Job Description

A- Define and Manage processes around insider threat management - Manage Insider Threat Monitoring program by ensuring processing security alerts generated by the various monitoring tools and technologies operated by the team in order to identify potential instances of data loss / exfiltration and other activity which may pose a potential Insider Threat risk. B- Owner of the Insider threat team which processes the security alerts in relation to potential data loss / exfiltration within prescribed timelines/ SLA C- Escalation of security alerts for review by business line management, seek response and validate vis-a-vis SBI card information security policies and allowed security practices D- Escalation of security incidents alerts to SBIC Compliance Team Co-ordination with them for presentation in the steering committees for formal review and decisioning on the Disciplinary actions E- Feedback to the DLP(Data Leak prevention) Team basis review of the Alerts, Incidents identified as per the existing DLP rules. Additionally, review the classification of alerts raised on a periodic basis to decrease false positives. F- Research and provide suggestions for new DLP rules basis discussions with various business teams G- Lead maintain staff related security incidents which could indicate a potential Insider Threat risk, and maintain detailed trackers for incidents witnessed and actions taken H- Provide inputs to the Enterprise risk management committee(ERMC)/Information Security Committee(ISC) as per the prescribed frequency regarding incidents and actions taken on incidents Program Management: A- Leading both people and process which includes managing Tasks pertaining to Data Discovery, Information Classification, process improvements and alignment with various information security programs B- Develop business cases for Insider Threat Program, and set priorities based on risk assessment C- Manage communication with business managers regarding DLP alerts/ incidents, represent Information Security in DLP incident steering committee meetings D- End to end tracking of Insider threat alerts and incidents, including disciplinary actions taken by responsible business/ Human resource/ legal function E- Interface with various business functions and project managers F- Facilitate meetings including daily stand-ups, issue resolution, and project status meetings G- Prepare, operationalize the relevant Alert/ Incident metrics, as part of the overall infosec function Stakeholder Management: A- This role requires strong skills to discuss technical non-technical aspect with articulation of Risk to demonstrate requirement and drive mitigation of identified deficicney B- Internal Stakeholders: Information technology function including its vendor, Senior leaders like CISO , DPO and other Business/functional leaders C- External Stakeholders: Vendor Team Measures of Success: A- Successful development and monitoring of insider threat programme B- Promote a Positive Work Culture. Promote commitment, trust and engagement between them and their workforce. C- Manage staff to achieve high level performance whilst ensuring their personal wellbeing. D- Setup and Increase in maturity of insider threat Programs (Adoption Capabilities) E- Delivery of project plans, milestone updates, presentations, assessment reports and communications to senior management and other relevant stakeholders. Skills Sets Required: A- Expert knowledge and in-depth understanding of Log management and processing B- Well versed with technologies like SIEM, SOC, DLP, UAM, Data Classification, IRM C- Experience in a similar type of role in a multinational business, governments and industry bodies, D- Experience in managing data incidents and breaches E- Knowledge of cybersecurity risks and information security standards F- Experience in the private banking industry useful- Understanding of regulatory data privacy compliance, IT security or audit background is must G- Experience in managing data privacy incidents, investigations and breaches H- Experience in the private banking industry useful I- Monitor marketplace trends and experiences on security, audit and control issues. J- Understand security controls from a people, process and technology perspective. K- Should be familiar with standard security processes and guidelines. L- Ability to interact and work with various senior stakeholders. Manage congruent relationships among different teams. M- Excellent written verbal communication presentation skills. N- Ability to lead, collaborate, challenge and influence peers. Passion for project based execution and process improvement. O- Excellent Documentation, Communication, presentation, interpersonal and leadership Skills P- Ability willingness to support 24*7 operations/support as required by organization

foundit