DGM (Incident Response)

RECRUITMENT OF SPECIALIST CADRE OFFICER ON CONTRACTUAL BASIS

(ADVERTISEMENT NO: CRPD/SCO/2024-25/19)

ONLINE REGISTRATION OF APPLICATION & PAYMENT OF FEES: FROM 22.11.2024 TO 12.12.2024

State Bank of India invites Online applications from eligible Indian citizens for appointment to the following Specialist Cadre Officers Posts on Contractual Basis. Candidates are requested to apply online through the link given on Banks official website https://bank.sbi/web/careers

1. The process of Registration is complete only when fee is deposited with the Bank through online mode on or before the last date for payment of fee.

2. Before applying, candidates are requested to ensure that they fulfil the eligibility criteria for the Post as on the date of eligibility.

3. Candidates are required to upload all required documents (resume, ID proof, age proof, PwBD Certificate (if applicable), educational qualification, experience etc.) failing which their application/candidature will not be considered for shortlisting/ interview.

4. Short listing will be provisional without verification of documents. Candidature will be subject to verification of all details/ documents with the original when a candidate reports for interview (if called).

5. In case a candidate is called for interview and is found not satisfying the eligibility criteria (Age, Educational Qualification and Experience etc.) he/ she will neither be allowed to appear for the interview nor be entitled for reimbursement of any travelling expenses.

6. Candidates are advised to check Banks official website https://bank.sbi/web/careers/current-openings regularly for details and updates (including the list of shortlisted/ selected candidates). The Call (letter/ advice), where required, will be sent by e-mail only (NO HARD COPY WILL BE SENT).

7. ALL REVISIONS/ CORRIGENDUM (IF ANY) WILL BE HOSTED ON THE BANKS WEBSITE ONLY.

8. In case more than one candidate scores same marks as cut-off marks in the final merit list (common marks at cut-off point), such candidates will be ranked in the merit according to their age in descending order.

9. Hard copy of application & other documents not to be sent to this office.

10. TEACHING & TRAINING EXPERIENCE WILL NOT BE COUNTED FOR ELIGIBILITY.

I)DETAILS OF POST/VACANCY/ AGE/ REMUNERATION/PLACE OF POSTING/NATURE OF ENGAGEMENT/SELECTION PROCESS:

No. of Vacancies -

Vacancies (Contractual)

UR: 1

Total: 1

PwBD^: 01 (Backlog)

Age (As on 30.09.2024): Minimum- 38 yrs - Maximum-50 yrs

Annual CTC Range**: Upto Rs 80.00 lacs

Contract Period$: 5 Years

Nature of Engagement (Comparable Scale) ; Contractual Engagement Equivalent to TEGS-VI

Selection Procedure: Shortlisting & Interview followed by CTC Negotiation

II) DETAILS OF EDUCATIONAL QUALIFICATION, EXPERIENCE, SKILLS, BRIEF JOB PROFILE & KEY RESPONSIBILITY AREA:

REQUIRED QUALIFICATIONS (As on 30.09.2024) :

Basic:

- Basic Qualifications: BE / BTech (Computer Science /

Computer Science & Engineering / Information Technology / Information Security /Cybersecurity /Electronics / Electronics & Communications / Software Engineering or equivalent degree in above disciplines from a university / Institution / Board recognized by Govt. of India / approved by Govt. Regulatory bodies.

OR

MCA

OR

M.E./ MTech / MSc in Computer Science/Computer Science & Engineering / Information Technology / Information Security /Cybersecurity /Electronics / Electronics & Communications / Software Engineering or equivalent degree in above disciplines from a university / Institution / Board recognized by

Experience:

Experience (15+ years) in Information security Out of which proven experience of 8-10 years in Incident response or related field.

➢ Experience in handling complex security incident response situations

➢ Experience in Managing and leading incident response teamshandling complex security incidents, including malware outbreaks, phishing attacks and advanced persistent threats.

➢ Experience in Threat hunting and proactive monitoring. Develop and implement incident response plans and procedures. Collaborating with cross-functional teams.

