Service Delivery Manager – Vulnerability Management and Detection & Response

3 days ago
Full time role
In-person · Chennai, TN, IN... more

Overview:

The Service Delivery Manager for Vulnerability Management and Detection & Response is a critical role responsible for overseeing the identification, management, and mitigation of security vulnerabilities within an organization. Under Detection and Response you will be accountable for identifying, investigating, and combating cyber threats. Your role will focus on enhancing our detection capabilities and leading the organization's response to critical security incidents. You will work closely with various stakeholders across the company to build resilience against cyber-attacks and ensure rapid recovery from any security breaches. This role ensures the effective delivery of security services aimed at protecting the organization’s information assets from threats and attacks.

Key Responsibilities

This function is delivered through our managed service provider [MSP] and the incumbent role is not only to manager the operations through the MSP but also work on developing strategies and programs to scale up the operations providing 24*7 resilient cyber security to Ramboll.

  • The role entails tracking with the MSP on the services SLA and key reporting.
  • Governance forum with the MSP to monitor the progress of transitioned services and address any concerns as well.
  • Work closely with the Governance Risk Compliance head to understand and operationalize the strategies/directions to keep Ramboll cyber threat resilient.
  • Collaborate with contract management team for necessary contractual terms with the MSP.
  • Manage the budget and licensing compliance of the security tools; working with the respective vendors on new development and incorporating those within the Ramboll environment
  • Ensure that security and disaster recovery plans are updated and tested periodically.

Vulnerability Management

  • Risk Assessment: Conduct regular risk assessments to identify potential vulnerabilities in systems, applications, and networks.
  • Vulnerability Identification: Use advanced tools and techniques to detect vulnerabilities and prioritize them based on potential impact.
  • Patch Management: Coordinate with Technology teams, system owner and business owners to ensure timely and effective application of patches and updates.
  • Remediation: Develop and implement strategies to remediate identified vulnerabilities, reducing risk exposure.
  • Reporting: Generate detailed reports on vulnerability status and progress, presenting findings to senior management.

Detection & Response

  • Threat Detection: Develop and implement comprehensive strategies for detection and response to maintain an effective security posture. Monitor systems and networks for signs of potential security breaches using advanced detection tools. Maintain up-to-date knowledge of the threat landscape and adapt defensive strategies accordingly. Oversee the development and tuning of our Security Information and Event Management (SIEM) and other threat detection tools.
  • Incident Response: Lead the response to security incidents, ensuring rapid containment and mitigation of threats. Ensure documentation of incidents and responses is thorough for post-incident analysis and compliance requirements
  • Forensic Analysis: Conduct post-incident forensic analysis to understand the root cause and improve future detection capabilities.
  • Collaboration: Taking inputs from security operations centers (SOC) and working very closely with Technology, and other stakeholders to ensure coordinated response efforts. Coordinate with other departments to ensure that security measures are integrated into all aspects of the business.
  • Continuous Improvement: Implement lessons learned from incidents to enhance detection and response strategies.
  • Management: Articulate security risks and incident reports to upper management and relevant stakeholders effectively. Manage budgeting and resource allocation for the detection and response team.