Manager - Security Operations

Job Description :

Position Title : Manager - Security Operations

Organization /Function :

- Manager is responsible for day to day operational and project delivery for a set of customers

Relevant Experience :

- 10+ years of experience in security area and at least 2 years as Security manager

Educational Qualification :

- BE/B.Tech/ME/M.Tech/Graduate/Master in any stream with excellent academic record

Company Overview :

Stratogent does IT and Cybersecurity operations.

We build and operate complex infrastructure - across on-premise, data centers, and clouds. We wrap any compute-storage-network platform with monitoring, automation and security services so customers can sleep while we cure failures and block threats.

If Google's mission is to "organize the world's information", ours is to "operate the world's infrastructure". We aren't quite there yet, so we focus on being the best at knowing and doing operations for mid-size, high-touch and high change IT environments. Our customer base is made up of progressive companies who are flag bearers of new technology adoption and are risk-takers. We have participated in successful (and failed) projects and bring that accumulated experience to each of our clients.

Since 2008, we have acted as an extension of internal IT and Security teams and along the way achieved a community of highly satisfied clients who rave about our "no-fluff just stuff" style.

Job description :

- Primary responsibility is to architect end-to-end security solutions including SIEM/SOC solutions, cloud security, network security, Endpoint security and participate in the deployment

- Interact with customers over email and occasionally over conference calls regarding security operations

- Assist delivery managers with security-related tasks and questions

- Manage the communications with security tool vendors across customer deployments

Business Relationships :

- Work with customers and leadership on pre-sales, new service offering, new product inclusion in the portfolio

- Work with associates on security tools/process enhancements, deployment projects and act as SME for security team

Key Responsibilities :

Customer Interaction :

- This is primarily an outbound role i.e. activities you will be responsible for will directly involve customers or a representative at our US office, and is communication heavy rather than troubleshooting or task execution

- Attend scheduled meetings (conference calls) with customers and US counterparts for regular work planning and projects.

- Sometimes will be the primary driver of these meetings i.e. responsible for coming up with the proper agenda items and lead the conversation, prepare and circulate minutes of meeting.

- Develop and maintains a professional and effective relationship with customer representatives

- Customer onboarding and customer satisfaction

- Assist leads and others in getting the query clarified from customer

- Take customer feedback, analyze and suggest required changes in process and quality

Project Management :

- Project planning :

- Prepare project plan and customize templates per the technologies and customer specifics.

- Responsible for taking a project work breakdown structure (produced by a technical architect for example) and turn into a professional project plan with resource assignments, dependencies, milestones, critical path identification, cost estimation and optimization etc.

Project maintenance :

- Keeps the projects running in parallel to day to day operations tracked as a separate work stream, ensuring resourcing is done and completion dates are feasible.

- Does time and cost accounting for projects and submits timesheets to accounts for invoicing project work.

Process Leadership :

Reporting :

- Responsible for service level agreement (SLA) adherence and reporting to customer and Stratogent management. Compile the required reports (monthly, weekly or quarterly)

- Excellent communication on the issues to technical team, leads and managers, ensure other managers & leads are aware of the changes which are being planned for near future

- Identify or Escalate issues to the seniors, if the technical delivery is not happening as per the expectations

- Shift handover utilizing email and other tools to the next shift SDM with the details of task status (pending/complete), status of project work or any other important communications Incidents & Requests

- Ticketing system owner for overall work queue for a set of customers. The focus is on completeness of ticket triage, ensuring timely updates to tickets, and proper prioritization and assignments

Task list creation :

- Determines what work items are active, what the customer expects (not the implementation details), communicates ETA and priorities. Routes task items to the leads for distribution among the team

Task status communication :

- Communicates status updates to the task list back to customer, when necessary

Escalation management :

- Acts as interface with customer or with the US SDM depending on the client, takes heat and manages expectations when things go wrong.

- Manages and mitigates crisis incidents through excellent coordination. Keeps all the necessary stake holders updated all times

Cost and Quality :

- Track and report the quality of deliverables and work with Leads and Managers for improvement of the same

- Track and report resource utilization for the set of customers.

- Track customers operational service cost, project cost and profitability

Must-have Skills :

- Must know common security policy frameworks and possess knowledge of how security programs are run at mid to large scale companies

- Must have managed a team to deliver "Managed Security Service" or "Security Operations Center"

- Prior working Background in either SIEM tools (Splunk, ArcSight, QRadar, DNIF etc.) or Vulnerability assessment and Management tool (Qualys/Rapid7) and process

- Has broader context and understanding of managed security services

- Must have service mindset and empathy. Must deal with a level of ambiguity, chaos and apparent stubbornness from customers, and manage around it by thinking through the issue or request from thencustomer's perspective to drive to a reasonable conclusion

- Must have prior experience on Project Management

- Must have prior experience of onsite-offshore delivery model and should have directly worked with US/European customers or colleagues

- Must have ITIL process knowledge

Good-to-have-skills :

- Working experience with breadth of security areas is desirable

- Security certifications like CISSP, CISM, CISA, CIPP, CIPM, CIPT, CEH will be added advantage

- Knowledge of security related products like next generation firewalls (PAN, Cisco, Juniper, Fortinet, Checkpoint etc), Endpoint Security Management (CarbonBlack, CrowdStrike, McAfee etc.), identity and access management tools (IAM) systems (SailPoint, OKTA, SSO/ LDAP) and Privilege Access Management (PAM) tools (CyberArk, Beyondtrust etc.) are added advantage etc.

- PMP and ITIL certifications are added advantage

Core Competencies :

Communication skills :

- Excellent Written, Reading Comprehension, listening and Verbal communication

Creativity/Innovation :

- Generates many new and unique ideas; makes connections among previously unrelated notions; is unafraid to use unorthodox methods; is original and value-added in brainstorming settings.

Intellectual Acumen :

- Intelligent and capable to deal with concepts and complexity comfortably, good at learning and deciphering new knowledge, able to assimilate new skills independently

Flexibility :

- The ability to adapt to and work effectively with a variety of situations, individuals, or groups.

- It is the ability to understand and appreciate different and opposing perspectives on an issue, to adapt and approach as the requirements of a situation change, and to change or easily accept changes in one's own organization or job requirements

Teamwork :

- A genuine intention to work cooperatively with others, to be part of a team, to work together as opposed to working separately or competitively.

- Encourages and facilitates cooperation, pride, trust, and group identity; fosters commitment and team spirit; works with others to achieve goals.