Departmental Information

Department Name Cyber Security Operations Center (CSFC)

Function / Role SSM – CSFC
Shift Patterns General/Flexible
Local & International travel will be required to meet
Travel Patterns
Teams as well as Customers.
Location Noida, India

Business Charter
The Cyber Security Fusion Center (CSFC) is responsible to provide Security Device
Management, Information Security Advisory, Information Security Monitoring and
advanced Information Security Services. The responsibility of CSFC also includes but
is not restricted to ensure that the customer’s network & Data are able to address the
requirement of maintaining a robust Information Security environment for the
customer.

The CSFC offers these services in a Shared Services Model and provides for the
responsibilities by leveraging a Shared Pool of expert resources in the different areas /
technologies of Information Security Solutions and corresponding security Tools
infrastructure such as SIEM.

This exciting role is to work as CSFC Operations/Delivery Manager for multiple

customers, ensure the delivery of the services as per the agreed SLAs, provide the
necessary guidance for the team during critical situations as well as improve the
delivery efficiency of the team.

Attention to detail, ability to drive highly diverse teams is critical.

Responsibilities
Manage the day-to-day working of the CSFC Operations for the different customers.
Organizational Functions:
1. Delivery of the operations of CSFC are as per the agreed SLAs and
expectations from the customer.
2. Identify the in-efficiencies in the Operations and identify potential solutions
to improve efficiency.
3. Own and drive improvements in the areas of Operations, technology,
Advisory and customer satisfaction.

Core Functions:
1. Regular reporting on the state of the customer delivery.
2. Maintain KPIs for the teams and report on Service Improvement Areas to
senior management
 3. Identify risks and maintain compliance with submission of client facing
reports

- Timeliness in Phone and Email responses.

- Quality and effectiveness in communications and
engagement with stakeholders.
Individual Performance - Personal Priority and time management.
Measurement Criteria - Low / Zero Escalation from the customers
- Maintain low Attrition
- Driving Innovation to improve on Service
standards & Quality.

P5 – Proficiency Level

Understanding of the different security

technologies,
Experience in deploying, configuring and
troubleshooting of
1. Firewalls (Checkpoint, Cisco etc.),
2. IDS / IPS, (Network and Host),
3. Anti-Virus,
Technical Skills
4. URL Filtering,
5. Multi-factor Authentication,
6. Privilege Access Management
Proficiency Legend:
7. The integration of the above technologies
with different systems.
P1 – Theoretical Knowledge
Experience in different Information Security
Processes.
P2 – Basic Understanding
1. Security Change Management
2. Rule Base Reviews & Optimization
P3 – Hands-On Experience
3. Security Incident Management (Standard &
Critical)
P4 – Advanced
Understanding of different Security Architectures.
P5 – Subject Matter Expert
P4 – Proficiency Level

Understanding of the different connection

protocols.
Experience in different reporting requirements
prevalent in the information security monitoring
and management space.
Experience in different compliance standards.
- ISO 27001, SOX, SSAE16, etc.
 - Process, Criticality
- Evidences

P3 – Proficiency Level

Understanding of the different monitoring systems

for server, Network.

P2 – Proficiency Level

Understanding of the major business applications.

Understanding of common Infrastructure
applications such as DNS, Proxy, DHCP, Messaging,
Mailing, Storage, Network, Backup.

Good command of the English language, with

excellent written and verbal skills.
Proactive in communication and appropriate
selection of audience according to topic.
Communication and
Highly organized and capable of tracking a variety
Organizational skills
of tasks to closure.
Good time management principles and effective in
prioritizing workloads.

Works collaboratively with other teams and builds

positive working relationships
Able to learn quickly and apply common sense to
new situations, but understand when it is
appropriate to engage others for advice
Open and transparent style and approach when
working with others
Places a significant level of importance on personal
& team development and understanding then
Cultural Requirements improving upon weakness
Accepting of feedback from managers, peers, and
clients in regards to work performance
Utilizes a goal-oriented approach, which drives self-
improvement both personally, professionally and
drives the teams.
Takes the initiative to work on tasks outside of his
or her immediate scope of responsibility, and
encourages others to do so.
 Minimum overall experience of 15 years
- Minimum of 10 years’ experience in
Information Security
- Minimum of 4 years’ experience in running
a Security Operations Center for a large
Experience Required
organization. Preferable experience in
running Security Operations Center
providing services to Multiple customers.
Minimum experience in managing a team of 100+
team-members.
Required (atleast one )CISSP, CISA, CISM,
Certifications Required
Required (atleast two) OEM certifications.
Preferably Graduate with Science/Engg
Education Qualifications
Preferable with an MBA.