NCDEX - Assistant Vice President - IT Security

Assistant Vice President IT Security Lead

Roles & Responsibilities:

- In depth understanding of information security policies, procedures, compliance monitoring, disaster recovery operations.

- Handling Internal and External Systems Audit covering key areas like Network Security, Security operations, Vulnerability Assessment, Access Control.

- Hands on in SIEM and understanding of SOC operations, Patch management, Antivirus, URL Web Filtering, Vulnerability and Configuration Assessment, Firewalls (preferably Checkpoint), IDS/ IPS, WAF, VPN, PIM, DDoS, DLP and APT solutions.

- Capacity management and performance management of security solutions.

- Knowledge of networking concepts like switching and routing, network monitoring tools.

- Good understanding of information security standard and process such as ISO 27001.

- Implements security improvements by assessing current situation; evaluating trends; anticipating requirements.

- Determines security violations and inefficiencies by conducting periodic audits.

- Upgrades system by implementing and maintaining security controls.

- Ensuring compliance to regulatory requirement by maintaining SOP and process adherence.

Project Management:

- Defining, Planning, Scoping, scheduling, preparing complete work breakdown.

- Vendor Management/SLA Monitoring.

Compliance:

- Monitor compliance as per organizational information security policy, procedure and Guidelines.

- Defining new policies and reviewing existing policies for changes.

- Understanding of SEBI security guidelines.

Educational Qualification: Bachelors degree in Computer Science, information technology or equivalent professional experience.

Experience: 15+ years of combined experience in Network security/IT Security.

Skills Required:

- Experience in driving change in security functions.

- Experience with contract and vendor negotiations.

Functional Competencies required:

- Experience of working in Stock Exchange environment.

- Good written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate security and risk-related concepts to technical and nontechnical audiences.