➢ Analyzing and reporting trends and metrics

➢ Experience with regulatory requirements viz- RBI guidelines, PCI-DSS etc.

➢ Job Profile:

➢ The Senior Vice President (Incident Response) DGM will lead the incident response team, responsible for carrying out deep dive on suspected incidents, threat hunting, VAPT and Forensics. Officer will prioritize reported security incidents, perform root cause analysis, and collaborate with application owners for incident resolution.

➢ SVP (IR) will also be responsible for carrying out proactive Threat hunting and identifying security threats residing in the environment. He will also carry out detailed Forensic activities on incidents, through inhouse and external specialists.

➢ The SVP will also lead a team carrying out the VAPT / Secure

Govt. of India / approved by Govt. Regulatory bodies

➢ Professional certifications such as OSCP/ /CEH/EC-Council Certified Incident Handler (ECIH) /GIAC Certified Incident Handler (GCIH) /CREST Registered Intrusion Analyst (CRIA) /CompTIA Cybersecurity Analyst (CySA+) / CISSP/ CISM may be preferred.

Certificates Certifying Authority

OSCP OFFSEC

CEH EC-COUNCIL

ECIH (EC-Council Certified incident Handler) EC-COUNCIL

GIAC Certified Incident handler GCIH

CRIA (CREST Registered Intrusion Analyst) CREST

CompTIA Cyber Security Analyst (CySA+) CompTIA

CISSP ISC2

CISM ISACA

(Above Certificates should be valid as on the cut-off date)

EXPERIENCE (POST BASIC QUALIFICATIONS) & SPECIFIC SKILLS : (As on 30.09.2024)

Experience:

Experience (15+ years) in Information security Out of which proven experience of 8-10 years in Incident response or related field.

➢ Experience in handling complex security incident response situations

➢ Experience in Managing and leading incident response teamshandling complex security incidents, including malware outbreaks, phishing attacks and advanced persistent threats.

➢ Experience in Threat hunting and proactive monitoring. Develop and implement incident response plans and procedures. Collaborating with cross-functional teams.

➢ Analyzing and reporting trends and metrics

➢ Experience with regulatory requirements viz- RBI guidelines, PCI-DSS etc.

➢ Strong analytical and problem-solving abilities, with the capability to make sound decisions under pressure.

➢ Effective communication skills, both verbal and written, to convey complex security concepts to technical and non-technical stakeholders.

Note: Training & Teaching experience will not be counted for eligibility.

The experience mentioned / claimed should be supported by a suitable certificate issued by the concerned employer.

SPECIFIC SKILLS:

Strong knowledge of security technologies like Microsoft security technologies /IPS/Firewall, SIEM etc.

JOB PROFILE & KRA :

➢ Job Profile:

➢ The Senior Vice President (Incident Response) DGM will lead the incident response team, responsible for carrying out deep dive on suspected incidents, threat hunting, VAPT and Forensics. Officer will prioritize reported security incidents, perform root cause analysis, and collaborate with application owners for incident resolution.

➢ SVP (IR) will also be responsible for carrying out proactive Threat hunting and identifying security threats residing in the environment. He will also carry out detailed Forensic activities on incidents, through inhouse and external specialists.

➢ The SVP will also lead a team carrying out the VAPT / Secure

configuration check in the environment.

KRA:

1.Incident Response /Cyber Crisis Management

➢ Incident response framework to be documented

➢ Review of closed incidents, identifying potential need for deeper investigations/ Incident response

➢ If threats / incidents are substantiated and confirmed, take remediation action to respond and recover from them based on the Cyber Crisis plan.

➢ Interact with Incident response teams to deep dive into incidents / threats and remediate.

➢ Work closely with different teams within Information security and Information technology teams to recover from such incidents.

➢ Report creations, management approval, Root cause analysis.

➢ Create a knowledge base of the incidents for future reviews/availability.

