Service Delivery Manager – Vulnerability Management and Detection & Response
Chennai, India
Ramboll
Working across architecture, landscape, and urbanism, we co-create and innovate – cultivating desirable futures through our designs.Company Description
About Ramboll
Founded in Denmark, Ramboll is a foundation-owned people company. We have more than 18,000 experts working across our global operations in 35 countries. Our experts are leaders in their fields, developing and delivering innovative solutions in diverse markets including Buildings, Transport, Planning & Urban Design, Water, Environment & Health, Energy, and Management Consulting. We invite you to contribute to a more sustainable future working in an open, collaborative, and empowering company. Combining local experience with global knowledge, we together shape the societies of tomorrow.
Equality, diversity, and inclusion are at the heart of what we do
We believe in the strength of diversity and know that unique experiences and perspectives are vital for creating truly sustainable societies. Therefore, we are committed to providing an inclusive and supportive work environment where everyone can flourish and reach their potential. We welcome applications from candidates of all backgrounds and encourage you to contact our recruitment team to discuss any accommodations you need during the application process.
Job Description
Overview:
The Service Delivery Manager for Vulnerability Management and Detection & Response is a critical role responsible for overseeing the identification, management, and mitigation of security vulnerabilities within an organization. Under Detection and Response you will be accountable for identifying, investigating, and combating cyber threats. Your role will focus on enhancing our detection capabilities and leading the organization's response to critical security incidents. You will work closely with various stakeholders across the company to build resilience against cyber-attacks and ensure rapid recovery from any security breaches. This role ensures the effective delivery of security services aimed at protecting the organization’s information assets from threats and attacks.
Key Responsibilities
This function is delivered through our managed service provider [MSP] and the incumbent role is not only to manager the operations through the MSP but also work on developing strategies and programs to scale up the operations providing 24*7 resilient cyber security to Ramboll.
- The role entails tracking with the MSP on the services SLA and key reporting.
- Governance forum with the MSP to monitor the progress of transitioned services and address any concerns as well.
- Work closely with the Governance Risk Compliance head to understand and operationalize the strategies/directions to keep Ramboll cyber threat resilient.
- Collaborate with contract management team for necessary contractual terms with the MSP.
- Manage the budget and licensing compliance of the security tools; working with the respective vendors on new development and incorporating those within the Ramboll environment
- Ensure that security and disaster recovery plans are updated and tested periodically.
Vulnerability Management
- Risk Assessment: Conduct regular risk assessments to identify potential vulnerabilities in systems, applications, and networks.
- Vulnerability Identification: Use advanced tools and techniques to detect vulnerabilities and prioritize them based on potential impact.
- Patch Management: Coordinate with Technology teams, system owner and business owners to ensure timely and effective application of patches and updates.
- Remediation: Develop and implement strategies to remediate identified vulnerabilities, reducing risk exposure.
- Reporting: Generate detailed reports on vulnerability status and progress, presenting findings to senior management.
Detection & Response
- Threat Detection: Develop and implement comprehensive strategies for detection and response to maintain an effective security posture. Monitor systems and networks for signs of potential security breaches using advanced detection tools. Maintain up-to-date knowledge of the threat landscape and adapt defensive strategies accordingly. Oversee the development and tuning of our Security Information and Event Management (SIEM) and other threat detection tools.
- Incident Response: Lead the response to security incidents, ensuring rapid containment and mitigation of threats. Ensure documentation of incidents and responses is thorough for post-incident analysis and compliance requirements
- Forensic Analysis: Conduct post-incident forensic analysis to understand the root cause and improve future detection capabilities.
- Collaboration: Taking inputs from security operations centers (SOC) and working very closely with Technology, and other stakeholders to ensure coordinated response efforts. Coordinate with other departments to ensure that security measures are integrated into all aspects of the business.
- Continuous Improvement: Implement lessons learned from incidents to enhance detection and response strategies.
- Management: Articulate security risks and incident reports to upper management and relevant stakeholders effectively. Manage budgeting and resource allocation for the detection and response team.
Qualifications
Skills and Qualifications
- Technical Expertise: Strong understanding of cybersecurity principles, tools, and technologies related to vulnerability management and incident response. Experience with incident detection, forensics, and analysis processes.
- Analytical Skills: Ability to analyze complex security issues and develop effective solutions.
- Communication: Excellent verbal and written communication skills for reporting and collaboration with cross-functional teams.
- Leadership: Proven experience in managing teams and leading security initiatives; especially when delivered through a managed service provider. Skilled in crisis management, with the ability to make critical decisions under pressure.
- Certifications: Relevant certifications such as CISSP, CISM, GCIH, GSOM or other relevant certifications.
- Overall experience of over 15 years with relevant experience of over 5 years.
- A bachelor's degree in Information Technology, Cybersecurity, or a related field; a master’s degree is preferred.
Desired Skills:
- Experience with regulatory compliance and information security management frameworks (ISO 27001, NIST, GDPR, etc.).
- Familiarity with cloud environments and the associated security challenges.
The Service Delivery Manager for Vulnerability Management and Detection & Response plays a pivotal role in safeguarding the organization’s digital assets. By leading initiatives to identify, manage, and respond to security threats, this role ensures the organization's resilience against cyberattacks and contributes to maintaining a robust security posture.
Additional Information
What we can offer you
- Investment in your development
- Leaders you can count on, guided by our Leadership Principles
- Be valued for the unique person you are.
- Never be short of inspiration from colleagues, clients, and projects.
- The long-term thinking of a foundation-owned company
We offer:
- A challenging and interesting workday characterized by continuous learning, in an environment where you have many to spar with and learn from.
- Opportunity to work with varied work tasks, across the organization.
- Opportunity to develop and influence your own area of responsibility.
Work at the heart of sustainable change
Ramboll is a global architecture, engineering, and consultancy company. We believe that the purpose of sustainable change is to create a thriving world for both nature and people. So, that’s where we start – and how we work. At Ramboll, our core strength is our people, and our history is rooted in a clear vision of how a responsible company should act. Being open and curious is a cornerstone of our culture. We embrace an inclusive mindset that looks for fresh, diverse, and innovative perspectives. We respect, embrace, and invite diversity in all forms to actively cultivate an environment where everyone can flourish and realize their full potential.
Ready to join us?
Please submit your application. Be sure to include all relevant documents including your CV, cover letter, etc.
Thank you for taking the time to apply! We look forward to receiving your application.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: CISM CISSP Cloud Compliance DART Forensics GCIH GDPR Governance Incident response ISO 27001 NIST Risk assessment SIEM SOC Threat detection Vulnerabilities Vulnerability management
Perks/benefits: Career development Startup environment
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.