Job Description

Job Title: Manager - Cyber SecurityLocation: Bengaluru, IndiaDepartment: Information Security / ITReports to: Chief Information Security Officer (CISO) / IT DirectorJob Summary: We are seeking a highly skilled and experienced Cyber Security Manager to lead our cybersecurity initiatives and ensure the security and integrity of the organization's information systems. The Cyber Security Manager will be responsible for overseeing the design, implementation, and management of comprehensive security programs, including threat detection, incident response, and vulnerability management. The ideal candidate will have a deep understanding of cybersecurity best practices, emerging threats, and compliance requirements, and will lead a team of security professionals to safeguard the organization from cyber risks.Key Responsibilities: * Security Strategy & Leadership:

• Develop and implement the organizations cybersecurity strategy in alignment with business objectives and regulatory requirements.
• Lead and manage the cybersecurity team, providing guidance, mentoring, and performance management.
• Collaborate with senior leadership and key stakeholders to define security policies, standards, and procedures.
• Monitor emerging security threats and vulnerabilities and adjust strategies accordingly to mitigate risks.
• Risk Management & Compliance:

• Identify and assess security risks to the organizations IT infrastructure, applications, and data.
• Ensure compliance with relevant security regulations, standards, and frameworks (e.g., ISO 27001, GDPR, PCI-DSS, NIST).
• Conduct risk assessments, penetration testing, and vulnerability assessments to identify and mitigate potential threats.
• Manage security audits and compliance checks, providing evidence and responses to internal and external audits.
• Incident Response & Threat Management:

• Develop and maintain incident response plans and lead the response to security incidents and breaches.
• Coordinate the investigation, containment, and remediation of cybersecurity incidents, ensuring timely and effective resolution.
• Monitor security alerts and events using SIEM tools, ensuring timely detection and response to threats.
• Collaborate with IT and business teams to strengthen defenses and reduce the likelihood of future incidents.
• Security Operations & Technology Management:

• Oversee the deployment, configuration, and management of security tools and technologies (e.g., firewalls, intrusion detection/prevention systems, EDR, DLP, etc.).
• Implement and manage identity and access management (IAM) controls, encryption standards, and endpoint protection solutions.
• Manage security patching, updates, and vulnerability remediation across all systems and devices.
• Ensure that cybersecurity measures are integrated into all stages of system development and IT operations.
• Training & Awareness:

• Develop and lead security awareness training programs for employees to foster a security-conscious culture.
• Conduct phishing simulations, social engineering tests, and other awareness campaigns to assess and improve employee security practices.
• Vendor & Third-Party Risk Management:

• Evaluate and manage security risks related to third-party vendors and partners.
• Ensure that security requirements are included in contracts and service level agreements (SLAs) with third parties.
• Conduct regular reviews and assessments of vendor security practices to ensure ongoing compliance with security standards.
• Reporting & Communication:

• Provide regular reports on the organization's security posture to senior management, highlighting key risks, incidents, and mitigation efforts.
• Develop and maintain key security metrics (KPIs) and dashboards to track performance and drive continuous improvement.
• Serve as the primary point of contact for security-related issues and liaise with external partners, including law enforcement and regulatory agencies, as needed.

• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field (Masters degree preferred).
• A minimum of 5-7 years of experience in cybersecurity roles, with at least 3 years in a leadership or management position.
• Strong knowledge of cybersecurity frameworks and standards such as ISO 27001, NIST, CIS, PCI-DSS, and GDPR.
• Proficient in the use of security technologies such as firewalls, SIEM, EDR, IDS/IPS, DLP, encryption, and IAM solutions.
• In-depth understanding of current and emerging cyber threats, vulnerabilities, and attack vectors.
• Experience in incident response, vulnerability management, and risk assessment.
• Familiarity with cloud security best practices and security management for cloud platforms (AWS, Azure, GCP).
• Relevant certifications such as CISSP, CISM, CEH, or similar.
• Excellent communication and leadership skills, with the ability to influence and collaborate with cross-functional teams.

Accolite Digital