2.Vulnerability Assessment and Penetration Testing (VAPT) & Secure configuration scanning (SCD)

➢ Carrying out periodic VAPT / SCD scans of the environment

➢ Carry out root cause analysis of the scan results and provide inputs to threat hunting team

➢ Ensure subsequent scan reports findings are reduced due to proactive approaches carried out

➢ Coordinate for external pen testing activities carried out by vendor.

➢ Collaborate with Cyber security teams, carry out threat hunting on gaps identified by CS teams within the environment

➢ Dashboard reporting to senior management.

3. Forensics

➢ Develop a team who can carry out effective forensics

➢ Engage with external specialised teams for advanced forensics requiring external validations.

➢ Monitoring phishing incidents and data loss recovery.

➢ Reviewing threat intelligence reports and taking appropriate actions.

➢ Conducting forensics analysis and preserving digital evidence.

4. Cyber Crisis management plan

➢ Maintain and Manage the Cyber crisis management policy and plan.

➢ Ensure periodic reviews and management approval on time.

➢ Train the relevant teams (IT, ISD, Business) on handling and responding to Cyber crisis situations

➢ Carry out periodic drills and tabletop exercises.

Remarks: : KRAs shall be assigned on joining. Job Profile mentioned above are illustrative. Role/Jobs in addition to the above mentioned may be assigned by the Bank from time to time for the above posts.

III) IMPORTANT POINTS:

i) The number of vacancies including reserved vacancies mentioned above are provisional and may vary according to the actual requirement of the Bank.

ii) The educational qualification prescribed for the post is minimum. Candidate must possess the qualification and relevant full-time experience as on specified dates.

iii) The reservation under various categories will be as per prevailing Government of India Guidelines.

iv) Reservation for PwBD candidates is horizontal and is included in the vacancy of the respective parent category. Candidate belonging to reserved category including Person with Benchmark Disabilities (PwBD) for whom no reservation has been mentioned are free to apply for vacancies announced for Unreserved category provided they fulfil all the eligibility criteria applicable to General Category.

v) PwBD candidate should produce a Valid certificate issued by a competent authority as per the GOI Guidelines.

vi) Only those persons with benchmark disabilities would be eligible for reservation under PwBD category with not less than 40% of a specified disability where specified disability has not been defined in measurable terms and includes a person with disability where specified disability has been defined in a measurable term, as certified by the certifying authority.

vii) Caste certificate issued by Competent Authority on format prescribed by the Government of India will have to be submitted by the SC/ST/ OBC (Non-creamy layer) candidates.

viii) The relevant experience certificate from employer must contain specifically that the candidate had experience in that related field as required.

ix) Bank reserves the right to cancel the recruitment process entirely or for any particular post at any stage without specifying any reasons thereof.

x) Maximum age indicated is for General category candidates. Relaxation in upper age limit will be available to reserved category candidates as per Govt. of India guidelines (wherever applicable).

xi) Candidate(s) seeking age relaxation, fee exemption must submit valid requisite certificate of the Competent Authority in the prescribed format, when such certificate is sought at the time of document verification. Otherwise, their claim will not be entertained, and their candidature will be liable for cancellation / rejection.

xii) Candidates against whom there is/ are adverse report regarding character & antecedents, moral turpitude are not eligible to apply for the post. If any such adverse orders / reports against the shortlisted/ selected candidates is found/ received by the Bank post their selection/ engagement, their candidature/ service will to be rejected forthwith.

xiii) In case more than one application (multiple applications) are submitted by a candidate for the same post, only the last valid (completed) application will be retained, and the application fee, if any, paid for the other registrations will stand forfeited. Further, multiple attendance/ appearance by a candidate at the time of interview / joining will result in rejection/ cancellation of candidature, summarily.

xiv) The Candidates applying for the post should ensure that their admission to all the stages of the recruitment will be purely provisional subject to satisfying the prescribed eligibility conditions. Mere issuance of call letter(s) / e-Admit Card(s) to the candidate will not imply that his/her candidature has been finally accepted for the post. The Bank takes up verification of eligibility conditions with reference to original documents only after the candidate has been shortlisted for the Interview.

