Job Opportunity for Senior Manager/Manager – Cyber Security at GSTN in Delhi

Website Goods and Services Tax Network

Roles and Responsibilities

SM / Manager – Cyber Security

Reporting to AVP – Cyber Security

Function GRC

Experience 7 – 9 Years

Work Location Delhi

Role Description

The Manager, Cyber Security (Network and Security) will design, operate and maintain the Network Security and infrastructure Security of the GST System, internal Systems of GSTN and other projects undertaken by GSTN. The functional responsibility will include security operations reviews, threat monitoring (internal & external), network security definition, and deployment, configure, operate and troubleshoot production issues of large network security related Data Centre infrastructure for GST System including LAN, WAN of internal GSTN. He will also be responsible for ensuring adherence to organisation’s policies and practises, standards, procedures. The position will report to the AVP (Cyber Security).

Key Responsibilities & Skills

  • Should have minimum 4 years working experience as hands-on cyber/network security engineer and device configuration and installation experience.
  • Should have CCNP Security certification or equivalent. CCIE Security certified holders will get added advantage (but not mandatory).
  • Should be clear of Cyber Security fundamentals and OSI network model, network & security principles and be capable of designing, implementing and troubleshooting secure network solutions.
  • Should be able to read and analyse logs, monitor and sniff/snoop networks using tools, monitoring and instrumentation techniques, perform packet analysis as well as anomaly detection.
  • Should have hands-on installation experience of design, deployment and troubleshooting of security tools/technologies e.g. – Checkpoint and Palo Aalto NGFW, DDoS mitigation, Web & Mail Security gateways, WAF, Anti-Malware solutions, GTM/LTM, DNS security, proxy / reverse proxy and rule/policy management.
  • Should be able to do the design security architecture documents for the new projects, as well as drive the System Integrator team to achieve the project implementation objectives.
  • Preferably hands on knowledge in Anti-APT / VPN gateways (SSL / Remote / IPsec), Proxy / reverse proxy and its configurations.
  • Should be able to drive SOC operations team. Performing SOC reviews, Guiding SOC to become more mature with improved investigation. Should have experience in SIEM tool.
  • Experience for Incident Validation, Incident Analysis, Solution Recommendation, and Tool admin, and Maintain Knowledge base, Escalation point for device issue resolution, Rule base Management, General SOC Administration and Knowledge of VA/PT. Manage the life cycle of information security incidents.
  • Maintains awareness of new and emerging cyber-attack threats with potential to harm company systems and networks. Devises and implements countermeasures to mitigate potential security threats.
  • Analytical skill to validate logs and reports to find out GAPs in IT Systems and Security devices.
  • Performs or assists with Information Security assessments of internal and external IT systems. Document findings in written reports with recommendations for remediation.
  • Assists with the development and documentation of an overall Security architecture to assure confidentiality, integrity and availability of company IT assets.
  • Good vendor Management skills and capability to drive the SLA’s agreed by the vendors/SI/ OEM‘s, Worked in environment following strict ITIL process, procedures and practises. Participate in capacity planning with respect to network and security requirements.
  • Perform POCs of emerging security tools and technologies.
  • Work with the teams from other verticals and support the day to day cyber security related tasks (server, storage, security, application, business, etc)
  • Review Bid / BoM of the technical bid vis–vis GSTN tender requirements, validate its completeness, compliances.
  • Should be capable of handling the 24*7 security operations and support the SOC activities.
  • Stay abreast of how technology infrastructures are currently impacting and driving business.
  • Conduct DR drill of security equipment, failover test etc.
  • Should provide solution to cater to our new requirements, prepare RFP, drive the team (System Integrator) to troubleshoot all network related problems/issues (all active components) through remotely (or) at on site & guide the team in closing the issues following best practices, process with in timeline following the security standards set from time to time.

Key Interfaces:

  • MSPs / Security partner (SI)
  • OEMs All Internal Departments i.e. Technology, Application, GRC, IT Services, Procurement, Finance, Support, etc.

Key Attributes & Skills:

  • Any Graduate / B.E./ B.Tech / BCA / MCA or equivalent degree with minimum of 4 years’ experience (Hands-on) in Cyber Security.
  • Preferably with certifications in OEM’s security devices / technologies.
  • Thorough hands-on experience on at least 2 Security technologies such as NGFW, SIEM, SOC monitoring, IPS, WAF etc.
  • Overall experience of 7+ years in this relevant role.

Should be able to:

  • Mentor technical staff (System integrator/ within GSTN/ of OEM).
  • Ability to adapt and follow the processes and guidelines
  • Possess an impeccable work ethic and a high degree of integrity
  • Good Analytical & Problem-Solving skills
  • Willingness to learn & contribute as a team member towards assigned goals
  • Communicate technical issues to technical and non-technical audience.
  • Motivating technical teams, work with various teams and manage IT partner and vendor teams to achieve the objectives.

To apply for this job please visit careers.nisg.org.