Vice President - Information Security Operations

'Strategic Planning
Evaluate, Plan, Develop, implement and monitor a strategic, comprehensive enterprise information security program focused on prevention, detection & response to security threats & incidents
Lead information security programs and provide regular and consistent executive reporting on enterprise cyber risk.
Continuously work towards evolving the enterprise security posture in line with organization’s expanding ecosystem, changing threat landscape of cyber risk and regulatory compliances 
Define and Manage end to end Insider threat management program.

Threat Prevention, Detection, Response & Remediation
Manage and mature Cyber Security technology landscape used in threat detection & prevention such as SIEM, DLP, EDR, IDAM, PIM etc.
Oversees and prioritizes actions during the detection, analysis, and containment of a security incident with support from insider teams as well as 3rd party managed security service providers
Ensure communication to cross functional business teams for their support in managing cyber/ security incidents and events to protect IT, information assets (such as customer data, classified data) and protect SBI Card from reputational/ financial loss
Provide guidance on security best practices and policy recommendation for IT/ business projects where SBI Card customer data/ process/ IT development is involved/ outsourced
Ensure security monitoring is evolved(review of security use cases) basis the inputs received from internal/external stakeholders

Capability and Capacity Build
Oversees the design and build of the following platforms in line with enterprise security roadmap:
Identity & Access Governance - to enforce logical access governance including setting up of role based access, access recertification, segregation of duties, privilege identify management for all business applications and IT platforms
Security Monitoring(Including SOC) - proactive & quick identification and monitoring of security events/alerts, response & management of security incidents, including Cyber security (threat monitoring and brand protection services) for all critical IT and business information assets
Secure information Exchange - Set up Systems to monitor internal and external environment on an ongoing basis for data leakage attempts and incidents, security policy or process non-compliances

Program management
End-to-end management of the Data leak prevention, including prevention, detection, remediation and review of incidents with respective business function for appropriate disciplinary action with help from business, compliance and HR teams
Facilitate metrics and reporting framework(HPA Tools, security incidents, ) to measure the efficiency and effectiveness of the program, facilitate appropriate resource allocation, and evolve the programs
Perform SLA review of vendors engaged for each of the security program
Own and manage Information Security Operations budgets
Ensure that the information security operation program meets the objectives set by relevant regulatory framework (including RBI, IRDA, Parent entities) for Non-Banking Financial Companies, Credit card issuers and support periodic reviews to assess compliance
Support audits and continuous improvement initiatives for all the information security programs under scope.

Measures of Success

Delivery of security operations projects within agreed timelines 
Enterprise Information Security platforms security metrics are maintained within defined thresholds
Security Incidents are detected and responded effectively within the agreed timelines
Define & manage financial budgets for security operations as per approved MOU
Security Operations SLA maintained within agreed limits
 

Competencies 

Demonstrate leadership skills achieving stated objectives coordinating with a diverse set of stakeholders and managing multiple projects at once
Demonstrate ability to continuously coordinate with multiple parties both internally within the enterprise and outside
Demonstrate communication skills to address different audiences
Demonstrate self-starter with ability to gain required knowledge in dynamic environments and remain up-to-date on cutting-edge developments
Experience in dealing successfully with different business and external stakeholders.

Skills Sets Required

Bachelor’s Degree in a related area such as Computer Science or Information Technology or B.Tech
In depth understanding of Information Security Technology and related operations such SIEM, DLP, IDAM , EDR , Cloud Security etc
Industry standard certifications such as CISSP, CISM, CCSP, CCSP, CISA, C|CISO,  ISO27001, CRISK, SABSA, TOGAF
Demonstrable understanding within Cyber Security, Data Security & Information technology areas
Strong knowledge of Computer Applications and Network security technologies and layer security principles
Prior experience in managing Information Security & Risk Management Programs in a complex/Large environment
Excellent communication skills and ability to mentor, effectively communicate information/ cyber risks to management/ CXOs
Strong business,  process & financial acumen to run operations

Required Experience

Overall 12+ years of experience in IT/Information & Cyber Security areas
8+ Years in Information Security Operations / Security Device Management/ Security Technology Operations
Implementation and experience in SIEM, Security Operations Centre, AWS Security and regulatory compliance.
At least 4+ years in  leadership role, which includes managing security experts, service partners and internal /external stakeholders