MORAE GLOBAL CORPORATION
POSITION PROFILE
POSITION
TITILE: Information Security Operations & Cloud Security Manager
LEVEL: Manager
LOCATION: Bangalore, with hybrid working.
REPORTS TO: Director of Information Security
JOB TYPE: Full Time
POSITION OVERVIEW
We are looking for a high-preforming individual looking to advance their career in our Global Information Security Team. Information Security Product & Cloud Security Engineer contributes to Morae success by developing, implementing, and maintaining technical safeguards and controls deployed globally in Morae Products and Cloud Solutions against unauthorized access, use, disclosure, modification, damage, or loss of company systems and data. As a key technical member of Information Security team SOC Manager will contribute to improvement and development of Moraes Cyber Security Operations.
The Security Operations & Cloud Security Manager will engage with Security Operations, Information Security GRC, Information Technology and Product Development teams to develop and operate set of controls to secure Morae products, maintain and improve further our cloud cyber security posture, maintain and improve security monitoring and incident response and cyber resilience toolset. The SOC manager will play a leading role in defining global security process and technology-oriented controls to implement a standardized, and optimized security approach. The role will have responsibility for Morae's security operations on global scale.
RESPONSIBILITIES
Security Operations
- Manages both (1) Business as usual and (2) Project activities related security operational process and toolset including information, cyber and physical.
- Asset Management & Vulnerability monitoring, prioritisation, and reporting
- Security Incident Management Process implementation & monitoring
- Security Event & Incident Management technology implementation & monitoring
- XDR/MDR Implementation & monitoring
- IAM/MFA/Identity/Zero-Trust/Conditional access implementation & monitoring
- Cloud Security Monitoring and Configuration Management
- DLP/Data Classification/Information Protection
- Email Filtering and Protection
- External Threat Monitoring
- Red/Blue Team Exercises & external Penetration testing support
- Assist in designing, implementing, testing and review of application security controls across system & product development projects.
- Manages Security Project activities related to implementation of Security Operations Toolset
- Provides input to security risk analysis, mitigation, and remediation plans.
- Communicates information security incidents & response activities with IT & business.
- Provides practical insights and recommendations for improving and optimising security operations and processes.
- Conducts application security reviews and recommend improvements.
- Leads the development of security operations standards and procedures.
- Ensures appropriate and effective security operations metrics, reporting, and maturity levels.
- ISO & SOC 2 Compliance oriented technical control set operations.
- Together with the wider Information Security & Technology leadership, implements and oversees technological upgrades, improvements, and major changes to the security environment.
- Identifies and classifies security risks related to new implementations or existing infrastructure and application solutions and provision of guidance for remediation.
- Recommends solutions for managing and improving current technology architecture vulnerabilities and weaknesses.
- Conducts Research, monitoring and analysis of trends related to cybersecurity.
Management
- Establishes Security Operations processes and drives prioritisation of security operations workload across the Information Security team and with dependent stakeholders.
- Resolves security operations resource needs including budget, staff, development, and prioritisation.
- Manages the security incident response program (policy, procedure, analysis, documentation).
- Manages investigations of any actual or potential security violations and manages escalation of security events.
- Oversees management of security vendors, contracts, and related documentation
QUALIFICATIONS & TECHNOLOGIES:
- A degree or postgraduate degree in IT, software engineering, or equivalent.
- Professional level technical security management certification (Microsoft, AWS Security, CISSP, EC-Council, CompTIA, Offensive Security)
- Microsoft Azure AD, Microsoft Defender, Windows Server, Microsoft Defender Suite, Microsoft Compliance Suite, Mimecast, Sentinel One, Arctic Wolf, Tenable/Nessus, Kali Linux, AWS Security,
- Microsoft Windows, Microsoft Office, Power Automate, Adobe, Project Management tools
SKILLS/EXPERIENCE:
- 8+ years of experience technical security operations management
- Expertise in Cloud Security (Azure, AWS) and Application Security.
- Strong understanding of Security Incident Response process & techniques
- Knowledge of the MITRE ATT&CK Framework or common attack and response methodologies.
- Experience in developing incident response playbooks/processes and ensuring they're tested and formalised with different stakeholder audiences.
- Knowledge of major information security management frameworks (ISO 27001, NIST, etc).
- Thorough understanding of IT systems and security tools, including methods, procedures, equipment, and software used for delivery.
- Experience in implementing enterprise Security Operations Centre (SOC), managed security services, cloud security technologies such as SIEM, and MDR offerings.
- Security Operations Planning & KPI/KRI/Security Metrics Reporting
- Strong communication and presentation skills.
- Collaboration and conflict management skills.
