Cyber Security Manager

Cyber_MS_MDR-Manager

Manage Detection & Response: Manager

Job Overview:

The Role Description:

Designated position will be a part of India Bangalore – Managed Security Services Organization. The individual will be required to lead Managed Detection & Response (MDR) function and will be responsible for all aspects of the Cyber Security operations and Defense practices, including Next Generation SOC, Security analytics, Threat Hunting, Incident Response/Automation, Threat Intel, Malware Analysis, SIEM use case engineering, MIRTE, SOC design and implementation related to NIST or other frameworks, security data lake for structured/unstructured data, and other emerging SOC technical security aspects.

The individual will be responsible for advising customer leadership on complex and often unique cyber threat issues in IT/Cloud and banking  infrastructure, suggest mitigation strategies, and support the customers/ partners in implementing these strategies. This included project management, service delivery and quality assurance, customer management, relationship with vendors & technology partners. 

Key General Responsibilities: 

• Lead and drive the Security Operations management function and service delivery by new projects acquisition, project delivery through execution & operations support
• Strong leadership skills with the ability to lead department and manage functional teams
• Build and grow the competency through hiring and developing the current team
• Provide strong technical leadership to the delivery team, partners and customers
• Results-oriented and ability to think big can work backward from customer’s needs
• Project Management, Service Management, Customer handling, Quality assurance
• Highly effective communicator and demonstrated ability to work cross-functionally, with a track record of delivering results and demonstrating strong ownership
• People management and accountable for hiring, talent development, performance management, succession planning, coaching to direct reports, and engagement for the teams
• Excellent communication and interpersonal skills, with the ability to influence and engage stakeholders at all levels within the organization and with customers, partners/vendors
• Support sales strategy to meet agreed business revenue through pre-sales & appropriate solutions
• Identify and grow new opportunities with existing customer and ensure customer satisfaction and retention  

Key Technical Responsibilities: 

• As Technical leader, drive future strategy around Cyber Security operations, Threat intelligence and analytics, threat monitoring, incident response, threat hunting and forensics investigation  
• Establish and manage large Security Operations and engineering competency to support 24X7 SOC & infrastructure security operations 
• The candidate able to understand the enterprise security solutions, Next Gen SOC, Threat & Incident Management services, Malware analysis.
• Periodic study of overall security posture for use cases reviews and development, which includes server security, network security, application security vulnerability management, cloud security, Active Directory and typical vulnerabilities and misconfigurations and associated exploitation techniques 
• Development of use cases, hunting models based on in-depth study and mapping of TTPs, MITRE Framework in securing an enterprise environment 
• Managing the EDR/XDR, Threat Intelligence, Security Analytics technologies and tools, and SIEM tools (commercial or open source) and TIP/ SOAR platforms
• Leading complex, diverse cyber security projects and implementation programs
• Lead Incident Response, Digital Forensics and Breach Investigations and Cyber Crisis Management program
• Lead 24X7 security operations and threat monitoring, security engineering for IT/Cloud and banking 
• Perform security architectural review and control assessment, and threat modelling to develop use cases for automated alerts and hunting
• Complete project work with quality and within deadlines as required, complete the analysis and draw comprehensive conclusions, making appropriate recommendations and mitigation plan
• Communicate technical impact and business risk to a non-technical audience after the project
• Provide expert advice on the selection and implementation of appropriate SOC tools/technologies and best practices as NIST, MITRE and other relevant frameworks
• Follow security standards and frameworks, and implement best practices methodologies
• Work closely with Customer Security and IT teams to ensure secure practices are in place
• Educate customers, technical team, IT and security team, application developers about Emerging threat and vulnerability to raise awareness and build a Security Champion program

 Technical Skills that are Key to this role:

• Experience with managing large security operation center, 24X7 security monitoring operations, Incident Response, Digital Forensics and Breach Investigations and Crisis Management 
• Established and manage large Security Operations and engineering competency to support 24X7 SOC & infrastructure security operations 
• Good understanding of SOC architecture, operations models, design & implementation of enterprise security solutions, Next Gen SOC, Threat & Incident Management services, 
• Sound understanding of server security, network security, application security vulnerability management, cloud security, knowledge of OS internals (Windows, Linux), Active Directory and typical vulnerabilities and misconfigurations and associated exploitation techniques 
• Broad exposure and In-depth practical knowledge and experience in application of TTPs, MITRE Framework in securing an enterprise environment 
• Working knowledge of EDR, Threat Intelligence, Security Analytics technologies and tools, and SIEM tools (commercial or open source) and TIP/ SOAR platforms
• Leading complex, diverse cyber security projects and implementation programs
• Strong background in Network/Infrastructure Vulnerability and PT Concepts including OWASP Top 10 vulnerabilities, Enterprise security architecture, standards, relevant best practices and frameworks
• Experience in leading complex, diverse cyber security projects and development programs
• Extensive expertise in Web, API, and AWS/Azure Cloud Security,
• In-depth knowledge of cloud security best practices, including experience with AWS/ Azure Cloud Platform, and the ability to configure security controls and monitor for cloud-based threats, with experience in AWS/Azure cloud security assessments.
• Should be familiar with common compliance requirements like GDPR, PCI-DSS, ISO 27001
• Familiar Agile process and ITIL service management process and security relevant standard and frameworks NIST, MITRE, .
• Assessment of  alert and intelligently identifying false positives rate and improve the detection.

Education and Certification preferred for the role:

• BTech/B.E. in CSE/IT/CSA/ECE
• MCA/ MTech/MS in CSE/IT/CSA/Electronics
• Any of the security certifications such as CEH, CHFI, ECSA, EWPT, EWPTX, OSCP, GPEN, GWAPT/CISSP/CISM/CISA

Note : Candidate must be willing to Work from Office only (Bangalore Location) & willing to do 24x7 rotational shift (Mandatory requirement for this role)

Manage Detection & Response: Manager

Job Overview:

The Role Description:

Designated position will be a part of India Bangalore – Managed Security Services Organization. The individual will be required to lead Managed Detection & Response (MDR) function and will be responsible for all aspects of the Cyber Security operations and Defense practices, including Next Generation SOC, Security analytics, Threat Hunting, Incident Response/Automation, Threat Intel, Malware Analysis, SIEM use case engineering, MIRTE, SOC design and implementation related to NIST or other frameworks, security data lake for structured/unstructured data, and other emerging SOC technical security aspects.

The individual will be responsible for advising customer leadership on complex and often unique cyber threat issues in IT/Cloud and banking  infrastructure, suggest mitigation strategies, and support the customers/ partners in implementing these strategies. This included project management, service delivery and quality assurance, customer management, relationship with vendors & technology partners. 

Key General Responsibilities: 

• Lead and drive the Security Operations management function and service delivery by new projects acquisition, project delivery through execution & operations support
• Strong leadership skills with the ability to lead department and manage functional teams
• Build and grow the competency through hiring and developing the current team
• Provide strong technical leadership to the delivery team, partners and customers
• Results-oriented and ability to think big can work backward from customer’s needs
• Project Management, Service Management, Customer handling, Quality assurance
• Highly effective communicator and demonstrated ability to work cross-functionally, with a track record of delivering results and demonstrating strong ownership
• People management and accountable for hiring, talent development, performance management, succession planning, coaching to direct reports, and engagement for the teams
• Excellent communication and interpersonal skills, with the ability to influence and engage stakeholders at all levels within the organization and with customers, partners/vendors
• Support sales strategy to meet agreed business revenue through pre-sales & appropriate solutions
• Identify and grow new opportunities with existing customer and ensure customer satisfaction and retention  

Key Technical Responsibilities: 

• As Technical leader, drive future strategy around Cyber Security operations, Threat intelligence and analytics, threat monitoring, incident response, threat hunting and forensics investigation  
• Establish and manage large Security Operations and engineering competency to support 24X7 SOC & infrastructure security operations 
• The candidate able to understand the enterprise security solutions, Next Gen SOC, Threat & Incident Management services, Malware analysis.
• Periodic study of overall security posture for use cases reviews and development, which includes server security, network security, application security vulnerability management, cloud security, Active Directory and typical vulnerabilities and misconfigurations and associated exploitation techniques 
• Development of use cases, hunting models based on in-depth study and mapping of TTPs, MITRE Framework in securing an enterprise environment 
• Managing the EDR/XDR, Threat Intelligence, Security Analytics technologies and tools, and SIEM tools (commercial or open source) and TIP/ SOAR platforms
• Leading complex, diverse cyber security projects and implementation programs
• Lead Incident Response, Digital Forensics and Breach Investigations and Cyber Crisis Management program
• Lead 24X7 security operations and threat monitoring, security engineering for IT/Cloud and banking 
• Perform security architectural review and control assessment, and threat modelling to develop use cases for automated alerts and hunting
• Complete project work with quality and within deadlines as required, complete the analysis and draw comprehensive conclusions, making appropriate recommendations and mitigation plan
• Communicate technical impact and business risk to a non-technical audience after the project
• Provide expert advice on the selection and implementation of appropriate SOC tools/technologies and best practices as NIST, MITRE and other relevant frameworks
• Follow security standards and frameworks, and implement best practices methodologies
• Work closely with Customer Security and IT teams to ensure secure practices are in place
• Educate customers, technical team, IT and security team, application developers about Emerging threat and vulnerability to raise awareness and build a Security Champion program