xv) Candidates serving in Govt./ Quasi Govt. offices, Public Sector undertakings including Nationalized Banks and Financial Institutions are advised to submit No Objection Certificate from their employer at the time of interview, failing which their candidature may not be considered and travelling expenses, if any, otherwise admissible, will not be paid.

xvi) TRANSFER POLICY: THE BANK RESERVES THE RIGHT TO TRANSFER THE SERVICES OF SUCH OFFICERS TO ANY OF THE OFFICES OF SBI IN INDIA OR TO DEPUTE TO ANY OF ITS ASSOCIATES/SUBSIDIARIES OR ANY OTHER ORGANIZATION DEPENDING UPON THE EXIGENCIES OF SERVICE. REQUEST FOR POSTING/TRANSFER TO A SPECIFIC PLACE/OFFICE MAY NOT BE ENTERTAINED.

xvii) MERIT LIST: MERIT LIST FOR SELECTION WILL BE PREPARED IN DESCENDING ORDER ON THE BASIS OF SCORES OBTAINED IN INTERVIEW ONLY. IN CASE MORE THAN ONE CANDIDATE SCORE THE CUT-OFF MARKS (COMMON MARKS AT CUT-OFF POINT), SUCH CANDIDATES WILL BE RANKED ACCORDING TO THEIR AGE IN DESCENDING ORDER, IN THE MERIT.

xviii) MERE FULFILLING MINIMUM QUALIFICATION AND EXPERIENCE WILL NOT VEST ANY RIGHT IN CANDIDATE FOR BEING CALLED FOR INTERVIEW. THE SHORTLISTING COMMITTEE CONSTITUTED BY THE BANK WILL DECIDE THE SHORTLISTING PARAMETERS AND THEREAFTER, ADEQUATE NUMBER OF CANDIDATES, AS DECIDED BY THE BANK WILL BE SHORTLISTED AND CALLED FOR INTERVIEW. THE DECISION OF THE BANK TO CALL THE CANDIDATES FOR THE INTERVIEW SHALL BE FINAL. NO CORRESPONDENCE WILL BE ENTERTAINED IN THIS REGARD.

xix) RESERVATION FOR PERSONS WITH BENCHMARK DISABILITIES (PwBD): Horizontal reservation has been provided to Persons with Benchmark Disabilities as per section 34 of The Rights of Persons with Disabilities Act (RPWD), 2016. The post is identified suitable for the Persons with undernoted categories of disabilities as defined in the Schedule of RPWD Act 2016:

Suitable Category of Benchmark Disabilities

Functional Requirement

a) B - Blind, LV - Low Vision

b) D-Deaf, HH - Hard of Hearing

c) One Leg, Cerebral Palsy, Leprosy Cured, Dwarfism, Acid Attacked Victims

d) Specific Learning Disability, Mental Illness

e) Multiple Disabilities involving (a) to (d) above

S- Sitting,

W- Walking,

BN- Bending,

ST- Standing,

RW- Reading and Writing, SE- Seeing,

H- Hearing,

C- Communication

Visual Impairment (VI): Only those Visually Impaired (VI) persons who suffer from any one of the following conditions, after best correction, are eligible to apply.

xx) Blindness: i. Total absence of sight; OR ii. Visual acuity less than 3/60 or less than 10/200 (Snellen) in the better eye with best possible correction; OR iii. Limitation of the field of vision subtending an angle of less than 10 degree.

OR

xxi) Low Vision: i. Visual acuity not exceeding 6/18 or less than 20/60 upto 3/60 or upto 10/200 (Snellen) in the better eye with best possible corrections; OR ii. Limitation of the field of vision subtending an angle of less than 40 degree up to 10 degrees.

xxii) Hearing Impaired (HI): Hard of Hearing means person having 60 DB to 70 DB hearing loss in speech frequencies in both ears.

