Assistant Vice President - Endpoint Security SME

Description:
Under the guidance of IT Security Operation leader serve a critical SME role for the execution, implementation and operations of the Endpoint Security Tools which includes the security engineering, hardening, vulnerability management, and patch management for SBI Card Data Center. Under the support of CISO / InfoSec team, he/she would be managing the entire Endpoint Security support as per the defined functional & company strategy, goals, and performance objectives. Maintaining compliance and creating security KPIs to perform complete governance over Security Tools such as HIPS, Anti-Virus, EDR, XDR, NIPS, Anti APT (Zero Day prevention) and FIM. Implementing security automation & response with respect to secure 3 Tier data center as a layered security approach. Building redundancy and high availability of the security infrastructure with disaster recovery available in case of BCP/disaster. Maintaining and planning budget to accommodate existing and future requirements.

Security Solution design and implementation
•   Design & develop strong, sustainable, and highly secure solution to protect the Organization asset.
•   brainstorming with OEM and vendor to prose and design the security solution.
•   project management throughout project life cycle.
•   Security operation support for implemented solution.
   
IT Security Operations 
•   Manage security solution, like HIPS, Anti-Virus, EDR, XDR, NIPS, Anti APT (Zero Day prevention), FIM etc.
•   Responsible for high uptime for all security solution and their management
•   Manage & maintain the SLAs, operation metrics & support ongoing maintenance activities
•   Manages security incident, problem and change management.
•   work with application and other stakeholder to enhance application security.
•   Work with Infosec, Compliance, legal team to work on day-to-day security related task.

Vulnerability management
•   Responsible for vulnerability management for Virtual/Physical Appliances managed by Security Operation Team
•   Responsible for 98% compliance with respect to vulnerability management.
•   Co-ordination with all IT team/Leads if require to get maintenance window, pre and post sanity of weekly and monthly basis.

Risk Management
•   Accountable to prepare and assess risk matrix, Risk framework and residual risk from IT side.
•   Responsible of Security KPIs against network solution, vulnerability management and Risk.
•   Actively work with Infosec team and their team to evaluate any security risk with respect to Data, Network, Asset, application etc.
•   Responsible to present the security incident related reports.

Auditing and Compliance
•   Responsible to work along with Infosec team to conduct PCI-DSS, ISO 27001 etc.  and related internal or external auditing.
•   Responsible to work on RED team and BLUE team security assessment and mitigation on the finding.
•   Manage compliance requirement on external & internal audit on IT vertical
•   Implementation for security hardening configuration on all IT devices which include compute, Network and servers.
•   Manage the compliance, IT security policy adherence, user access control etc.

Technical Skills / Experience / Certification (If any)

• Excellent Communication, Interpersonal, Presentation and Team Management Skills
• Hands on expertise on TrendMicro Deep Security Platform, NIPS, Anti-APT and XDR
• In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc.
• Knowledge of various operating system flavors including but not limited to Linux (RHEL & OEL) Windows, Unix
• Sound experience in vendor management
• Maintaining current knowledge and understanding of the threat landscape and emerging security threats and vulnerabilities
• Exposure to basic network troubleshooting
• Exposure to IoC (Indicator of Compromise) and CVE (Common Vulnerabilities and Exposures)

Must have Qualification:

• Engineering with BE / B Tech. in Computer Science/IT
• Security Certifications – CEH, CISM, TrendMicro Certification
• Experience of ISO 27001 and PCI DSS implementation

Overall experience in role: 10+ Years

Preferred Industry (If any): NBFC / BFSI Industry / IT Security Operations Support