 Technical Skills that are Key to this role:

• Experience with managing large security operation center, 24X7 security monitoring operations, Incident Response, Digital Forensics and Breach Investigations and Crisis Management 
• Established and manage large Security Operations and engineering competency to support 24X7 SOC & infrastructure security operations 
• Good understanding of SOC architecture, operations models, design & implementation of enterprise security solutions, Next Gen SOC, Threat & Incident Management services, 
• Sound understanding of server security, network security, application security vulnerability management, cloud security, knowledge of OS internals (Windows, Linux), Active Directory and typical vulnerabilities and misconfigurations and associated exploitation techniques 
• Broad exposure and In-depth practical knowledge and experience in application of TTPs, MITRE Framework in securing an enterprise environment 
• Working knowledge of EDR, Threat Intelligence, Security Analytics technologies and tools, and SIEM tools (commercial or open source) and TIP/ SOAR platforms
• Leading complex, diverse cyber security projects and implementation programs
• Strong background in Network/Infrastructure Vulnerability and PT Concepts including OWASP Top 10 vulnerabilities, Enterprise security architecture, standards, relevant best practices and frameworks
• Experience in leading complex, diverse cyber security projects and development programs
• Extensive expertise in Web, API, and AWS/Azure Cloud Security,
• In-depth knowledge of cloud security best practices, including experience with AWS/ Azure Cloud Platform, and the ability to configure security controls and monitor for cloud-based threats, with experience in AWS/Azure cloud security assessments.
• Should be familiar with common compliance requirements like GDPR, PCI-DSS, ISO 27001
• Familiar Agile process and ITIL service management process and security relevant standard and frameworks NIST, MITRE, .
• Assessment of  alert and intelligently identifying false positives rate and improve the detection.

Education and Certification preferred for the role:

• BTech/B.E. in CSE/IT/CSA/ECE
• MCA/ MTech/MS in CSE/IT/CSA/Electronics
• Any of the security certifications such as CEH, CHFI, ECSA, EWPT, EWPTX, OSCP, GPEN, GWAPT/CISSP/CISM/CISA

Note : Candidate must be willing to Work from Office only (Bangalore Location) & willing to do 24x7 rotational shift (Mandatory requirement for this role)

Manage Detection & Response: Manager

Job Overview:

The Role Description:

Designated position will be a part of India Bangalore – Managed Security Services Organization. The individual will be required to lead Managed Detection & Response (MDR) function and will be responsible for all aspects of the Cyber Security operations and Defense practices, including Next Generation SOC, Security analytics, Threat Hunting, Incident Response/Automation, Threat Intel, Malware Analysis, SIEM use case engineering, MIRTE, SOC design and implementation related to NIST or other frameworks, security data lake for structured/unstructured data, and other emerging SOC technical security aspects.

The individual will be responsible for advising customer leadership on complex and often unique cyber threat issues in IT/Cloud and banking  infrastructure, suggest mitigation strategies, and support the customers/ partners in implementing these strategies. This included project management, service delivery and quality assurance, customer management, relationship with vendors & technology partners. 

