LDS Infotech

SBU Head Security Sales.Location: Mumbai & Bangalore.Educational qualifications: Bachelors degree in computer science, Information Security, or related field. masters degree or relevant certifications (CISSP, CISM, CISA) is a plus.Experience: A seasoned professional with 12 to 18 years of experience, including a minimum of 6 years in security sales and 5 years in sales leadership.Extensive expertise in IT software and IT security sales, coupled with strong communication skills and technical proficiency.Proven ability to lead and manage a team of at least 10 sales professionals effectively.Key & Team Management:- Lead and manage a team of 10 security technical professionals and 10 sales professionals, providing mentorship, guidance, and career development opportunities.- Oversee the creation and execution of security strategies, aligning them with the organization's business goals.- Foster a culture of collaboration, accountability, and continuous improvement within the security team.- Conduct performance evaluations and drive continuous training programs for team members.- Ensure effective coordination between security and other business units to address cybersecurity concerns.- Responsible for achieving security portfolio number of INR 50 Crores Annually across PAN India market.Data Security:- Oversee the implementation of robust data security policies and practices to ensure data integrity, confidentiality, and availability.- Lead efforts in data encryption, data masking, and data classification to safeguard sensitive information.- Implement data loss prevention (DLP) strategies and manage backup and recovery procedures to prevent data breaches.- Collaborate with IT and compliance teams to ensure that data security measures meet regulatory requirements.Network Security (Firewall Management):- Manage and optimize network firewall strategies to monitor and control incoming and outgoing network traffic.- Oversee the implementation of packet filtering, stateful inspection, and proxy services to protect the organizations internal network.- Evaluate and integrate next-generation firewalls (NGFW) to ensure advanced protection against evolving cyber threats.- Lead efforts in application layer filtering and intrusion prevention systems (IPS) to maintain a secure network perimeter.Endpoint Security Management:- Oversee the deployment and management of endpoint security solutions across the customers, ensuring comprehensive protection of end-user devices.- Guide the implementation of Antivirus software, Endpoint Detection and Response (EDR), and Mobile Device Management (MDM) tools to secure mobile devices and endpoints.- Ensure consistent patch management practices to eliminate vulnerabilities and ensure endpoint security compliance.- Implement strong data encryption measures for endpoints, safeguarding data in case of device theft or loss.Email Security Management:- Lead the development and deployment of email security solutions to protect against phishing, spam, and malware.- Ensure comprehensive spam filtering, phishing detection, and attachment scanning protocols are in place.- Drive encryption policies to ensure that all email communications remain secure and confidential.- Oversee the implementation of DMARC (Domain-based Message Authentication, Reporting, and Conformance) to prevent email spoofing.Vulnerability Assessment and Penetration Testing (VAPT):- Direct vulnerability assessments and penetration testing to identify weaknesses in systems, networks, and applications.- Develop and maintain a structured approach to assess risks, exploit vulnerabilities, and mitigate threats.- Work with internal and external teams to perform exploitation testing and determine potential damage scenarios.- Ensure timely documentation of findings and mitigation recommendations to secure the organizations infrastructure.Identity and Access Management (IAM):- Oversee the implementation of identity management solutions, ensuring that the right individuals have access to the right resources.- Manage authentication and authorization protocols, integrating multi-factor authentication (MFA) and role-based access controls (RBAC).- Guide the adoption of Single Sign-On (SSO) solutions to improve user experience and streamline access management.- Oversee audit and monitoring processes to track user activity, ensuring compliance and detect suspicious behaviors.Web Application Firewall (WAF) Management:- Lead the implementation and management of Web Application Firewalls (WAF) to protect web applications from cyberattacks such as SQL injection and cross-site scripting (XSS).- Ensure proper traffic filtering, bot protection, and session management to prevent unauthorized access and attacks.- Implement rate limiting strategies to mitigate denial-of-service (DoS) attacks and secure web application performance.Strategic Security Initiatives:- Develop and execute a comprehensive security roadmap that aligns with the organizations business objectives and regulatory requirements.- Regularly assess and update security policies, procedures, and technologies to stay ahead of emerging threats.- Collaborate with executive leadership to ensure security investments are prioritized in line with business growth and objectives.Risk and Compliance Management:- Ensure compliance with industry standards and regulations, such as GDPR, HIPAA, PCI DSS, and others.- Maintain a proactive approach to risk management, ensuring all potential vulnerabilities are identified and addressed promptly.- Coordinate with audit teams to conduct internal and external security Bachelors degree in computer science, Information Security, or related field.- A masters degree or relevant certifications (CISSP, CISM, CISA) is a plus.- Minimum 12 to 18 years of experience, including a minimum of 6 years in security sales and 5 years in sales leadership.- Strong expertise in data security, network security, endpoint protection, email security, vulnerability assessment, IAM, and WAF management.- Proven experience managing a security team of 10+ professionals and coordinating with cross-functional teams.- Excellent knowledge of cybersecurity frameworks, regulations, and industry best practices.- Strong communication, problem-solving, and decision-making skills.Desired Skills:- The ability to lead and drive changes in a fast-paced and evolving cybersecurity landscape.- Excellent strategic thinking and the ability to align security initiatives with business objectives.- Strong interpersonal skills and the ability to influence and collaborate with various stakeholders.- Experience in security operations, incident response, and crisis management.- Proficient in vendor management, with expertise in effective coordination and strategic collaboration.Reporting Structure:Reports to: Managing Director.Direct Reports: 10 + security professionals, 10+ sales professionals. (ref:iimjobs.com)