IT Security Operations Specialist

Key Responsibilities:

• Monitor and respond to security events from various systems, including DLP, SIEM, Microsoft Entra, Intune, and other security platforms, in line with RBI's cybersecurity framework, internal policies and SOPs.
• Ensure compliance with RBIs cybersecurity and information security guidelines for NBFCs, including the implementation of security measures and controls as per RBIs mandates.
• Analyze audit events, logs, and reports to detect potential security risks and ensure compliance with applicable RBI regulations.
• Collaborate with other departments to strengthen security protocols and procedures in accordance with RBI's expectations for NBFCs.
• Ensure timely and appropriate responses to security incidents, following established SOPs, while adhering to regulatory requirements.
• Participate in the preparation of compliance reports and audits to meet RBIs regulatory standards.
• Stay updated on emerging security threats, trends, and RBIs evolving cybersecurity guidelines for NBFCs.
• Actively contribute to the continuous improvement of security measures, ensuring they align with both internal policies and RBI guidelines.
• Prepare and present security incident reports to senior management, focusing on compliance with RBI standards.
• Provide recommendations for security enhancements and implement them effectively, ensuring they meet RBIs risk management expectations.
• Maintain a high level of security awareness across the organization, with a particular focus on compliance with RBI’s cybersecurity mandates.
• Develop and manage security drills and simulations to assess incident response effectiveness, ensuring alignment with RBI requirements.

Qualifications:

• Proven experience in a security operations role, with a strong understanding of DLP, SIEM, Microsoft Entra, Intune, and other security systems.
• Knowledge and experience with the Reserve Bank of India’s (RBI) cybersecurity guidelines for NBFCs, including the Risk-Based Cybersecurity Framework and other relevant RBI regulations.
• Strong analytical and decision-making skills, with the ability to address security incidents while ensuring compliance with regulatory requirements.
• Solid understanding of cybersecurity best practices, risk management, and compliance standards specific to the NBFC sector.
• Excellent communication skills and the ability to collaborate effectively with cross-functional teams.
• Ability to work under pressure and prioritize tasks while maintaining regulatory compliance.
• Familiarity with industry standards such as ISO/IEC 27001, and the ability to apply them in the context of RBI requirements for NBFCs.
• Experience with incident response, troubleshooting, and compliance-focused security reporting.
• A mindset geared towards continuous learning, especially regarding regulatory compliance, and career growth in cybersecurity within the NBFC space.