Director - IT - Information Security & Risk Management Firm

Job Overview Information Security & Risk Management (ISRM) organization is looking for an experienced manager with strong functional expertise and business acumen to lead our India-based team. ISRM is chartered with protecting the company's digital systems and assets around the globe. If you enjoy working in a fast paced environment where you will help manage risk, finding creative solutions to complex cyber security problems, and applying advanced problem-solving and analytical skills, this position will provide you with a challenging and exciting opportunity. This position is new and will have two key expectations:

- Build, lead, and manage a team of approximately 20 information/cyber security professionals (based in Hyderabad and/or Bangalore) to support a variety of both technical and administrative capabilities in a global cross-functional setting. The team will be given additional goals and growth opportunities based upon demonstrated success to ISRM executive management.

- Ensure success of India-specific ISRM initiatives in building and maintaining overall secure regional ecosystems.

Minimum Qualifications - Ability to lead and/or support technical and administrative cyber security capabilities including event monitoring/triage, incident response, vulnerability management, technical and non-technical risk assessments, M&A cyber activity, policy, procedures, and compliance life-cycles.

- Knowledgeable in a wide variety of cyber/information security, governance, risk, and compliance tools and reporting systems.

- A positive track record of flexibility and versatility to adapt to ever changing threats and business drivers that influence the projects and priorities of ISRM.

- Experience with a wide variety of security technologies and processes to quantify and mitigate risks.

- Experience generating accurate and timely reports and implementing workflows in support of a fast-paced and complex environment.

- A strong peer network in India of Information Security professionals to partner and share information as it pertains to threats and information security trends affecting the enterprise.

Qualities must include:

- Technical leadership skills to provide world-class information security solutions.

- Strong communications skills and cross-functional relationship building skills.

- Stays on top of industry trends.

- Ability to successfully pass a background check.

- Ability to interact successfully with senior level engineers and outside subject matter experts.

Experience must include:

- Minimum of 8 years in the information security field.

- Minimum of 4 years experience managing direct reports.

- A track record of strong performance management, mentoring, and team development in a multinational technology corporation.

- Coding moderate to complex assignments in interpreted and/or compiled languages such as Python, Perl, Java/JavaScript, and C/C++.

Technical knowledge must include:

- Enterprise application, database, host, and network security models.

- Application and security event logging systems.

- Internet connectivity and protocols (TCP/IP/IPv4/IPv6).

- Common operating system and business application platforms with an understanding of enterprise architecture and integrations.

- Ability to gather system requirements, perform process analysis, work independently, and navigate complex situations.

- Cyber security incident response, event analysis, investigations, and forensics duties.

- Analysis and response to cyber security and other forensics events including coordination/task management and documentation of all aspects of related efforts .

- Global privacy and support activities.

- ISO-27001, HIPAA, and PCI certification support activities.

Preferred Qualifications - Related industry certifications such as EnCE, CCFE, OSCP, CISSP, CISA, or GIAC are a plus.

- Cryptography knowledge and expertise.