Locomotor Disabilities (LD): Only those persons are eligible to apply under Locomotor Disability (LD) category who have inability to execute distinctive activities associated with movement of self and objects resulting from affliction of musculoskeletal or nervous system or both, including Cerebral Palsy, Leprosy Cured, Dwarfism, Muscular Dystrophy, Acid Attack Victims, Spinal Deformity (SD) and Spinal Injury (SI) without any associated neurological/ limb dysfunction. Orthopedically challenged persons are covered under locomotor disability with following benchmark:

xxiii) OL - One leg affected (Right or Left)

a. "Leprosy cured person" means a person who has been cured of leprosy but is suffering from:

i. Loss of sensation in hands or feet as well as loss of sensation and paresis in the eye and eye-lid but with no manifest deformity;

ii. Manifest deformity and paresis but having sufficient mobility in their hands and feet to enable them to engage in normal economic activity.

iii. Extreme physical deformity as well as advanced age which prevents him/ her from undertaking any gainful occupation, and the expression "leprosy cured" shall be construed accordingly.

b. Cerebral palsy" means a Group of non-progressive neurological conditions affecting body movements and muscle coordination, caused by damage to one or more specific areas of the brain, usually occurring before, during or shortly after birth.

c. "Dwarfism" means a medical or genetic condition resulting in an adult height of 4 feet 10 inches (147 centimeters) or less.

d. "Acid attack victims" means a person disfigured due to violent assaults by throwing of acid or similar corrosive substance.

d & e category: Only those persons, who suffer from any one of the following types of disabilities, are eligible to apply under this category:

i. Specific Learning Disability (SLD) means a heterogeneous group of conditions wherein there is a deficit in processing language, spoken or written, that may manifest itself as a difficulty to comprehend, speak, read, write, spell, or to do mathematical calculations and includes such conditions as perceptual disabilities, dyslexia, dysgraphia, dyscalculia, dyspraxia and developmental aphasia.

ii. Mental Illness (MI) means a substantial disorder of thinking, mood, perception, orientation or memory that grossly impairs judgment, behavior, capacity to recognize reality or ability to meet the ordinary demands of life, but does not include retardation which is a condition of arrested or incomplete development of mind of a person, specially characterized by sub normality of intelligence.

iii. Multiple Disabilities means multiple disabilities involving (a) to (d) above.

Only those persons with benchmark disabilities would be eligible for reservation under PwBD category. Benchmark disability means a person with not less than 40% of a specified disability where specified disability has not been defined in measurable terms and includes the persons with disability, where disability has been defined in a measurable term, as certified by the certifying authority. Backlog vacancies reserved for PwBD would be filled by a person with benchmark disability in the respective category. If no suitable person from that category is available, such backlog would be filled up by interchange among other eligible PwBD candidates subject to the posts having been identified suitable for such disabilities.

A. REMUNERATION (FOR ALL POSTS): Annual CTC, which is negotiable, will depend upon Experience & Current Emoluments of candidates in the present employment and place of posting. The CTC comprises 90% fixed and 10% variable pay. Annual increment in CTC is subject to satisfactory annual performance. Besides CTC NO other Perks shall be paid.

ANNUAL INCREMENT: The Annual increment proposed from second year onwards can be within 7% to 10% of previous years Fixed Gross based upon satisfactory performance, subject to the achievement of performance appraisal score of at least 90% (Minimum score to be eligible for annual increment) with distribution of Annual increment aligned to the Fixed and variable components. (Fixed: variable: 90:10). The performance metrics will align with the KRAs defined for the respective cadres ensuring clear and measurable assessment of the officers contributions.

Variable Pay: The contractual officer shall become eligible for payment of variable pay subject to securing minimum qualifying 90% marks in the performance appraisal of the relevant period. Appraisals will also be complied at half yearly intervals as on 31st March and 30th September. In case the contract ends before the completion of 6 months (from 2nd year onwards), the variable pay will be released on pro-rata basis. Payment shall be subject to deduction of Income Tax from contractual officer as per the extant income tax rules.

B. LEAVE: The proposed Officer engaged on Contract (OEC) shall be entitled to leave of 30 days during the financial year which will be granted by Bank for genuine and appropriate reasons. For the purpose of computation of leave, intervening Sundays/ Holidays shall not be included. Other terms and conditions of leave may be as applicable to other contractual officers.

