Technical Project Lead - Vulnerability Management

Vulnerability Management Technical Project Lead

Company Description

About Sopra Steria
Sopra Steria, a major Tech player in Europe with 51,000 employees in nearly 30 countries, is recognised for its consulting, digital services and solutions. It helps its clients drive their digital transformation and obtain tangible and sustainable benefits. The Group provides end-to-end solutions to make large companies and organisations more competitive by combining in-depth knowledge of a wide range of business sectors and innovative technologies with a collaborative approach. Sopra Steria places people at the heart of everything it does and is committed to putting digital to work for its clients in order to build a positive future for all. In 2025, the Group generated revenues of €5.6 billion.
The world is how we shape it.

Job Description

Location (Primary) - Noida

GCF Level - 3A

 

Role Description:- The Tech Lead/ServiceLine Lead will be responsible for the operational, organisational, and strategic management of activities related to Vulnerability Management (VM), CTI incidentology, and COD controls. Will act as the primary interface between the Client (CYB, TGITS, Divisions), operational teams, and governance bodies, ensuring service quality, performance, and continuous improvement.

In addition of this governance role, he/she is also responsible for delivering & managing the team. Here is the high-level scope of the responsibilities:

1. Monitoring of critical P0 / P1 vulnerabilities
2. Steering CTI incidentology
3. Execution and governance of COD controls
4. Organisation of committees and reporting
5. Operational management and team skill development
6. Contribution to process, tool, and KPI optimisation

 

Job Description:

1. Management of Critical P0 / P1 Vulnerabilities - Promptly responding to P0/P1 vulnerabilities, including identification, assessment, patching, documentation, and development of remediation plans when patching is not possible.
2. Governance Specific to P0 Vulnerabilities - Coordinate and oversee P0 vulnerability follow-up meetings, communicate updates and remediation progress, escalate unresolved issues, and ensure compliance with established deadlines.
3. Organisation and Facilitation of Committees - To attend, present & track regular meetings and committee sessions with vulnerability status, track remediation efforts, report key performance indicators, and coordinate with divisions on security tools and control enhancements.
4. Management of COD Controls - oversees the execution, analysis, and remediation of six COD controls, ensuring effective risk reduction and planning for additional controls to further mitigate cyber threats.
5. Team Management and Organisation - Responsible for organising and coordinating the controls and remediation team by planning activities, distributing workloads, managing priorities, ensuring service continuity, and overseeing training, skills development, and leave management.
6. Continuous Improvement and Value Creation - Actively contribute to automation initiatives, enhance data reliability, optimize monitoring tools and processes, drive operational efficiency, and support the evolution of services to meet client expectations.
7. Key Tools and Environments - Proficiency in ServiceNow SECOPS (certification preferred), vulnerability detection and monitoring tools (Microsoft Defender for Endpoint EDR/XDR, WIZ, NESSUS PRO, Dynatrace), CMDB, VISIT, reporting tools (PowerBI, PowerPoint), and adherence to security standards and Client SLAs is required.

 

Strongly Preferred Certifications

1. ServiceNow SECOPS certification
2. CISSP / CISM / ISO 27001 certifications
3. GIAC (GREM / GCED / GCTI) certifications
4. Cloud and Microsoft security certifications

 

Mandatory Soft Skills:

1. Proven leadership experience
2. Strong people management and client‑facing governance skills
3. Executive communication (FR/EN written & verbal reporting
4. Crisis management & escalation handling for P0/P1 situations
5. Data‑driven decision making using KPIs, dashboards, and trends
6. Continuous improvement & automation mindset

 

Total Experience Expected: 08-10 years

Qualifications

Bachelor's degree or Master's in Computer Science, Engineering, or related field.

Advanced degrees or certifications are preferred

 

Additional Information

This roles requires to follow CET working hours/Client business hours

At our organization, we are committed to fighting against all forms of discrimination. We foster a work environment that is inclusive and respectful of all differences.

All of our positions are open to people with disabilities.

Experience Level

Senior Level