Add office photos
All Filters
225 Novartis Jobs
Assoc. Dir. DDIT ISC SecOps VulnSvcs
5-8 years
Hyderabad / Secunderabad
1 vacancy
Assoc. Dir. DDIT ISC SecOps VulnSvcs
Novartis
posted 3d ago
Job Role Insights
Flexible timing
Key skills for the job
Job Description
Summary
-Oversees security operations service line, technology governance and external/internal interfaces in accordance with service operations and management processes.
- Objective of the role is to continuously reducing risk exposure from security vulnerabilities with major focus on cloud services and technologies posture.
- This role is part of a pool of security vulnerability experts, with the objective of analyzing ongoing security vulnerabilities risk posture, collaborate with stakeholders/finding owners for managing resolutions, act as SME to assess discovered vulnerabilities, provide pragmatic solutions and flexibly support emergency vulnerability remediations. Collaboration with cross functional teams for threat intel, incident response, security architecture, engineering, remediation and security operations are key.
- Objective of the role is to continuously reducing risk exposure from security vulnerabilities with major focus on cloud services and technologies posture.
- This role is part of a pool of security vulnerability experts, with the objective of analyzing ongoing security vulnerabilities risk posture, collaborate with stakeholders/finding owners for managing resolutions, act as SME to assess discovered vulnerabilities, provide pragmatic solutions and flexibly support emergency vulnerability remediations. Collaboration with cross functional teams for threat intel, incident response, security architecture, engineering, remediation and security operations are key.
About the Role
Major accountabilities:
- Act as a Cloud Security SME and Vulnerability Management point of contact for responding to ongoing vulnerability exposure with major focus in cloud services (AWS and Azure).
- Monitor and prioritize security vulnerabilities through risk analysis to understand potential impact and translate vulnerability severity as security risk.
- Ensure that vulnerability remediation plans are delivered to the agreed SLA, engage application managers and asset owners to carry out corrective actions.
- Identify potential improvement areas for vulnerability response and shared learned lessons with teams and customers.
- Take accountability to ensure alignment with Security and Compliance policies and procedures.
- Stay up to date with the latest security threats and vulnerabilities, proactively recommending mitigation strategies.
- Develop and maintain documentation of related process and standard methodologies.
- Implement security policies, procedures, and standards to ensure the confidentiality, integrity, and availability of cloud resources from technical vulnerabilities.
- Provide security awareness and training to teams on security practices and vulnerability related processes.
- Support vulnerability assessments and penetration testing of infrastructure, applications, and services.
- Be flexible with work schedules (including support outside standard business days/hours) to coordinate emergency response for high-risk vulnerability remediation with relevant customers. Drive identification of root causes and prevention of recurrences.
- Collaborate with various customers from cloud engineering, security operations, architecture, cyber, SOC, and application teams to achieve technical risk reduction goals.
- Defines remediation activities for security assessment gaps as they pertain to IT Security Management.
Key performance indicators:
- Stable, compliant, secure, and cost-effective operations measured by Availability, Performance, Capacity, Security Metrics
- Flexibility to support vulnerability response remediation with sense of urgency for critical incidents/issues in business
- Learning Agility, ability to evaluate and launch new services and capabilities
- Productivity gains and defect reduction through continuous improvement
- Automation led Security Operations Services
- Integration of Applications and Infrastructure into Centralized Security Platforms
- Technical expertise proven in identifying, reviewing, and improving vulnerabilities.
- Ensure Application/project satisfied with the risk, security, and remediation advisory.
- Reducing the number of vulnerabilities by adapting remediation wherever possible
- Cross skill collaboration and feedback from the various stake holders
Minimum Requirements:
Work Experience:
Work Experience:
- 10+ years of overall working experience in IT/Security
- 5+ years in Cloud services security area with at least 2 years handling cloud security posture and vulnerability management operations, coordinating with relevant customers, and implementing corrective actions.
- Expertise with top cloud security vulnerabilities, leading vulnerability scoring standards, such as CVSS, and ability to translate vulnerability severity as security risk.
- Strong knowledge of cloud technology environments and their in-depth information including operating system, protocols, services, applications, and configurations to review and consult on vulnerabilities.
- Experience with cloud security vulnerability detection tools and CSPM (preferrable Wiz)
- Hands-on experience monitoring threat intel feeds, high-risk vulnerabilities, finding ownerships, handling shadow IT asset scenarios, sensitizing teams for security remediation, performing quick tests for technical vulnerability confirmation, etc.
Relevant Certifications: AWS Certified Security - Specialty, Azure Security Engineer Associate, Certified Cloud Security Professional (CCSP), or equivalent.
Employment Type: Full Time, Permanent
Read full job descriptionPrepare for Associate roles with real interview advice
People are getting interviews at Novartis through
People are getting interviews through
(based on 101 Novartis interviews)
Job Portal
Referral
Company Website
Campus Placement
Recruitment Consultant
Walkin
33%
20%
14%
10%
3%
2%
18% candidates got the interview through other sources.
High
Confidence
?
High Confidence means the data is based on a large number of responses received from the candidates.
What people at Novartis are saying
Rating based on 7 Associate
reviews
Anonymous · Marketing
in Hyderabad / Secunderabad
Likes
work life balance
Dislikes
No dislike as such
Read 7 reviewsAssociate salary at Novartis
reported by
28
employees
₹2.9
L/yr - ₹11.7
L/yr
11%
less
than the average Associate Salary in India
View more details
What Novartis employees are saying about work life
based on 1.5k employees
Flexible timing
Monday to Friday
No travel
Day Shift
Novartis Benefits
View more benefits
Compare Novartis with
GlaxoSmithKline Pharmaceuticals
Compare
Sun Pharmaceutical Industries
Compare
Cipla
Compare
Dr. Reddy's
Compare
Pfizer
Compare
Biocon Limited
Compare
Aurobindo Pharma
Compare
Lupin
Compare
Zydus Lifesciences
Compare
Torrent Pharmaceuticals
Compare
Viatris
Compare
Abbott
Compare
Alkem Laboratories
Compare
Ipca Laboratories
Compare
Glenmark Pharmaceuticals
Compare
Akums Drugs & Pharmaceuticals Limited
Compare
DIVI'S Laboratories
Compare
Piramal Group
Compare
Sanofi
Compare
Fresenius Kabi
Compare
Similar Jobs for you
Novartis Hyderabad / Secunderabad Office Location
Hyderabad Office
Novartis, Salarpuria-Sattva Knowledge City, Madhapur, Madhapur, Inorbit Mall Rd, Silpa Gram Craft Village, HITEC City
Hyderabad
Telangana 500081
Telangana 500081
Assoc. Dir. DDIT LDC Platform Mgt(SAP Solution Manager)
7-11 Yrs
Hyderabad / Secunderabad
Associate Director, M365 Platform Design & Delivery
11-15 Yrs
Hyderabad / Secunderabad
Assoc.Dir.DDIT US&I Analytics Sol. Architecture
12-15 Yrs
Hyderabad / Secunderabad
Associate Director DDIT ISC Detection & Response
4-8 Yrs
Hyderabad / Secunderabad
Share an Interview