C. NOTICE PERIOD/ TERMINATION OF CONTRACT: The contract can be terminated without assigning any reasons by giving 90 days notice from either side or on payment / surrender of 03(Three) month’s compensation amount in lieu thereof.

D. CALL LETTER FOR INTERVIEW: Intimation /call letter for interview will be sent by email or will be uploaded on bank's website. No hard copy will be sent.

E. SELECTION PROCESS: The selection will be based on Shortlisting and Interview. Thereafter, CTC negotiations will be held.

❖ Shortlisting: Mere fulfilling minimum qualification and experience will not vest any right in candidate for being called for interview. The shortlisting committee constituted by the Bank will decide the shortlisting parameters and thereafter, adequate number of candidates, as decided by the Bank, will be shortlisted for interview. The decision of the Bank to call the candidates for the interview shall be final. No correspondence will be entertained in this regard. The shortlisted candidates will be called for interview.

❖ Interview: Interview will carry 100 marks. The qualifying marks in interview will be decided by the Bank. No correspondence will be entertained in this regard.

❖ Merit list: Merit list for selection will be prepared category wise in descending order on the basis of scores obtained in interview only. In case more than one candidate scores the cut-off marks (common marks at cut-off point), such candidates will be ranked according to their age in descending order, in the merit list.

❖ CTC Negotiation: CTC Negotiation will be done with the candidates in the order of Merit one by one. i.e. In case the selected candidate does not agree with the negotiated price, the name of the candidate shall be considered as Voluntary Exit from the recruitment exercise and next candidate in the merit list shall be called for negotiation.

How To Apply: Candidates should have valid Email ID which should be kept active till the declaration of result. It will help him/her in getting call letter/Interview advice etc. by email .

Guidelines For Filling Online Application:

i. Candidates will be required to register themselves online through the link available on SBI website https://bank.sbi/web/careers/current-openings and pay the application fee using Internet Banking/ Debit Card/ Credit Card etc.

ii. Candidates should first scan their latest photograph and signature. Online application will not be registered unless candidate uploads his/ her photo and signature as specified on the online registration page (under How to Upload Document).

iii. Candidates should fill the application carefully. Once application is filled-in completely, candidate should submit the same. In the event of candidate not being able to fill the application in one go, he can save the information already entered. When the information/ application is saved, a provisional registration number and password is generated by the system and displayed on the screen. Candidate should note down the registration number and password. They can re-open the saved application using registration number and password and edit the particulars, if needed. This facility of editing the saved information will be available for three times only. Once the application is filled completely, candidate should submit the same and proceed for online payment of fee.

iv. After registering online, the candidates are advised to take a printout of the system generated online application form.

v. Candidates seeking Age relaxation are required to submit copies of necessary certificates at the time of joining. No change in category of any candidate is permitted after registration of online application.

Guidelines For Payment Of Fees:

i. Application fees and Intimation Charges (Non-refundable) is 750/- ( Seven Hundred Fifty only) for General/EWS/OBC candidates and no fees/intimation charges for SC/ ST /PwBD candidates.

ii. After ensuring correctness of the particulars in the application form, candidates are required to pay the fees through payment gateway integrated with the application. No change/ edit in the application will be allowed thereafter.

iii. Fee payment will have to be made online through payment gateway available thereat. The payment can be made by using Debit Card/ Credit Card/ Internet Banking etc. by providing information as asked on the screen. Transaction charges for online payment, if any, will be borne by the candidates.

iv. On successful completion of the transaction, e-receipt and application form, bearing the date of submission by the candidate, will be generated which should be printed and retained by the candidate.

v. If the online payment of fee is not successfully completed in first instance, please make fresh attempts to make online payment.

vi. A provision is there to reprint the e-Receipt and Application form containing fee details, at later stage.

vii. Application Fee once paid will NOT be refunded on any account NOR can it be adjusted for any other examination or selection in future..

For any query, please write to us through link CONTACT US/ Post Your Query which is available on Banks website (https://bank.sbi/web/careers/current-openings)