Security Operations

Position Summary: 

• The role of Security operations Team Lead at Blackbox, Bangalore office will have the responsibility of overseeing the design, Implementation and monitoring of all security projects , tools and platforms related activities and tasks and establish procedures for operations management around IT Security projects, platforms and solutions employed within the organization with the objective of enhancing the overall security posture. 
• The role covers technical  hands on experience,  knowledge and ability including oversight covering all elements of IT Security in an organization covering various  security tools and platforms including establishing and improving processes and procedures, as they are directly responsible for supporting the day-to-day security operation functions of the security department for the geography including hands-on-ability to collate required information regarding security operations. 
• Technical knowledge and experience on various Security platforms - Crowdstrike falcon platform, ZTNA components of various products and vendors like Zscalar, Cloudflare, MS ZTNA,, MS Defender , Entra ID, O365 , EDR,XDR, SOAR, SIEM products and technology like Logscale, Splunk , Email gateway and Security, CISCO Platforms and tools, Password Manager , AD Plus, HSM – Hardware Security module, DLP etc.
• Strong communication (speaking and Written) skills are a must because there is a need to design, implement and communicate security procedures to service the security needs of a global organization. 
• Team lead will require strong supervisory abilities because they oversee all security of systems and keep the  organization safe from cyber and physical threats from both external and internal threat actors.
•  The security operations – team lead will also be responsible for supporting compliance efforts with internal / external Security Audits and globally known frameworks. The Security operations Team Lead  will also hire, train, evaluate, and perform improvements to processes and procedures as needed with the objective of keeping the technical and physical landscape free from threats, risks, and sabotage –both intentional and unintentional.
• Analytic skills and problem-solving abilities are necessary because security operations Team lead must evaluate existing security and safety protocols and work to improve efficiency by analyzing and implementing emergent procedures.
• The role will require the ability to prioritize tasks because they are directly responsible for the day-to-day oversight of security operations for the organizations given location across technical, systems, applications, networks et. Landscape. The role also requires security operations to be compliant to internal policies and industry best practices. 
• Responsible for the development and implementation of Security and Monitoring projects / Programs to help protect the technology and informational assets of the company with an emphasis on the performance of Information Security operational tools/products/platforms and establishment of structured workstream and workflow processes. The role requires establishing a structured process around information security domain activities and enhancing its operational efficiency. 
• This position will report to the VP – Information Security

Education 

• Min - Bachelor's Degree in related field, or equivalent, relevant experience.
• Masters / MCA – preferred.

Essential Duties and Job Responsibilities: 

•Responsible for the cataloguing projects Management and Security activities, implementation and support of security Projects, security monitoring and remediation  and incident response activities and programs.

•Oversee the planning and coordination of security operations during high-risk events / incidents

•Provides internal expertise as an Information Security technical subject matter technical expert on all security tools and platforms

• Proactively identifies, tracks, and mitigates risk, security vulnerabilities internally and from global sources to IT systems and operations and ensure closures.

• Manages analysis and reports of operational security key performance and risk metrics to drive program improvements

• Monitors and documents indicators of compromise (IOCs) related to advanced, targeted attackers and communicates with internal team

• Develops and maintains security-related monitoring and logging procedures across infrastructure, applications, databases and infrastructure in general , globally for the company

• Guide the Vulnerability Management (VAPT) and remediation effort to Plan to facilitate, monitor, and support the remediation and reporting activities of the VM program

• Understands business priorities and focuses efforts towards aligning services to business requirements and stakeholders

• Troubleshoots complex issues with existing security and privacy protection standards

• Recommends and implements threat countermeasures and controls

• Recommends and implements improvements to security services

• Develops partnerships and plays the liaison role between the internal security department and  other business and IT functions.

a.  Participates in the organization's disaster recovery, business continuity plans, Risk Assessment, IS audit , Vendor Risk Management program AND facilitates the operations of internal GRC function. 

• Monitors advancements in information security technologies, recommends new technologies and product modifications based on new risks/threats that would provide value to the collaboration.

• Ability to work independently on goals with the proven ability to analyze complex projects and identify relevant policies, gaps, and risks. 

b.  Follows up with business and end users on their due diligence activities related to security practices

c.  Follows up with other Internal organizational teams / business users/ end users for expected relevant activities supporting and leading to the success of a Security project.

• Works independently with project teams and requires advanced oral and written communication skills , a team player and keeps team member motivated and abreast with security trends and technologies  

• Support and facilitate the operational aspects of external audit functions, customer audit functions, vendors security / risk assessments and works with all stakeholders including internal team members within security group and outside the group collaboratively.

•Establish Operational alignment of operational activities and security deliverables to industry standards and security frameworks 

•Self driven , motivated individual to take on additional tasks and next logical steps for culmination of a task / project and/or activity

• Ensure alignment with overall Security goals and strategies of the Organization

•Oversee Physical security aspects of critical and important infrastructure assets.

•Build and Motivate team members through self-leadership and example.

Experience & Skillset:

• Qualified candidate must have a minimum of 7 years ( mgr / Security Operational Lead) 7-10 years (Sr. mgr/ Security Operational Lead) experience in the Information Security domain  

• CISSP,CISM, or comparable security specific certification

• PMP is a added advantage 

• Knowledge and Understanding of Security & Governance Frameworks – NIST,ISO 27001,ISO 20000,PCIDSS,GDPR,SOC2

•     Highly self-motivated, self-directed, and attentive to detail

•     Ability to effectively prioritize and execute tasks in a high-pressure environment

•     Must have high personal integrity, trust and ethics

•     Excellent analytical, problem-solving, negotiation and organization skills

•     Excellent communication skills including oral, written and presentation

Standards of Performance: 

• Professional experience in the information security Industry in a lead role managing a team of security professionals

• Expertise/ Experience in SIEM / SOAR / XDR , EDR, Email Security, PAM,HSM technologies and platforms.

• Job knowledge/timely, accurate and efficient performance as per industry standards

• Adherence to policies and procedures

• Promotes and ensures the highest level of quality member Service is provided to all stakeholders.

• Confidentiality of all records and adherence to data privacy policy and controls

• Timeliness of meeting regulatory guidelines and security project deadlines.

• Knowledge of Compliance, frameworks and regulatory requirements like HIPAA , PCI ,
•ISO27001,SOC2 , NIST standards and frameworks 

• Knowledge and in-depth understanding of Mitre & , OWASP top 10 , CIS controls and framework 

• Cost effectiveness and productivity of departmental operations.

• Success in meeting individual, departmental, and corporate goals.

• Self driven , ability to manage and govern a team with no support

Supervisory Responsibilities: 

• Represents and helps the security team in project planning , vendor communications, and estimation exercises. 

• Works with internal  team and Document and Maintain project plan schedule and timelines  and update Manager on weekly basis.

• Collaborate with technical leads on designs, technology, components, and other technical aspects and provide feedback to Manager.

• Monitors the team's performance on technical tasks.

• Guides the team to adhere to company policy related to best practices.

• Validate that time-off requests do not negatively impact planned high-priority work.

• Manage the on-call schedule for 24/7 support.