Sr Manager- Cyber Security, Dadar (Mumbai)
Job Title/Designation :
Sr Manager- Cyber Security, Dadar (Mumbai)
Employment Type :
Full Time, Permanent
Job Description :
Job Title : Senior Manager- Cyber Security
Reports to : CISO/CRO
Experience : Around 12 years relevant experience with exposure to latest threats/ solutions in information security and cybersecurity space.
Age : Upto 37 years
Required Qualification : BE in Computer Science/Info security/ Information Technology/any relevant stream orMCA/ M.Tech- IT/Cyber Security
Core Competencies :
- Hands-on experience of security hardening of IT Infrastructure landscape covering Unix, Linux, Windows, MS SQL, Oracle, Network devices/ Firewalls, IBMMQ, in memory databases etc .
- Hands on experience in Technologies relevant for information/Cyber security
- SOC implementation, SIEM tools, File Integrity Monitoring, DLP solutions, Web
Application firewall administration, DMARC, Decoy solutions.
- Experience of Network Security Architecture review, firewall reviews, Red team and Blue team activities
- Functional knowledge of Antimalware, web-gateway , e-mail gateways, Routers, Network zoning, Application whitelisting solutions
- Forensics tools and knowledge of
Functional Competencies :
- Should know Project management techniques, and security testing methodologies
- Outstanding communication and Presentation skills
- Cyber security leadership and Teambuilding
- Can conduct large User team cybersecurity awareness sessions
- Ability to work under pressure in afast-paced environment.
- Contribute in multiple areas related to Cyber Security with core competency being in the area Information/Cyber Security relevant processes
- Expertise on Cyber Security Operations and implementation of Use-cases and overall Architecture.
- Good awareness of cybersecurity trends and hacking techniques
- Cyber-attack scenario development and assessment
Job Purpose : Senior Cyber Security Manager to manage organization wide Cyber Security program with continuous monitoring and compliance to organization wide Cybersecurity domain.
Area of Operations Key Responsibility :
Cyber Security Management :
- Overseeing and contributing in formulating Cyber security policy and strategy, selection of security solutions and implementation of cybersecurity aspects (SOC, DLP, FIM, Decoy, WAF, Forensics)
- User interactions management at senior level for presenting the Cybersecurity monitoring and risk mitigation results.
- Manage Cyber security as per policies& procedure of the organization. Add& enhance documentation and implementation of SOPs.
- Driving and sustaining ISO27001cybersecurity metrics.
- Ensuring smooth running of day to day Cyber security operation.
- Conducting and Managing periodic Cyber-drills.
- Periodic Cyber Security Scenario Testing as per Cyber Crisis management plan.
- Develop /improve process to achieve higher posture in cyber security by assessing, mitigating and monitoring of evolving cyber risks.
- Analyzing information security alerts trends and enhances the maturity ofSecurity operations.
- Integrate the IT infrastructure for monitoring basis risk assessments ofinformation assets.
- Ensure investigation of security alerts and incident response are adequately addressed.
- Design and implement adequate use cases for SIEM based on threat analysis and modelling.
- Liaise with stakeholders in relation to cyber security issues and provide future recommendations.
- Present security reports to both technical and non-technical management officials and stakeholders.
- Perform Threat Hunting Activity with the help of SOC team.
- Security incidents and Forensics service /process management
- D-MARC solution implementation and monitoring.
- File Integrity monitoring tool management and implementation.
- Decoy tool management ,implementation and monitoring Security tool and services management
- Security tools and services are adequately implemented, configured and delivered the objective of implementation.
- The security tool licensees, services and agreements are effective and renewed in time.
- The summary reports output from security solutions and monitoring are periodically reported to management
- Cyber insurance renewal and management
WAF and DNS security :
- Administration and Management of Cloud Based Web Application Firewalland Secure DNS for enterprise applications.
- Configuring, Management and Periodic Review of WAF policies.
- Management and Monitoring of WAF alerts
Security systems upgradations :
- Keep up to date with the latest security and technology developments.
- Design new security systems or upgrade existing ones.
Candidate Profile :
Skill, Knowledge & Trainings:- Knowledge of technical infrastructure ( UNIX, Linux, Windows, Firewalls ), networks, databases (Oracle , MS-SQL) and security systems (SIEM, File Integrity Monitoring-FIM, Web Application Firewall-WAF, App. whitelisting, Antimalware, EDR, Firewalls, secure web and mail gateways) in relation to IT Security and IT Risk.
Preferred Qualification : Professional Certification- Security+, CompTIA Network+ , CCNA , CISSP,CCSP,CISM, CEH, OSCP etc.
- Proven experience as an Cyber Security Specialist with Security operations Center, Threat hunting, Red Team/ Blue Team exercises, DLP, File Integrity Monitoring, Forensics, D-MARC, Security Assessments - Network security Architecture review(NSAR), Appsec, VA- PT
- Familiarity with security frameworks like ISO 27001, NIST 800-53 controls, RBI Cybersecurity framework and risk management methodologies.
Experience : 12 to 16 years
Annual CTC : Rupees 19,00,000 to 30,00,000
Didn’t find the job appropriate? Report this Job