Job Description

About Us

SBI Card is a leading pure-play credit card issuer in India, offering a wide range of credit cards to cater to diverse customer needs. We are constantly innovating to meet the evolving financial needs of our customers, empowering them with digital currency for seamless payment experience and indulge in rewarding benefits. At SBI Card, the motto 'Make Life Simple' inspires every initiative, ensuring that customer convenience is at the forefront of all that we do. We are committed to building an environment where people can thrive and create a better future for everyone.


SBI Card is proud to be an equal opportunity & inclusive employer and welcome employees without any discrimination on the grounds of race, colour, gender, religion, creed, disability, sexual orientation, gender identity, marital status, caste etc. SBI Card is committed to fostering an inclusive and diverse workplace where all employees are treated equally with dignity and respect which makes it a promising place to work.


Join us to shape the future of digital payment in India and unlock your full potential.

What's in it for YOU

SBI Card truly lives by the work-life balance philosophy. We offer a robust wellness and wellbeing program to support mental and physical health of our employees Admirable work deserves to be rewarded! We have a well curated bouquet of rewards and recognition program for the employees Dynamic, Inclusive and Diverse team culture Gender Neutral Policy Inclusive Health Benefits for all - Medical Insurance, Personal Accidental, Group Term Life Insurance and Annual Health Checkup, Dental and OPD benefits Commitment to overall development of an employee through comprehensive learning & development framework

Role Purpose

Responsible for monitoring, reviewing, tracking, investigating and reporting of Information Security Incidents which are getting recorded or notified through various sources.


The role is also responsible for monitoring technology landscape and associated services for security flaws and incidents, analyzing reported/identified security incidents and ensure timely contentment and remediation of the same.

Role Accountability

Monitor and analyze the alerts generated on incident management consoles such as SIEM, DLP, Threat Intelligence etc. Investigate, log, update and resolve Security Incident within the agreed timeline and as per defined process Run Incident management bridge, follow escalation matrix as defined in the process document Conduct Root cause analysis and prepare incident report as per the agreed format Monitor InfoSec owned & managed Infrastructure for issues Identify and block various IOCs with applicable security policies / configuration changes Work closely with cross-functional teams within SBI Card and partner with key stakeholders to manage security issues/incidents within defined timelines Maintain and publish Security incident MIS reports as per agreed process at predefined frequency Perform process documentation and compliance adherence

Measures of Success

Timely Logging, Investigating, updating, resolving and reporting of Security Incidents Timely and accurate publication of MIS / business dashboards Increase in maturity incident coordination, improvement in response time by all stakeholders Creation and publication of Incident report as per the prescribed format within the agreed timeframe Process Adherence as per MOU

Technical Skills / Experience / Certifications

Knowledge of Security Operations Center (SIEM, DLP, Anti-Virus etc. alert review and tirage) Knowledge of Security Incident Management Knowledge of Windows & UNIX Operating system Basic knowledge on ITIL procedures Understanding of Security Terminology i.e. Network Security, Vulnerability, Anti-Virus, Virus/Trojans/Spam/Attack Pattern Knowledge of Information security management standards like ISO 27001, CEH, CHFI Strong overall ability to troubleshoot and analyze all hardware and software issues Industry-standard certifications such as ISO27001 LI, CCNA or other desired security certifications as preferred. One or more of the following certifications: GIAC Information Security Expert (GSE) or GIAC Certified Incident Handler (GCIH).

Competencies critical to the role

Stakeholder Management Analytical ability Process Orientation Problem Solving

Qualification

Bachelor degree / B.tech in Computer Science / IT or related discipline

Preferred Industry

BFSI / NBFC /E-commerce/IT & ITES / Telecom