Vice President- Security Operations lead

Below are key responsiblities.

Security Solution design and implimentation.
Design & develop strong, sustainable, and highely secure solution to protect the Orgnaisation asset.
brainstoirming with EEM and vendor to prose and design the suecirty solution.
project management through out project life cycle.
Security operation support for implimented solution.

IT Security Operations
Manage security solution, like NIPS, APT, Anti Virus,WAF etc.
Responsible for high uptime for all security solution and their management
Manage & maintain the SLAs, operation metrics & support ongoing maintenance activities
Manages security incident, problem and change management.
work with application and other stakeholder to enhance application security.
Work with Infosec,Compliance,legal team to work on day to day security realted task.

Vulnerability management
Responsible for OS, Non-OS, vulnerability managment.
Responsible for VA/PT assessement , mitigation and managment.
Responsible for 98% compliance with respect to Vulnerability management.
co-ordination with all IT team/Leads to get maintanance window, pre and post sanity of weekly and monthly basis.

Auditing and compliance
responsible to work along with Infosec team to conduct PCI-DSS, ISO 27001 etc and related internal or external auditing.
Responsible to work on RED team and Blue team security assessment and mitigation on the finding.
Manage compliance requirement on external & internal audit on IT vertical
implementation for security hardening configuration on all IT devices which include compute, Network and servers.
manage the compliance , IT security policy adherence, user access control etc.

Network & Security Project Management
Identifying new technologies to enhance network efficacy, supporting vendor finalizations, deployment of new technologies and monitoring performance metrics
Design & develop strong, sustainable, and high available network design
Review network infrastructure architecture and solutions
Deliver long term sustainable and scalable network solutions
Take lead in implementing network security solutions to ensure the network security from internal and external users
Provide technical design support, sizing, availability guidance for network

Network Operations Management
Deliver high network uptime for IT Operations
Manage & review network SLAs, operation metrics & support ongoing maintenance activities
Manages incident, problem and change management for networking equipment
Manage performance tuning and capacity planning activities to enhance the performance of the network resources
Mentor and lead internal and external network management team

Vendor Management
Maintain relationship with network and services vendor leadership to ensure effective implementation and network operations, ongoing support, and deployment of competent resources
Responsible for coordinating and managing external network vendors for data connectivity
Provide technical & program management expertise and oversight over vendor teams
Monitor vendor SLAs, perform regular review with vendor management and report to SBI Card leadership
Ensure timely renewals of vendors contracts

Risk & Compliance Management
Oversee the implementation, and maintenance of standard operating procedures/ run book in line with SBI Card policies & standards
Review network inventory and maintain patch compliance & vulnerability management as per defined SLA
Manage compliance requirement on external & internal audit on network equipment
Manage risk register & review periodic risk mitigation actions
Manage network availability at DR/BCP locations

Measures of Success:

Security Solution design and implimentation
All solution should be design as per best practice.
All solution should be implimented as per agreed timeline
Related successful KPI to measure project success
operation stabilty in next 3 months.

IT Security Operations
99.9 uptime for all security tools.
security incident management which should resolve as per agreed ITIL SLA.
All operation KPI should be in green state

Vulnerability management
Responsible for 98% compliance with respect to Vulnerability management.
co-ordination with all IT team/Leads to get maintanance window, pre and post sanity of weekly and monthly basis.

Auditing and compliance
All IT infra related finding in the auditing should be closed as per agreed timeline.
All hardware should be on agreed OS firmware (N-2)compliance.
All IT hardware /tools should have hardening configuration implimented.

Network & Security Project Management
Adherence to Defined Project Timelines

Network Operation Management
Network uptime SLA - 99.9% uptime of Network Operations
Change Management Report - Change failure should not be more than 5%
Problem Management Report - 80% of P-1 incident RCA to be closed in 7 Working Days

Vendor Management
Periodic review with internal & external partners
Vendor SLA Report
Timely renewals of vendors contracts

Risk & Compliance Management
Monthly Risk Register
Patch & Vulnerability Management Report
Internal & External Audit Report

Budgeting
Responsible to prepare budget and expense against each project or BAU activity.

Education & Technical Skills:

BE /B Tech/MCA
Experience of 19 years in Designing,IT & Cyber Security .
Security certification: CISM/CISSP
Security compliance certification: CISA, PCI DSS implimenter
Network Technology Certifications - CCIE/CCNP, CCIP
Project managementCertifications - PMP,PRince2, ITIL
Candidate should have 12-15 years of technical experience in Network Operations and Management
Network Technology Certifications - CCIE/CCNP, Network Security - Firewall, Proxy, VPN etc
Experience of ISO 27001 and PCI DSS implementation

Competencies Critical for the Role:

Good experience in security design, security solution and operation.
Good experience in network design, security solution and operation.
Strong knowledge on security tools WAF, NIPS, DLP, NAC, SOAR, threat hunting, Mitre framework.
Should have experience in managing contracts and dealing with external vendors / third parties
Depth knowledge of Network Design and Operations
Should have experience in managing contracts and dealing with external vendors / third parties
Strong working knowledge of Network Switches, Routers, Firewalls, Load balancer, WAN Optimizer, WAF, Proxy, APT, NAC and IPS/IDS solutions
Excellent project management skill, stakeholder management, time management.
Excellent Communication, Interpersonal, Presentation and Leadership Skills
Strong verbal and written communication skills with both business and technical areas