Cyber Security Manager - ISO/NIST (8-15 yrs)

Role : Cyber Security Manager

Location : Bengaluru, Walton Road

Reports to : Head IT

Type of Role : Individual Contributor

Position Summary :

The Cyber Security Manager is responsible for developing strategic and tactical plans for cyber risk management and implementing cyber security initiatives and programs. He\she establishes a governance framework for information security to ensure alignment with IRDAI Cyber Security Framework, ISO 27001, NIST Cyber Security Framework, Digital Personal Data protection act to protect company data and IT infrastructure.

The Cyber Security Manager leads the cyber security activities for various IT projects and assists the Development team in delivering Secure applications and in complying with cyber security requirements.

Key Duties & Responsibilities :

1. Develop and Implement Security Policies :

- The cyber security manager is responsible for formulating and implementing comprehensive security policies and procedures that align with the organization's goals and regulatory requirements.

- This includes creating incident response plans, conducting risk assessments, and ensuring compliance with relevant data protection laws.

2. Manage Security Infrastructure :

- The cyber security manager oversees the deployment and maintenance of security tools, systems, and technologies such as firewalls, intrusion detection systems, and antivirus software.

- They collaborate with the infrastructure team to ensure continuous monitoring, analysis, and response to

potential security breaches.

3. Conduct Security Audits and Assessments :

- The cyber security manager leads the evaluation of existing security measures, performs penetration testing, and manages third-party security audits to ensure the organization's systems and data remain

secure by identifying vulnerabilities and potential threats.

4. Incident Response and Crisis Management :

- In a security breach or cyber-attack, the cyber security manager is responsible for leading the incident response efforts.

- This involves coordinating with internal and external stakeholders (CERT IN), conducting forensic investigations, and developing strategies to mitigate the impact of the incident.

- To assist in business continuity preparation and testing by developing and maintaining backup procedures and Disaster Recovery documentation for the security infrastructure to ensure that business requirements are met promptly and to accurately reflect user and business requirements.

- To maintain a very high level of knowledge of cybersecurity equipment and technologies to enable the evaluation, selection, testing, installation and monitoring of new/enhanced systems..

- Evaluation of software and technologies for placement within the company (DLP, SIEM, orchestration, web application firewalls, DNS filtering, traffic examination)

- Continuous vulnerability assessment and recommend remediation procedures

- Participate in remediation efforts along with the Infrastructure Team.

- Analyze network traffic (DC as well as Azure Cloud), flow Logs, audit logs, DNS logs, server logs (including web servers, load balancers, proxies, etc) OS application logs to identify compromised systems, identify denial of service attacks, and pinpoint resource abuse

- Track CVE-based security threats and map to internal controls and remediation plans

- Map security practices to regulatory controls (IRDA Cyber Security Framework , ISO 27001, NIST Cyber Security Framework etc)

- Bachelor's degree in Computer sciences engineering/ information technology with a focus on cyber security is required

- Minimum 10 years of experience in cybersecurity

- Certification in information security (CISSP, CCSP, CISM, etc.) or comparable work experience.

- Proven project management experience

Functional/Technical Competencies & Skillsets :

- 10 years of relevant experience

- A deep understanding of networking protocols, operating systems, and security frameworks is essential. Proficiency in encryption, vulnerability assessment, and penetration testing is vital for effectively managing security infrastructure.

- Knowledge and experience in Gateways IPS/IDES, Advanced Threat Management, Vulnerability Management, SIEM , Antivirus, encryption, DLP concepts, switches, routers, and Firewalls

- Ability to work in teams and communicate effectively with technical and nontechnical employees outside of IT

- Work independently with minimal supervision in a dynamic environment

- Strong problem-solving and analytical skills with the ability to create and develop clear policies, standards and procedures