Assistant Manager - Senior Incident Analyst

Job Description

About Us At SBI Card, the motto Make Life Simple inspires every initiative, ensuring that customer convenience is at the forefront of all that we do. We are committed to building an environment where people can thrive and create a better future for everyone. What s in it for YOU SBI Card truly lives by the work-life balance philosophy. We offer a robust wellness and wellbeing program to support mental and physical health of our employees Admirable work deserves to be rewarded! We have a well curated bouquet of rewards and recognition program for the employees Dynamic, Inclusive and Diverse team culture Gender Neutral Policy Inclusive Health Benefits for all - Medical Insurance, Personal Accidental, Group Term Life Insurance and Annual Health Checkup, Dental and OPD benefits Commitment to overall development of an employee through comprehensive learning development framework Role Purpose Responsible for monitoring, reviewing, tracking, investigating and reporting of Information Security Incidents which are getting recorded or notified through various sources. The role is also responsible for monitoring technology landscape and associated services for security flaws and incidents, analyzing reported/identified security incidents and ensure timely contentment and remediation of the same. Role Accountability Monitor and analyze the alerts generated on incident management consoles such as SIEM, DLP, Threat Intelligence etc. Investigate, log, update and resolve Security Incident within the agreed timeline and as per defined process Run Incident management bridge, follow escalation matrix as defined in the process document Conduct Root cause analysis and prepare incident report as per the agreed format Monitor InfoSec owned managed Infrastructure for issues Identify and block various IOCs with applicable security policies / configuration changes Work closely with cross-functional teams within SBI Card and partner with key stakeholders to manage security issues/incidents within defined timelines Maintain and publish Security incident MIS reports as per agreed process at predefined frequency Perform process documentation and compliance adherence Measures of Success Timely Logging, Investigating, updating, resolving and reporting of Security Incidents Timely and accurate publication of MIS / business dashboards Increase in maturity incident coordination, improvement in response time by all stakeholders Creation and publication of Incident report as per the prescribed format within the agreed timeframe Process Adherence as per MOU Technical Skills / Experience / Certifications Knowledge of Security Operations Center (SIEM, DLP, Anti-Virus etc. alert review and tirage) Knowledge of Security Incident Management Knowledge of Windows UNIX Operating system Basic knowledge on ITIL procedures Understanding of Security Terminology i. e. Network Security, Vulnerability, Anti-Virus, Virus/Trojans/Spam/Attack Pattern Knowledge of Information security management standards like ISO 27001, CEH, CHFI Strong overall ability to troubleshoot and analyze all hardware and software issues Industry-standard certifications such as ISO27001 LI, CCNA or other desired security certifications as preferred. One or more of the following certifications: GIAC Information Security Expert (GSE) or GIAC Certified Incident Handler (GCIH). Competencies critical to the role Stakeholder Management Analytical ability Process Orientation Problem Solving Qualification Bachelor degree / B. tech in Computer Science / IT or related discipline Preferred Industry BFSI / NBFC /E-commerce/IT ITES / Telecom