Key General Responsibilities: 

• Lead and drive the Security Operations management function and service delivery by new projects acquisition, project delivery through execution & operations support
• Strong leadership skills with the ability to lead department and manage functional teams
• Build and grow the competency through hiring and developing the current team
• Provide strong technical leadership to the delivery team, partners and customers
• Results-oriented and ability to think big can work backward from customer’s needs
• Project Management, Service Management, Customer handling, Quality assurance
• Highly effective communicator and demonstrated ability to work cross-functionally, with a track record of delivering results and demonstrating strong ownership
• People management and accountable for hiring, talent development, performance management, succession planning, coaching to direct reports, and engagement for the teams
• Excellent communication and interpersonal skills, with the ability to influence and engage stakeholders at all levels within the organization and with customers, partners/vendors
• Support sales strategy to meet agreed business revenue through pre-sales & appropriate solutions
• Identify and grow new opportunities with existing customer and ensure customer satisfaction and retention  

Key Technical Responsibilities: 

• As Technical leader, drive future strategy around Cyber Security operations, Threat intelligence and analytics, threat monitoring, incident response, threat hunting and forensics investigation  
• Establish and manage large Security Operations and engineering competency to support 24X7 SOC & infrastructure security operations 
• The candidate able to understand the enterprise security solutions, Next Gen SOC, Threat & Incident Management services, Malware analysis.
• Periodic study of overall security posture for use cases reviews and development, which includes server security, network security, application security vulnerability management, cloud security, Active Directory and typical vulnerabilities and misconfigurations and associated exploitation techniques 
• Development of use cases, hunting models based on in-depth study and mapping of TTPs, MITRE Framework in securing an enterprise environment 
• Managing the EDR/XDR, Threat Intelligence, Security Analytics technologies and tools, and SIEM tools (commercial or open source) and TIP/ SOAR platforms
• Leading complex, diverse cyber security projects and implementation programs
• Lead Incident Response, Digital Forensics and Breach Investigations and Cyber Crisis Management program
• Lead 24X7 security operations and threat monitoring, security engineering for IT/Cloud and banking 
• Perform security architectural review and control assessment, and threat modelling to develop use cases for automated alerts and hunting
• Complete project work with quality and within deadlines as required, complete the analysis and draw comprehensive conclusions, making appropriate recommendations and mitigation plan
• Communicate technical impact and business risk to a non-technical audience after the project
• Provide expert advice on the selection and implementation of appropriate SOC tools/technologies and best practices as NIST, MITRE and other relevant frameworks
• Follow security standards and frameworks, and implement best practices methodologies
• Work closely with Customer Security and IT teams to ensure secure practices are in place
• Educate customers, technical team, IT and security team, application developers about Emerging threat and vulnerability to raise awareness and build a Security Champion program

 Technical Skills that are Key to this role:

• Experience with managing large security operation center, 24X7 security monitoring operations, Incident Response, Digital Forensics and Breach Investigations and Crisis Management 
• Established and manage large Security Operations and engineering competency to support 24X7 SOC & infrastructure security operations 
• Good understanding of SOC architecture, operations models, design & implementation of enterprise security solutions, Next Gen SOC, Threat & Incident Management services, 
• Sound understanding of server security, network security, application security vulnerability management, cloud security, knowledge of OS internals (Windows, Linux), Active Directory and typical vulnerabilities and misconfigurations and associated exploitation techniques 
• Broad exposure and In-depth practical knowledge and experience in application of TTPs, MITRE Framework in securing an enterprise environment 
• Working knowledge of EDR, Threat Intelligence, Security Analytics technologies and tools, and SIEM tools (commercial or open source) and TIP/ SOAR platforms
• Leading complex, diverse cyber security projects and implementation programs
• Strong background in Network/Infrastructure Vulnerability and PT Concepts including OWASP Top 10 vulnerabilities, Enterprise security architecture, standards, relevant best practices and frameworks
• Experience in leading complex, diverse cyber security projects and development programs
• Extensive expertise in Web, API, and AWS/Azure Cloud Security,
• In-depth knowledge of cloud security best practices, including experience with AWS/ Azure Cloud Platform, and the ability to configure security controls and monitor for cloud-based threats, with experience in AWS/Azure cloud security assessments.
• Should be familiar with common compliance requirements like GDPR, PCI-DSS, ISO 27001
• Familiar Agile process and ITIL service management process and security relevant standard and frameworks NIST, MITRE, .
• Assessment of  alert and intelligently identifying false positives rate and improve the detection.

Education and Certification preferred for the role:

• BTech/B.E. in CSE/IT/CSA/ECE
• MCA/ MTech/MS in CSE/IT/CSA/Electronics
• Any of the security certifications such as CEH, CHFI, ECSA, EWPT, EWPTX, OSCP, GPEN, GWAPT/CISSP/CISM/CISA

Note : Candidate must be willing to Work from Office only (Bangalore Location) & willing to do 24x7 rotational shift (Mandatory requirement for this role)

Experience Level

Mid Level