Sr. Manager - Cyber Security (TAAS)

About VOIS: VOIS (Vodafone Intelligent Solutions) is a strategic arm of Vodafone Group Plc, creating value and enhancing quality and efficiency across 28 countries, and operating from 7 locations: Albania, Egypt, Hungary, India, Romania, Spain and the UK. Over 29,000 highly skilled individuals are dedicated to being Vodafone Group’s partner of choice for talent, technology, and transformation. We deliver the best services across IT, Business Intelligence Services, Customer Operations, Business Operations, HR, Finance, Supply Chain, HR Operations, and many more. Established in 2006, _VOIS has evolved into a global, multi-functional organisation, a Centre of Excellence for Intelligent Solutions focused on adding value and delivering business outcomes for Vodafone. VOIS Centre Intro About _VOIS India: In 2009, _VOIS started operating in India and now has established global delivery centres in Pune, Bangalore and Ahmedabad. With more than 14,500 employees, _VOIS India supports global markets and group functions of Vodafone, and delivers best-in-class customer experience through multi-functional services in the areas of Information Technology, Networks, Business Intelligence and Analytics, Digital Business Solutions (Robotics & AI), Commercial Operations (Consumer & Business), Intelligent Operations, Finance Operations, Supply Chain Operations and HR Operations and more. Job Location: Pune/Bangalore (Hybrid) Role: Sr. Manager – Cyber Security (TAAS) We are seeking a highly skilled and experienced Cloud Security Specialist to join our dynamic team. The ideal candidate will have a strong background in software development, programming, or ethical hacking, along with a deep understanding of technology tools and platforms. Role Purpose: A Secure by Design Manager in the Global Cyber Strategy & Secure by Design team - acts as the interface between the technical disciplines and the business to carry out technically orientated security assessments, setting security requirements for new products and services, and also assessing compliance and risk . - The Secure by Design Consultant also has an important advisory role across the business and is required to provide security design and architecture guidance as well as general security consultancy, acts as cyber coach to agile projects and programme teams to ensure that future infrastructures and products for Vodafone globally are secure. - Is subject matter expert for Cyber Security and works closely with solution architects, designers and developers - Covers the Cyber related aspects of the Security and Privacy by Design and Assurance process for new products & service development - Scopes and coordinates security penetration testing prior to product launch We are looking for Senior Manager, Secure by design – Technology As A Service (TAAS) specialist to be part of VOIS Cybersecurity Global service line. Accountabilities, Competencies, and KPIs Accountability:-•Serves as a member of the secure by design leadership team providing, expertise and input for decisions relating to security and risk management. •Manage secure by design to ensure adequate staffing, seamless delivery of security and risk assessment on the request received (CCP, Tufine, Demand , Projects etc.)•Display exemplary conduct and live by the _VOIS values and code of conduct. •To ensure all SOPs and documentations are properly followed. •Reviewing the solutions at design phase and provide proper guidelines so that security measures are incorporated at design phase. •Escalate issues, concerns, and risk proactively with key stakeholders •Ability to analyse complex problems, think creatively, communicate recommendations, influence change, and be able to drive process and structure to an extremely dynamic environment. •Proven Organisational skills, highly detail-oriented, with an ability to speak with conviction across all levels of the organization. Responsibility:-•Understands business and technical requirements of a given project and provides security requirements •Analyses design and provides articulate solutions to ensure compliance of design with Vodafone security policy, controls and best practice ensuring that the business requirements continue to be met whilst reducing and documenting risk •Security consultants must have in-depth knowledge of telecoms networks and IP networks and/or IT infrastructures and applications as well as security technologies, standards, regulations and methodologies for both. •In-depth understanding of firewalls, routing, zoning concepts (segregation of networks) and WAF as well. •Comprehensive knowledge of security across the Software Development Life Cycle (SDLC), including DevSecOps methodologies, CI/CD architecture, secure design strategies, and security scanning tools and technologies. •Manage stakeholder expectations, including communication across Vodafone global entities Competencies •Excellent communication skills •Excellent stakeholder mgmt skills. •Technology Risk Management. KPIs •Operational demand vs capacity at optimal level (scheduled and resourced) in order meet business demands, projects and risk reduction activities. •Effective and consistent engagement, communications, and reporting for the Cyber Security Leadership Team. •Positive relationships with stakeholders. Qualifications: Core competencies, knowledge and experience: •Knowledge and experience in information security and risk assessment, and general information/cyber security background •Previous working experience with various type of information security standard/framework like (but not limited to) ISO27001, ISO22301, ISO 31001, NIST 800-53, OWASP, etc •Excellent influencing and interpersonal skills with negotiation skills to work collaboratively across the organisation •Ability to work with data and create reports / presentations to reflect accurately performance and trends •Ability to structure, simplify problems and use innovative approaches to resolve them efficiently and effectively Candidates must have the following to qualify for this position: •10 - 15 years of IT experience with extensive experience in Security Architect and Perimeter Security but not limited to Firewall, VPN, Proxy, Network Engineering/ Management •Experienced in software development, programming, or ethical hacking and knowledge of technology tools and platforms. •Good understanding of Cloud Security which includes cloud security fundamentals and cloud security frameworks, threats and risks. Container security. •Understanding of API security including but not limited to API Gateways Security and API Vulnerability Scanning. •Good understanding of Information Security Risk Assessments and security domains which covers Network and Infrastructure Security and Application Security. •Knowledge on Database types and its security. Candidates will have an edge over qualifying against other candidates if they have following: •Minimum 1 relevant Cybersecurity certifications like CCSP, CISSP/ CISA / CISM/ or ISO 27001/ISO3100, etc. •Knowledge of Information Security Assurance (NIST SP 800-37, COBIT 5)•Knowledge of Data Privacy / Information Protection/ GDPR •Worked for a Telco either as directly employed or as industry experience VOIS Equal Opportunity Employer Commitment India: _VOIS is proud to be an Equal Employment Opportunity Employer. We celebrate differences and we welcome and value diverse people and insights. We believe that being authentically human and inclusive powers our employees’ growth and enables them to create a positive impact on themselves and society. We do not discriminate based on age, colour, gender (including pregnancy, childbirth, or related medical conditions), gender identity, gender expression, national origin, race, religion, sexual orientation, status as an individual with a disability, or other applicable legally protected characteristics. As a result of living and breathing our commitment, our employees have helped us get certified as a Great Place to Work in India for four years running. We have been also highlighted among the Top 5 Best Workplaces for Diversity, Equity, and Inclusion, Top 10 Best Workplaces for Women, Top 25 Best Workplaces in IT & IT-BPM and 14th Overall Best Workplaces in India by the Great Place to Work Institute in 2023. These achievements position us among a select group of trustworthy and high-performing companies which put their employees at the heart of everything they do. By joining us, you are part of our commitment. We look forward to welcoming you into our family which represents a variety of cultures, backgrounds, perspectives, and skills! Apply now, and we’ll be in touch!