The Care Security Technical Manager will join a collaborative team focused on Care services for our customers. This role involves close interaction with various departments, including R&D and product management. You will provide advanced technical and product support within Care service delivery, operating in a 24x7 support environment. Responsibilities include handling complex troubleshooting cases at the solution/system level and acting as the primary interface to R&D for escalating and resolving customer issues. This position offers a chance to shape security strategies and make a significant impact on our services.

You have:

• Knowledge of telecom network architectures including 4G & 5G, computer networking concepts and protocols, and network security methodologies.
• Skilled in Vulnerability Management, Secure configuration and Application Security tools, and techniques, with an analytical mind for problem-solving, abstract thought, and defensive security tactics.
• Knowledge and understanding of relevant legal and regulatory requirements e.g. NAM specific telecom security conditions, CII (Critical Information Infrastructure) regulations etc., including common information security management frameworks, such as ISO/IEC 27001, ITU.Tx.805 ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity Framework.
• Working experience with Cloud Native, Microservices, Containers and Virtualization Technologies like Docker, Kubernetes (K8s), Helm is good to have. Experienced with Linux & windows including scripting languages like shell, python.
• Ability to interact & coordinate with third party vendors for resolution of security vulnerabilities.

It would be nice if you also had:

• Professional security management certification is desirable, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Computer Hacking Forensic Investigator (CHFI), Any SIEM (Splunk, Arc Sight or Q-Radar) certification, CEH, OSCP.
• Collaborative skills for working in cross functional matrix environment.
• Minimum of 10 years of relevant experience in Telecom/IT Security in a large Enterprise/telecom Operator Environment.
• Experience in manual testing including Penetration testing is an advantage.

As part of our team, you will:

• Assess emerging security vulnerabilities following the Security Vulnerability Management (SVM) process, provide applicable workarounds and determine need for security vulnerability fixes.
• Work closely with software architect and software R&D team to analyze vulnerabilities and/or suggest remediations.
• Ability to work together with product management to provide impact analysis for the Security requirement at the Organization level.
• Working on initiatives to design, develop, and implement security solutions to meet business and compliance requirements, influencing product roadmaps to include relevant security and privacy features.
• Deep understanding of Privacy principles, GDPR and best practices on securing the deployment. Technical knowledge and analysis of information assurance, to include applications, operating systems, physical security, networks, risk assessment, critical infrastructure continuity and contingency planning, emergency preparedness, security awareness and training.
• Conduct network security audits
• An understanding & usage of security tools for endpoint, server, network, and infrastructure security tools including Burp Suite, Anchore, Codenomicon, Sonar Qube, Zenmap, Nessus, Tenable, NMAP, Invicti, Defensics, Symantec etc.
• Use manual testing techniques and methods to gain a better understanding of the environment and reduce false Positives.
• Travel: up to 15%

Note: No relocation offered for this role.