Assistant Manager

Job Title:

Location:

Department:

Designation:

Job Requisition ID:

Summary:

As an Assistant Manager in Incident Response & Handling within the Cyber Defense & Resilience team, you will play a critical role in responding to and mitigating cybersecurity incidents. You will be responsible for identifying, analyzing, and managing security incidents, including security breaches and other cyber threats, while ensuring effective communication with stakeholders. The role requires an in-depth understanding of cyber threats, incident management processes, and the ability to collaborate with cross-functional teams to implement corrective actions and prevent recurrence.

Roles & Responsibilities:

• Incident Detection & Response:

• Manage and oversee the detection, analysis, and response to cybersecurity incidents and breaches.
• Coordinate and lead the efforts to contain and mitigate the impact of security incidents.
• Lead the investigation of security events to understand the scope and root cause of incidents.

• Incident Handling & Remediation:

• Handle incidents from identification through resolution, ensuring quick containment and recovery.
• Conduct detailed forensic analysis and provide actionable insights for remediation.
• Collaborate with technical teams to ensure the implementation of fixes and patches to prevent future incidents.

• Reporting & Documentation:

• Document all aspects of incidents, including the initial detection, investigation, impact assessment, and final resolution.
• Create and maintain incident reports and dashboards for tracking and reporting purposes.
• Ensure proper communication with relevant internal and external stakeholders during and after incidents.

• Security Tools & Monitoring:

• Monitor and evaluate security tools and systems (e.g., SIEM, IDS/IPS) to ensure effective detection of potential threats.
• Continuously evaluate and optimize incident detection capabilities.

• Collaboration & Coordination:

• Collaborate with IT, legal, compliance, and other business units to ensure appropriate incident handling, reporting, and documentation.
• Provide guidance and support to junior staff in the incident response team.

• Continuous Improvement:

• Assist in improving incident response plans, playbooks, and protocols to enhance readiness for future incidents.
• Perform post-incident reviews (PIRs) to identify lessons learned and implement process improvements.

• Threat Intelligence:

• Stay updated with the latest cybersecurity threats and trends, sharing insights with the team and contributing to overall threat intelligence efforts.

Professional & Technical Skills:

• Must-Have Skills:

• Proven experience in incident response and handling in a cybersecurity environment.
• Strong understanding of cyber threats, attack vectors, and methodologies (e.g., phishing, malware, DDoS).
• Familiarity with security tools and technologies (e.g., SIEM, IDS/IPS, firewalls).
• Hands-on experience in digital forensics and data breach analysis.
• Knowledge of security frameworks, standards, and compliance requirements (e.g., NIST, ISO 27001, GDPR).

• Good-to-Have Skills:

• Experience with cloud security and hybrid IT environments.
• Familiarity with endpoint detection and response (EDR) systems and incident management tools.
• Certifications such as CISSP, CISM, CISA, or GIAC incident handling certifications.

Additional Information:

• Education:

  Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field.

• Experience:

  Minimum of 4-6 years of experience in incident response, cybersecurity, or related fields.

• Location:

  This position is based in Bengaluru.