Lead - Cyber Security - Retail

PURPOSE OF THE ROLE:

- The Cyber Security Lead is responsible for leading and managing the organization's cyber security initiatives. This role involves ensuring that our IT operations align with regulatory requirements, managing risks effectively, and maintaining robust governance processes.

- The Cyber Security Lead will work closely with the Organisation's v CISO, the outsourced cyber security team, and other IT and business teams to ensure that security policies, procedures, and best practices are regularly enforced and updated to combat emerging threats.

KEY RESPONSIBILITIES:

Governance:

- Develop and implement IT governance frameworks and processes.

- Ensure alignment of IT policies and procedures with business objectives.

- Monitor compliance with IT governance standards and best practices.

- Manage Cybersecurity Audits and ITGC audits by internal and statutory auditors.

Security Strategy and Implementation:

- Implement, and maintain comprehensive security policies, procedures, and guidelines.

- Lead the implementation of robust security architectures for new and existing IT systems.

- Evaluate and recommend new security tools and technologies to enhance the organization's security posture.

- Awareness of elements of IT infrastructure, M365, AD, Microsoft applications, Azure /AWS, cloud technology, applications, servers, storage, network and disaster recovery.

Risk Management:

- Responsible for scheduling and conducting regular risk assessments and vulnerability analyses to identify potential security threats and weaknesses.

- Develop and execute mitigation strategies to address identified risks.

- Ensure compliance with relevant security standards, regulations, and industry best practices.

- Determine schedule for periodic vulnerability assessment and penetration testing of IT Applications and Infrastructure as per criticality and remediate risks with respective OEMs/SaaS providers.

Incident Response:

- Project Lead for implementation of SIEM platform for organisation's Cyber Assets.

- Monitor the performance of the Security Operations Centre team (outsourced partner) in managing security incidents and breaches, including investigation, reporting, containment, and remediation efforts as per Regulatory requirements.

- Responsible for monthly KRI & KPI reporting to the Organisation's Management & ERM team.

- Maintain an incident response plan, ensuring all stakeholders know their roles and responsibilities.

- Conduct post-incident analysis to improve future response efforts and prevent recurrence.

Team Leadership, Training and Development:

- Manage a team of outsourced security professionals to achieve the Organisation's cyber goals.

- Conduct regular ITGRC awareness programs for employees across the organization.

Collaboration and Communication:

- Work closely with the vCISO team, and get relevant feedback, controls and best practices implemented.

- Work closely with IT, legal, compliance, and other departments to ensure alignment of security efforts with business objectives.

- Communicate security risks, strategies, and incidents to senior management and other stakeholders clearly and concisely.

- Collaborate with external partners, vendors, and industry peers to stay abreast of emerging threats and security trends.

SKILLS & COMPETENCIES:

Education and Experience:

- Bachelor's degree in computer science, Information Technology, Cyber Security, or a related field.

- Minimum of 3-5 years of core experience in IT Governance, Risk Management, and Compliance.

Technical Skills:

- In-depth knowledge of security frameworks and standards (e.g., ISO 27001, NIST, GDPR). SEBI regulation knowledge will be preferred.

- Experience with security tools and technologies such as firewalls, intrusion detection/prevention systems (IDS/IPS), SIEM, DLP, and endpoint protection.

- Strong understanding of network security, encryption, authentication, and access control mechanisms.

- Experience in conducting risk assessments, vulnerability assessments, and penetration testing.

Certifications:

- Relevant security certifications such as CISA, or equivalent are highly desirable.

JOB CONDITIONS:

- Office Environment

- 40% Travel