the functions and operations of the 24/7 Security Operations Center (SOC). Monitor and analyze security incidents to protect SBI Card and its information assets from unauthorized access, misuse, Organizationification or destruction .
Develop and maintain an incident response management program that includes incident detection, analysis, containment, eradication, recovery and chain of evidence/ forensic artifacts required for additional investigations. – Evaluate RFIs/ RFPs/BRDs, vendor proposals, cost estimates for key technology platforms being introduced or revamped in the organization from information security perspective. – Liaise with multiple vendors/solution providers for product evaluation throughout the lifecycle of the Security Operations related project. – Develop business cases for security investments and set priorities based on risk assessment. – Ensure adherence to regulatory compliance, banking laws governing information security, customer identification program, personal identifiable information and assets – Monitor all intelligence sources to identify potential threats/compromises and develop proactive strategies to minimize the impact of these threats – Manage the collection, documentation and research of security incidents – Conduct scheduled and ad hoc training exercises to ensure staff are current with the latest threats and incident response techniques – Oversee and develop strategies to identify, detect, and prevent fraudulent activity – Establish performance goals and priorities. Prepare, conduct and review performance appraisals. Develop, mentor and counsel staff – Provide input and/or prepare budget requirements for Annual Financial Plan – Lead SOC Integrations with new infra, network, and applications – Ensures integration of security requirements in project design, timely and high quality delivery of projects .
Develop operational run/play books – Liaison with IT teams and other biz functions to ensure security incidents are contained as per the SLA Vendor Management – Lead and manage outsourced SOC operations – Manage outsourced SOC services for quality of implementation of Scope of work and performance/ fulfillment of Service Level Agreements (SLA) – Monitor key performance indicators, determine gaps in performance metrics, and recommend/execute change management techniques for efficiency/quality improvements – Oversee the monitoring, identification and resolution of security incidents to detect threats through analysis, investigations and prioritization of incidents based on risk/exposure – Manage multiple vendors involved in the area of security operations Qualifications – BS/BA degree or equivalent combination of related work experience desired. Post-Graduation (Preferred) – Prior SOC Management experience highly desired. – Prior Security Engineering Experience desired. – Prior security analysis experience is desired. – CISSP Certification required – PMP Certification highly desired – Desirable certifications include, Security+, CEH, GCIA, GCIH or similar – Strong risk assessment capabilities, technology and platforms across a broad range of industries – Strong experience in IT Infrastructure, Data Center, Project management, problem solving and operationalization of resources – Strong knowledge and understanding of enterprise IT Systems, applications and databases, cloud infrastructure and security principles, solutions and technologies (like SIEM, DLP, IDAM, Malware protection, WAF, Proxy) – Ability to adapt to changes in the original project plans; effectively communicates changes or delays to team members and key stakeholders – Strong managerial skills with ability to impact individual project direction through influence and collaboration. – Highly proactive and results oriented with proven track record of success in all phases of project development. – Ability to establish and communicate work load prioritization within and between project teams. – Ability to handle multiple projects and tasks simultaneously. – Ability to lead, collaborate, challenge and influence peers. Passion for project based execution and process improvement. – Excellent Documentation (Excel, PowerPoint, Word), Communication, Presentation, interpersonal and managerial skills