Security Operations specialist

Responsibilities:

The security operations specialist is expected to have a strong technical and hands on for all of the service / tools below, also fully comprehend the process with the toolsets used by the team members and able to understand and deal with issues and escalations.

The security and risk specialist’s primary responsibility is to work on security products in operational area and demonstrate technical expertise on security technologies used within the bank. Work with Cyber Security and liaise with relevant parties to ensure all End User assets have the appropriate level of protection against the security threats & vulnerabilities. Respond to security threats and drive to ensure all the security threats and vulnerabilities all fully addressed and overall bank’s security posture is maintained according to industry standards.

The security and risk specialist is accountable for:

§ Anti-Virus operations for Windows Desktop and Server environment

§ Develop and maintain processes and procedures for managing security and compliance for end user assets and applications

§ Implementation of host-based Anti-Virus

§ Monitoring and reporting of key compliance Indicators

§ Manage security incidents, work with global teams to manage/support cyber security incidents

§ Understand and adhere to all elements of security standards and security policy within Bank for Windows Desktop and Server Environment

§ Remediate all Windows servers and desktop that do not have appropriate level of compliance by co-ordinating with different teams across the globe

§ Identify the potential opportunities for service improvements in vulnerability prevention within the Windows desktop and server environments and drive the service providers to implement the improvements as appropriate

§ Work closely with relevant teams to ensure the highest possible level of service is provided within security compliance, incident response & remediation 

§ The candidate will have to work in shifts as part of ROTA covering the APAC, EMEA hours between 06.30 AM to 10.30 PM IST (2 shifts mostly)

§ Weekend coverage needs to be provided on ROTA basis

Experience:

§ 6-10 years of working experience in Information Security in financial institution handling Security incidents, compliance, providing support and dealing with business users on support or requirement gathering

§ Getting things done in large organizations, understanding of where to use the processes and how to build and operate the network

§ Work across the countries, regions and time zones including the ability to communicate technical information to non-technical audience and with executive levels

§ Experience of working with global and virtual teams with intercultural awareness 

§ Broad ITIL / best practice service context within a real time distributed environment (ITIL v3 foundation desired)

§ Ability to manage ambiguity, risk and changing direction of projects and strategies 

§ Experience with SQL, Wintel, Perl / Shell scripting

Core Technical expertise: 

§ Must have at least 5 years of hands on experience on Symantec products like Symantec Endpoint Protection, Symantec DLP as well as other security products such as Microsoft Defender, Microsoft Bitlocker Encryption Avecto Defend Point, Splunk and CyberArk etc.

§ Experience in IT in a large corporate environments, specifically in the area of controlled production environment or in Financial services Technology in a client facing function

§ Investment banking experience in IT sector is preferable 

§ Experience of Key operating procedures execution

§ Experience of supporting complex application and infrastructure domains

§ Working knowledge of incident tracking tools like Service Now etc.

Educational Qualifications:

§ Bachelor’s degree from accredited college with a concentration in Computer Science or IT related discipline (or equivalent work experience or diploma)

§ CISSP, CISM, CRISC, Security+ or other related certifications are preferred