Job Title: Lead Support Analyst

Job Code: 3317

Country: IN

City: Mumbai

Skill Category: IT\Technology

Description:

Division Overview:

The Global Information Security teams are responsible for the confidentiality, integrity and availability of the firm’s information and assets. Responsible for maintaining, communicating and raising awareness of the Policy. Facilitate the effective implementation and compliance of the firm’s polices.

The Global Information Security Team is based in Europe, Asia, India and America.

Business Unit Overview:

The team’s focus is to serve as the single point of contact for all Information security related queries, concerns and technologies. Provide a high standard of user and business support in a responsive and timely manner across all businesses, take responsibility and ownership for maintaining the global strategy and controls for the delivery and operational deployment of global security initiatives in a manner consistent with the common business goals and objectives.

Technologies Covered:

Strong Excel and PowerPoint skills

Automation and scripting skills (Python/Perl) would be preferred

Skills & Experience

Experience working in either Security Operations Centre, Data Loss Prevention, Vulnerability Management, Governance Risk & Control or similar IT Security function

Information security certifications (CISSP/CISM) would be preferred

Good presentation and written skills

Ability to understand cybersecurity threats and translate them into risks for the firm and individual

Strong documentation and communication skills

Passion for all things information technology and information security

Natural curiosity and ability to learn new skills quickly.

Position Specifications:

Corporate Title	Associate
Functional Title	Lead Support Analyst
Experience	5 - 8 years
Qualification	Bachelors’ Degree
Requisition No

Role & Responsibilities:

Assist in the design and delivery of cyber security - global phishing exercises with appropriate data analysis to determine effectiveness of cyber security awareness and training measures.
Develop and deliver a cyber-culture and learning programme with assistance from the wider

global cyber security team applicable for all regions.

Develop and implement annual mandatory cyber awareness training.
Create a yearly action plan of activities including developing and deploying online and face to

face training courses through the year.

Conduct regular global phishing exercises. Develop the exercise, record hit rates and reporting

rates to be broken down by region, business and location. Run re-tests. Develop executive reporting on phishing test results and future plans and follow-up training.

Draft regular and effective cyber security awareness content (messages, presentations, reports) to drive regular awareness of ongoing cyber security measures.
Develop specific training for high-risk user groups.
Work with internal communications and other key stakeholders to ensure the program is in line

with our brand guidelines and company goals

Work in collaboration with our threat intelligence team to identify the risks to the company and

what training is needed to help mitigate them.

Work in collaboration with our Security Operations centre to understand key incident trends in

order to further develop training programme.

Maintain the cyber culture and learning program to deliver long term results, not just raising

awareness but changing behaviours to create an embedded cyber secure culture

Create regular reports for key stake holders and management to show the program metrics.
Ability to constructively challenge the status quo in defining measurements for cyber security culture campaigns
Use interactive and innovative training methods to engage staff.
Help develop the IT Security team training programme to maintain constant learning.
Manage the relationships with our cyber culture and learning vendors
Project manage cyber culture and learning initiatives
Assist the wider cyber security team with business as usual activities

Mind Set

Mandatory

Desired

Domain

Ability to form complex communications/messages in a simple, clear and concise manner to present to senior management and stakeholders across the organisation.
Advanced skills in Microsoft office (MS Excel – formulas, pivots, macros. Experience in MS Power BI or similar tool desirable) and MS PowerPoint.
Direct experience of delivering security culture change and shift away from compliance driven behaviours to an embedded approach to people cyber risk management

Strong communication skills, ability to work comfortably with different regions
Actively participate within internal project community
Good team player, ability to work on a local, regional and global basis and as part of joint cross location initiative
Self-motivated, able to work independently and with a team
Able to perform under pressure.