Overview Of The Company
Our client is an industry leading financial services company.
Job Purpose: The Vice President Security operations will lead, manage, and optimise the security operations, ensuring real-time monitoring, detection, analysis, and response to cybersecurity threats.
Key Responsibilities
- Define and execute SOC strategy aligned with business objectives, cybersecurity vision, and compliance requirements.
- Develop and maintain SOC policies, processes, and playbooks based on industry best practices (e.g., NIST, ISO 27001, MITRE ATT&CK).
- Implement a SOC Maturity Roadmap to enhance detection, response, and recovery capabilities.
- Oversee 24x7 SOC operations, ensuring timely detection and incident response.
- Monitor trading platforms, APIs, and connectivity gateways for anomalies and vulnerabilities. Track zero-day vulnerabilities, emerging threats, and APTs targeting financial markets.
- Lead incident triage, investigation, containment, and recovery. Conduct root cause analysis and post-incident reviews to prevent recurrence.
- Coordinate major incident response with regulators (SEBI, CERT-In, RBI) and law enforcement.
- Build and integrate Cyber Threat Intelligence (CTI) programs relevant to financial services. Implement proactive threat-hunting programs to detect and mitigate risks early.
- Collaborate with security architecture and engineering teams to improve detection and prevention.
- Manage and optimize SOC tools, platforms, and analytics. Drive automation (SOAR, ML-based anomaly detection, scripting) to improve efficiency and reduce MTTR.
- Prepare and submit mandatory incident reports within required timelines. Maintain audit-ready documentation and support external/internal audits and risk assessments.
- Strong Understanding of enterprise GRC frameworks and their integration with SOC. Collaborate with risk and compliance teams. Mapping SOC processes to enterprise risk registers, control assessments and resilience initiatives.
Candidate Profile
- Capability to build and drive SOC and security roadmap aligned with business goals.
- Strong understanding of SEBI Frameworks, knowledge of SIEM, cloud security & modern security architecture.
- Ability to handle cyber incidents and communicate effectively with leadership and regulators.
