Assistant Vice President - Infrastructure Security SME

About the company

SBI Card is a leading pure-play credit card issuer in India, offering a wide range of credit cards to cater to diverse customer needs. We are constantly innovating to meet the evolving financial needs of our customers, empowering them with digital currency for seamless payment experience and indulge in rewarding benefits. At SBI Card, the motto 'Make Life Simple' inspires every initiative, ensuring that customer convenience is at the forefront of all that we do. We are committed to building an environment where people can thrive and create a better future for everyone.

SBI Card is proud to be an equal opportunity & inclusive employer and welcome employees without any discrimination on the grounds of race, color, gender, religion, creed, disability, sexual orientation, gender identity, marital status, caste etc. SBI Card is committed to fostering an inclusive and diverse workplace where all employees are treated equally with dignity and respect which makes it a promising place to work.

Join us to shape the future of digital payment in India and unlock your full potential.

What’s in it for YOU

1. SBI Card truly lives by the work-life balance philosophy. We offer a robust wellness and wellbeing program to support mental and physical health of our employees
2. Admirable work deserves to be rewarded. We have a well curated bouquet of rewards and recognition program for the employees
3. Dynamic, Inclusive and Diverse team culture 
4. Gender Neutral Policy
5. Inclusive Health Benefits for all - Medical Insurance, Personal Accidental, Group Term Life Insurance and Annual Health Checkup, Dental and OPD benefits
6. Commitment to the overall development of an employee through comprehensive learning & development framework

Role Purpose

Infrastructure security SME will responsible to handle Security tools and incident. The role is  responsible for managing the IT Security posture of Network Devices, Servers, Storage, Operating System. Managing the overall IT Infrastructure Security and management of all Security Solution platforms.

Role Accountability 

The IT Infrastructure Security Operations SME, under the guidance of IT Security Operation leader serves a critical SME role for the Execution, Implementation and Operations of the IT Infrastructure Security. Role involves the system implementations, adoption and testing of new processes and procedures which improve the security and robustness of the IT Infrastructure and associated IT Platforms.

1. Provide technical expertise for information security policies, standards & operations
2. Managing Perimeter Security components which includes management of  Trend Micro's Network Intrusion Prevention System (NIPS),Host Intrusion Prevention System (HIPS), Advanced Persistent Threat (APT) solutions, Cisco  Wireless Intrusion Prevention System (WIPS), 
3. Configuration Security hardening across IT Infrastructure platforms (such as Servers, Storages, Network, Network devices and Endpoints.)
4. Remediation of Security Incidents at OS and Network layer by coordinating with Partner Vendor teams & IT teams to minimize adverse impact
5. Ensure compliance to SLA, process adherence and process improvisation to achieve operational objectives
6. Creation of reports, dashboards, metrics for IT Infrastructure Security Operations 
7. Establish and maintain operational SOPs for all responsible areas and technologies
8. Perform regular status reviews with IT Infrastructure asset owners & senior leadership to ensure compliance with InfoSec policies
9. Excellent Communication, Interpersonal, Presentation and Team Management Skills
10. Depth knowledge of Security Operations & Device Functionality
11. In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc.
12. person should have very strong expertise with minimum 7 years of experience  on Trend Micro's NIPS,APT and Deep Security solution.
13. Strong working knowledge of Network Firewalls, NIPS, APT, HIPS, WAF, VPN, Proxy, NAC, and Deep Security platform
14. Knowledge of various operating system flavours including but not limited to Linux (RHEL & OEL) Windows, Unix
15. Knowledge of applications, databases, middleware to address security threats against the same.
16. Sound experience in vendor management
17. Maintaining current knowledge and understanding of the threat landscape and emerging security threats and vulnerabilities
18. Exposure to Ethical Hacking tools such as Nessus, Qualys, Nexpose, Vulnerability Assessments Tools for Network, Host, Applications, Endpoints etc.
19. Provide escalation Support on critical issues on IT Security solution platforms
20. Lead change, incident, and problem management for IT Infrastructure Security including creating change requests, incident Reports and Root Cause Analysis (RCA) reports.
21. Responsible for asset management, inventory tracking and support contracts related to Infrastructure Security function
22. Provide L3 / L4 Support on IT Infrastructure Security issues and Conclude RCA
23. Provide Project management support on the IT Infrastructure Security solutions planned for the function
24. Assist with business continuity and disaster recovery services pertaining to IT Infra Security ecosystem.
25. Works with external auditors to close the identifies gaps in the IT infrastructure domain
26. Responsible for monthly service review with Security Vendors and publishing the SLAs matrices
27. Responsible for implementation, execution, and effectiveness of vulnerability management program to achieve 100% defects closure 
28. Coordinate patch management activities for IT assets which includes Network, Server, Storage and Monitoring Software etc.
29. Ensure execution of patch deployment as per the schedule received from Infosec for Vulnerability identified in Infrastructure domain
30. Implementing security hardening best practices, and publishing the Vulnerability and Patch Management metrics
31. Manage Vulnerability management framework to support compliance and risk management activities to mitigate vulnerability risks
32. Manage the execution of patch management for OS & Network Devices

Measures of Success 

1. Security Solution project implementation.
2. All solution should be design as per best practice & as per agreed timeline
3. Related successful KPI to measure project success   
4. IT Security  Operations
   • 99.9 uptime for all security tools
   • security incident management which should resolve as per agreed ITIL SLA
   • All operation KPI should be in green state 
5. Risk Management:All Security tools KPIs are in green state. & controls against each residual risk
6. Auditing and compliance
   • All IT infra related finding in the auditing should be closed as per agreed timeline
   • All hardware should be on agreed OS firmware (N-2)compliance
   • All IT hardware /tools should have hardening configuration implemented
7. Budgeting:Responsible to manage the budge against security tools

Technical Skills / Experience / Certifications

1. Engineering with BE /B Tech.
2. Experience of 10+ years in Designing, IT & Cyber Security ,threat hunting.
3. Security certification: CISSP, Trend Micro Certification, CEH

Competencies critical to the role

1. Good experience in security design, security solution and operation.
2. Good experience in network design, security solution and operation.
3. Strong knowledge on security tools WAF, NIPS, DLP, NAC, SOAR, threat hunting, Mitre framework.
4. Should have experience in managing contracts and dealing with external vendors / third parties
5. Excellent project management skill, stakeholder management, time management.
6. Excellent Communication, Interpersonal, Presentation and Leadership Skills 
7. Strong verbal and written communication skills with both business and technical areas

Qualification 

1. Engineering with BE /B Tech.
2. Experience of 10+ years in Designing, IT & Cyber  Security, threat hunting .
3. Security certification: CISSP or CEH

Preferred Industry

NBFC / BFSI Industry / IT Operations Support