SBU Head

Designation:
SBU Head – Security Sales

Location:
Mumbai & Bangalore

Educational qualifications:
Bachelor's degree in computer science, Information Security, or related field. A

master's degree or relevant certifications (CISSP, CISM, CISA) is a plus.

Experience:
A seasoned professional with 12 to 18 years of experience, including a minimum of 6 years in security sales and 5 years in sales leadership. Extensive expertise in IT software and IT security sales, coupled with strong communication skills and technical proficiency. Proven ability to lead and manage a team of at least 10 sales professionals effectively.

Key Responsibilities:

1. Leadership & Team Management:

2. Lead and manage a team of 10 security technical professionals and 10 sales professionals, providing mentorship, guidance, and career development opportunities.

3. Oversee the creation and execution of security strategies, aligning them with the organization's business goals.
4. Foster a culture of collaboration, accountability, and continuous improvement within the security team.
5. Conduct performance evaluations and drive continuous training programs for team members.
6. Ensure effective coordination between security and other business units to address cybersecurity concerns.

7. Responsible for achieving security portfolio number of INR 50 Crores Annually across PAN India market.

8. Data Security:

9. Oversee the implementation of robust data security policies and practices to ensure data integrity, confidentiality, and availability.

10. Lead efforts in data encryption, data masking, and data classification to safeguard sensitive information.
11. Implement data loss prevention (DLP) strategies and manage backup and recovery procedures to prevent data breaches.

12. Collaborate with IT and compliance teams to ensure that data security measures meet regulatory requirements.

13. Network Security (Firewall Management):

14. Manage and optimize network firewall strategies to monitor and control incoming and outgoing network traffic.

15. Oversee the implementation of packet filtering, stateful inspection, and proxy services to protect the organization's internal network.
16. Evaluate and integrate next-generation firewalls (NGFW) to ensure advanced protection against evolving cyber threats.

17. Lead efforts in application layer filtering and intrusion prevention systems (IPS) to maintain a secure network perimeter.

18. Endpoint Security Management:

19. Oversee the deployment and management of endpoint security solutions across the customers, ensuring comprehensive protection of end-user devices.

20. Guide the implementation of Antivirus software, Endpoint Detection and Response (EDR), and Mobile Device Management (MDM) tools to secure mobile devices and endpoints.
21. Ensure consistent patch management practices to eliminate vulnerabilities and ensure endpoint security compliance.

22. Implement strong data encryption measures for endpoints, safeguarding data in case of device theft or loss.

23. Email Security Management:

24. Lead the development and deployment of email security solutions to protect against phishing, spam, and malware.

25. Ensure comprehensive spam filtering, phishing detection, and attachment scanning protocols are in place.
26. Drive encryption policies to ensure that all email communications remain secure and confidential.

27. Oversee the implementation of DMARC (Domain-based Message Authentication, Reporting, and Conformance) to prevent email spoofing.

28. Vulnerability Assessment and Penetration Testing (VAPT):

29. Direct vulnerability assessments and penetration testing to identify weaknesses in systems, networks, and applications.

30. Develop and maintain a structured approach to assess risks, exploit vulnerabilities, and mitigate threats.
31. Work with internal and external teams to perform exploitation testing and determine potential damage scenarios.

32. Ensure timely documentation of findings and mitigation recommendations to secure the organization's infrastructure.

33. Identity and Access Management (IAM):

34. Oversee the implementation of identity management solutions, ensuring that the right individuals have access to the right resources.

35. Manage authentication and authorization protocols, integrating multi-factor authentication (MFA) and role-based access controls (RBAC).
36. Guide the adoption of Single Sign-On (SSO) solutions to improve user experience and streamline access management.

37. Oversee audit and monitoring processes to track user activity, ensuring compliance and detect suspicious behaviors.

38. Web Application Firewall (WAF) Management:

39. Lead the implementation and management of Web Application Firewalls (WAF) to protect web applications from cyberattacks such as SQL injection and cross-site scripting (XSS).

40. Ensure proper traffic filtering, bot protection, and session management to prevent unauthorized access and attacks.

41. Implement rate limiting strategies to mitigate denial-of-service (DoS) attacks and secure web application performance.

42. Strategic Security Initiatives:

43. Develop and execute a comprehensive security roadmap that aligns with the organization's business objectives and regulatory requirements.

44. Regularly assess and update security policies, procedures, and technologies to stay ahead of emerging threats.

45. Collaborate with executive leadership to ensure security investments are prioritized in line with business growth and objectives.

46. Risk and Compliance Management:

47. Ensure compliance with industry standards and regulations, such as GDPR, HIPAA, PCI DSS, and others.

48. Maintain a proactive approach to risk management, ensuring all potential vulnerabilities are identified and addressed promptly.
49. Coordinate with audit teams to conduct internal and external security audits.

Qualifications:

• Bachelor's degree in computer science, Information Security, or related field. A master's degree or relevant certifications (CISSP, CISM, CISA) is a plus.
• Minimum 12 to 18 years of experience, including a minimum of 6 years in security sales and 5 years in sales leadership.
• Strong expertise in data security, network security, endpoint protection, email security, vulnerability assessment, IAM, and WAF management.
• Proven experience managing a security team of 10+ professionals and coordinating with cross-functional teams.
• Excellent knowledge of cybersecurity frameworks, regulations, and industry best practices.
• Strong communication, problem-solving, and decision-making skills.

Desired Skills:

• The ability to lead and drive changes in a fast-paced and evolving cybersecurity landscape.
• Excellent strategic thinking and the ability to align security initiatives with business objectives.
• Strong interpersonal skills and the ability to influence and collaborate with various stakeholders.
• Experience in security operations, incident response, and crisis management.
• Proficient in vendor management, with expertise in effective coordination and strategic collaboration.

Reporting Structure:

Reports to:
Managing Director

Direct Reports:
10 + security professionals, 10+ sales professionals

To apply, please send your CV to

or contact us at

.