Job Description

:
: Security Operations Service Delivery & Program Manager
Experience: 13-16 Years
Reporting To: Director - Information Security Division
Location: Bengaluru / Hybrid as per business needs [Minimum 2 days/week in office]
Role Summary
The Security Operations Service Delivery/Program Manager is responsible for end-to-end ownership, delivery excellence, and continuous improvement of cybersecurity operations. The role requires deep operational expertise across Endpoint Security Operations, Vulnerability Management Operations, &
Cloud Security Operations combined with strong delivery planning, program leadership, and financial accountability.
Endpoint Security Operations

• Own end-to-end global delivery of endpoint security function/services including EDR/XDR, NGAV, device control, endpoint firewall, and endpoint hardening.
• Drive strategy, planning, & execution for endpoint security tool deployments across Sony landscape and subsidiaries & ensure the following.

• Implementation of the plan on timely basis
• Resolve challenges & issues faced in execution with support from Sr. leadership.
• Provide consolidated report to Sr. & Executive Leadership
• Ensure KPIs are met, discussed, and modified as per business need.
• Identify potential blockers & risks proactively, develop creative solutions/mitigation & secure approval on the plans from Sr. Leadership
• Ensure 24x7 monitoring, alert triage, investigation, containment, and remediation of endpoint threats.
• Lead response to malware outbreaks, ransomware incidents, insider threat scenarios, and zero-day exploits.

Vulnerability Management Operations

• Own the complete vulnerability management lifecycle across endpoints, servers, network devices, cloud workloads, & applications.
• Drive strategy, planning & execution for vulnerability management tool deployments across company landscape and subsidiaries, & ensure the following.

• Implementation of the plan on timely basis
• Resolve challenges & issues faced in execution with support from Sr. leadership.
• Provide consolidated reporting to Sr. & Executive Leadership
• Ensure KPIs are met, discussed, and changed as per business need.
• Identify potential blockers & risks proactively, develop creative solutions/mitigation & secure approval on the plans from Sr. Leadership
• Drive remediation SLAs in partnership with infrastructure, cloud, and application teams.

Provide executive-level vulnerability exposure, risk trending, and compliance reporting.
Cloud Security Operations

• Manage security operations across public and hybrid cloud environments including AWS, Azure, and GCP
• Drive strategy, planning & execution for cloud operations management across company landscape and subsidiaries, & ensure the following.

• Implementation of the plan on timely basis
• Resolve challenges & issues faced in execution with support from Sr. leadership.
• Provide consolidated reporting to Sr. & Executive Leadership
• Ensure KPIs are met, discussed, and changed as per business need.
• Identify potential blockers & risks proactively, develop creative solutions/mitigation & secure approval on the plans from Sr. Leadership
• Ensure continuous cloud compliance, detection and remediation of misconfigurations, and cloud incident response.
• Partner with Cloud Engineering and DevOps teams to implement security guardrails, automation, and security-as-code.

Mandatory Skills - Delivery Planning, Strategy, Program Leadership & Financial Acumen
Strategic & Creative Thinking

• Ability to design pragmatic security solutions that balance risk reduction, user experience, operational feasibility, and cost.
• Develop multi-year service & product roadmaps.
• Ability to build multi-year security budgets, forecasts, and investment roadmaps.
• Proven capability to develop business cases, ROI analysis, and cost-benefit assessments for security investments.
• Demonstrated ability to think strategically and creatively to solve complex, multi-dimensional security challenges.
• Ability to integrate new technologies [Ex: AI] within operations & delivery process

Delivery Planning & Global Execution Strategy

• Proven experience in planning and executing large-scale, global cybersecurity operations/delivery programs across multiple geo-locations & time zones.
• Ability to define clear delivery models, rollout strategies (pilot, phased, wave-based), milestones, dependencies, and success metrics.
• Hands-on leadership experience in enterprise-wide rollout of security tools including EDR/XDR, CSPM, CWPP, vulnerability.
• Strong coordination skills across OEMs, MSSPs, internal IT, cloud teams, and business stakeholders
• Demonstrated success in driving cost optimization through license optimization, vendor consolidation, automation, and operational efficiency improvements.

Executive Communication & Decision Support

• Strong managerial courage, ability to dialogue with Directors & above [Sr. Directors, VP & SVPs] & achieve consensus on views/plans.
• Ability to communicate complex security delivery status, risks, and financial insights clearly to executive and board-level stakeholders.
• Strong capability to translate technical delivery details into business impact, risk exposure, and decision options.
• Experience handling escalations, trade-offs, and prioritization decisions at senior leadership levels.

Qualifications & Certifications

• Bachelor's degree in engineering, Computer Science, or related discipline.
• Master's degree (MBA / MS) - Preferred.
• Strong background in Cybersecurity Operations
• CISSP, CISM, Cloud Security Certifications - CISSP or CISM Mandatory
• ISO 27001 Lead Implementer / Auditor - Optional.

Department:
Electronics & Entertainment
Skills Required:
Program Management, Cybersecurity, Service Management, Service Delivery Management, Service Delivery Manager, Operations, Security Services
Years Of Exp:
13 to 16 Years
Education/Qualification:

• Bachelor's degree in engineering, Computer Science, or related discipline. o Master's degree (MBA / MS) - Preferred. o Strong background in Cybersecurity Operations o CISSP, CISM, Cloud Security Certifications - CISSP or CISM Mandatory o ISO 27001 Lead

Designation:
Associate Director

Skills Required