Assistant Vice President - Infrastructure Security SME

• Role involves the system implementations, adoption and testing of new processes and procedures which improve the security and robustness of the IT Infrastructure and associated IT Platforms.
• Provide technical expertise for information security policies, standards & operations.
• Managing Perimeter Security components which includes management of F5 Web Application Firewall (WAF), Trend Micro's Network Intrusion Prevention System (NIPS), Host Intrusion Prevention System (HIPS), Advanced Persistent Threat (APT) solutions, Aruba Wireless Intrusion Prevention System (WIPS), Cisco Identity Services Engine (ISE), ForeScout Network Access Control (NAC) etc.
• Configuration Security hardening across IT Security Infrastructure platforms.
• Remediation of Security Incidents at Security Infrastructure layer by coordinating with Partner Vendor teams & IT teams to minimize adverse impact.
• Ensure compliance to SLA, process adherence and process improvisation to achieve operational objectives.
• Creation of reports, dashboards, metrics for IT Infrastructure Security Operations.
• Establish and maintain operational SOPs for all responsible areas and technologies.
• Perform regular status reviews with IT Infrastructure asset owners & senior leadership to ensure compliance with InfoSec policies.
• Excellent Communication, Interpersonal, Presentation and Team Management Skills.
• Depth knowledge of Security Operations & Device Functionality.
• In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc.
• Candidate should have very strong expertise with minimum 8-10 years of experience on WAF, NAC, ISE, Trend Micro's NIPS, APT and Deep Security solution.
• Strong working knowledge of Network Firewalls, NIPS, APT, HIPS, WAF, VPN/ZTNA, Cloud Proxy, NAC, and Deep Security platform.
• Sound experience in vendor management.
• Maintaining current knowledge and understanding of the threat landscape and emerging security threats and vulnerabilities.
• Provide escalation Support on critical issues on IT Security solution platforms.
• Lead change, incident, and problem management for IT Infrastructure Security including creating change requests, incident Reports and Root Cause Analysis (RCA) reports.
• Responsible for asset management, inventory tracking and support contracts related to Infrastructure Security function.
• Provide L3 / L4 Support on IT Infrastructure Security issues and Conclude RCA.
• Provide Project management support on the IT Infrastructure Security solutions planned for the function.
• Assist with business continuity and disaster recovery services pertaining to IT Infra Security ecosystem.
• Works with external auditors to close the identifies gaps in the IT infrastructure domain.
• Responsible for monthly service review with Security Vendors and publishing the SLAs matrices.
• Responsible for implementation, execution, and effectiveness of vulnerability management program to achieve 100% defects closure.
• Coordinate patch management activities for IT assets which includes Network, Server, Storage and Monitoring Software etc.
• Ensure execution of patch deployment as per the schedule received from Infosec for Vulnerability identified in Infrastructure domain.
• Implementing security hardening best practices and publishing the Vulnerability and Patch Management metrics.
• Manage Vulnerability management framework to support compliance and risk management activities to mitigate vulnerability risks.
• Manage the execution of patch management for IT Security Devices

Technical Skills / Experience / Certification (If any)

• Engineering with BE /B Tech.
• Experience of 10+ years in IT Security Designing, Application Security, Infrastructure Security Solutions.
• Security certification: CISSP, Trend Micro Certification, CEH

Competencies critical for role with High Proficiency

• Good experience in security design, security solution and operation.
• Good experience in network design, security solution and operation.
• Strong knowledge on security tools WAF, NAC, ISE, NIPS, HIPS, WIPS etc.
• Should have experience in managing contracts and dealing with external vendors / third parties.
• Excellent project management skill, stakeholder management, time management.
• Excellent Communication, Interpersonal, Presentation and Leadership Skills.
• Strong verbal and written communication skills with both business and technical areas