Sr. Director Cybersecurity

Role: Sr. Director/Director – Cyber Security

Location: UK- London – Hybrid , remote

  Roles & Responsibilities:

· Attends and represents Clients Cybersecurity strategic objectives, service health, future plans,

· Ensure that ancillary processes such as risk assessments accurately reflect control requirements,

· Influence customer's product and platform selections through consultative advisory, in order to help customer manage the current and future GRC objectives.

· Review, engage, plan and deploy necessary security governance process' and practices so that required controls are enforced for all security policies and security awareness initiatives are driven,

· Work with other leaders in IT Infrastructure & Applications domains to operationalize the standards and control objectives across the organization,

· Execute continue improvement framework to build and enhance secure design and build practices, and policies for customer organizations,

· Ensure that security training programs & content are relevant such trainings are executed in a calendarized manner,

· Ensure all security findings are handled appropriately,

· Drive optimal and effective productivity utilization of Cybersecurity resources,

· Drive strategy for security awareness management

· identify opportunities to improve visibility and sophistication of response capability,

· Creation and execution of security strategies that will increase the efficiency of IT systems and projects at our client organization.

· Directing crisis management by investigating the cause of a breach and implementing the right solutions.

· Allocating the correct resources to ensure that staff are delivering secure solutions.

· Managing cybersecurity team within the organization.

· Overseeing vulnerability audits, penetration tests and forensic IT investigations, ensuring that any outcomes are understood and applied.

· Liaising with customer senior leaders and ensure that new systems align with the organization’s overall security policies and data protection strategies.

· Ensuring that teams security training and compliance efforts are up to date.

· Managing Cybersecurity partners, stakeholders, vendors and third party solutions providers.

· Track interesting Cybersecurity trends that are relevant to the customer organization, and suggest / drive actions to draw advantage of such trends,

· Creation of Cybersecurity Service Catalogue for the service line,

· Create and standardize SLA & KPI's that can be delivered by Client, and thereby offered to our customers as part of solution proposals,

· Define Cybersecurity Maturity model, analyze our customers on relevant metrices, and define maturity journey for our customers.

· Develop Client Cybersecurity Service Catalog improvement roadmap, and strategy that Improves our value in customer organizations, Including Inclusion and addition of skills that encompass new tech gears.

· Develop and improvise Client Cybersecurity delivery processes, procedures and standards for Cybersecurity Operational & Transformation Services.

· Benchmarking Client Cybersecurity service line construct with industry research groups,

· Develop, test and rollout automation tools and accelerators that can become our differentiators in Operations and transformation engagements,

· Own and drive successful transitions of services for new deals from Incumbent to Client team,

· Review, validate and co create solution proposals and effort sizing for new Cybersecurity deals, to ensure the solution is both competitive and can be delivered.

· Proven track record in leading Cybersecurity Build and transformation projects.

· Collaborate with other delivery teams (CDC, Network, DWP etc.) to deliver business objectives, across solutioning, build and operate stages of customer Cybersecurity lifecycle.

· Develop and establish oneself as an industry and Client thought leader,

· Collaborating with the Presales and Solution team during the implementation of Cybersecurity solutions at customer sites for right insights and handoffs to ensure client satisfaction.

· Understand end to end services of the customer and their business Including contract / SOW / Change request Intelligence, specific market competition and their unique go to market capabilities/differentiators which are key for customer success.

· Relentless persuasion of excellence across Cybersecurity services being delivered that will drive customer advocacy and take a permanent seat as a trusted advisor for any existing and new services.

· Ensure availability as and when required by the customer, represent Client, especially at times when customer would need the most for example, production outages or business planning etc.

Revenue & Margin:

· Complete knowledge of business and financial acumen in dealing with procurement, legal, account management, finance departments of both customer and Client.

· Well versed with account planning, budgeting, revenue targets, margins, profitability, and developing strategies to meet set targets.

· Managing profitability in business engagement by tracking work statements, budgeting the entire proceedings, and providing optimum management of time and resource.

· Achievement of the account margin goals for the year. Formal internal reviews for published plans vs actuals.

· Ability to understand, derive action plans from the monthly profitability reports published by finance.

· Prepare operational budget and execute within the approved guidelines.

· Work with senior executives, across geography for preparation of the operational presentations and budgets

· Service Delivery organization to be managed with the pre-approved budget.

· Control the cost of the program and set metrics and periodic reviews for the optimum delivery of the program.

· Manage total revenue and improve revenue generation.

Operations Management:

· Engage with other delivery leaders to drive sustainable growth and acceptable security practices.

· Accountable for overall cybersecurity Services as delivered to the customers, own end to end operations, metrics, process, reports, customer reviews, potential/identified risks and their mitigation plan and quality of service.

· Self motivated individual with a passion for extraordinary execution and passion for results that exceed expectations.

· Foster a culture that strives for service quality, collaborative efforts, knowledge sharing and competitive agility at all levels of the technology organization, passion and commitment to excellence. Own people’s growth and creating technical opportunities as part of career enhancement.

· Seeks to continuously develop skills and knowledge in self and others

Technology:

· Sound knowledge of emerging Cybersecurity technologies, platforms, tools and products and their respective applications.

· Awareness of global industry trends and directions along with its impact on Cybersecurity services. Build Whitespace analysis to cover end to end Cybersecurity offering Matrix.

· Identify, evaluate and select innovative approaches in similar industry or competitors to enhance the project portfolio, competitive infrastructure and delivery mechanisms to ensure service levels and technology support are always competitive and exceed customer expectations.

· Experience working in designing, implementation and managing the Cybersecurity services,

· Good amount of experience in evaluating new cybersecurity solutions and platforms,

· Hands on skills in managing key cybersecurity domains such as, Security and Risk Management, Asset Security, Security Architecture and Engineering, Communications and Network Security, Identity and Access Management, Security Assessment and Testing, Security Operations & Software Development Security.

· Technical and management expertise in key Cybersecurity services, and products that enable End point security, Mobile security MDM, Host Intrusion prevention, Data Loss prevention, single sign-on, Privilege access management, Threat hunting, malware reverse engineering, exchange security, SAST/DAST, MDR, etc.

· Design and deployment of solutions such as - Azure Sentinel, Splunk SIEM, CyberArc PAM, Sailpoint IAM, exchange security, AV/AM, Spam filters,

· Technical expertise on Mcafee, Duo / Ping, Crowdstrike, Deepwatch, Darktrace.

· Exposure to infrastructure security solutions like nextgen firewall, IPS, WAF, proxy,

· Azure and AWS native information security solution knowledge would be added advantages.

· Use-case execution & Demo Presentation of Cybersecurity Solutions

· Must be able to work independently to run the POC's / New Technology evaluation

· Interact with multiple OEMs/OESPs to achieve integrated solutions

Desired Candidate:

· Near 15 years Cybersecurity Service Delivery Management experience in global MSSP organization. 

· Ability to handle senior management level people in the Accounts and Engagement management

· Understanding of industry best practices for Cybersecurity Service Line Management.

· Ability to communicate clearly and concisely. Good facilitator and instructor, capable of producing quality documentation, good customer relationship skills.

· Ability to synthesize complex technical details into coherent technical solution.

· Ability to lead business managers and project teams to consensus.

· Confidence to speak-up and challenge ideas and propose alternatives. Desire to constantly seek and offer constructive feedback.

· Desirable certification - CISSP, CompTIA Security+, CASP+, CISM Certifications

Qualification :

· Bachelor’s degree (BE/BTECH) in Computer Science or equivalent experience. 

· Masters are desirable.