POST QUALIFICATION WORK EXPERIENCE (AS ON 01.08.2025)

Mandatory:

Overall experience of 12+ years with at least 8-10 years in Cyber Benchmarking undertaking Cyber analysis/ benchmarking of cyber security related processes and technologies

Preferred:

- Experience in working or managing a cyber securityrelated analysis of tech and products along with rating/grading of Cyber solutions.

- Experience in Cybersecurity roles in IT companies, BFSI institutions, government cybersecurity setups, consulting organizations, or relevant sectors where the candidate has worked in Information Security, Cyber Policy, Innovation, Cyber Defense, or associated domains.

- Experience in setting up or working in a CoE. (Centre of Excellence)

SPECIFIC SKILLS REQUIRED:

- Experience in developing and implementing cybersecurity benchmarking programs, including the selection of appropriate metrics and methodologies.

- Demonstrating the CS CoE's commitment to continuous improvement and best practices.

- Strong understanding of various cybersecurity domains, including threat intelligence, incident response, security architecture, and risk management.

- Proven experience in leading or supporting innovation initiatives, including ideation, prototyping, and product development.

- Strong technical background with experience in areas such as cloud computing, networking, and programming languages relevant to cybersecurity. Excellent leadership, communication, and interpersonal skills to effectively collaborate with diverse teams and stakeholders.

- Strong analytical and problem-solving skills to identify and address complex cybersecurity challenges.

- Ability to adapt to changing business needs and emerging threats, demonstrating flexibility and agility in the face of new challenges.

Job Profile:

- To lead the Benchmarking Hub within the Center of Excellence (CoE), responsible for driving data-driven benchmarking initiatives across functions, processes, technologies, and industry peers. The role aims to foster a culture of excellence, continuous improvement, and informed decision-making by identifying performance gaps and best practices through structured benchmarking.

- It is responsible for establishing and maintaining a robust cybersecurity benchmarking program. This role involves defining key performance indicators (KPIs), conducting regular security assessments, and comparing an organization's cybersecurity posture against industry best practices and peers.

- The hub head will also lead initiatives to improve cybersecurity maturity and resilience based on benchmarking results. Security benchmarking is the practice of using simple, quantifiable metrics to establish a baseline security performance, track changes and improvements over time, and compare performance against peers, competitors, and different business units.

KRA:

Developing and Implementing a Benchmarking Program:

- This includes defining relevant metrics, selecting appropriate benchmarking methodologies, and establishing a process.

Comparing Performance Against Benchmarks:

- Analyze assessment results against industry standards, best practices, and peer organizations to identify areas of strength and weakness.

Developing and Implementing Improvement Plans:

- Based on benchmarking findings, develop and implement strategies to improve cybersecurity maturity and resilience.

Fostering a Culture of Continuous Improvement:

- Promote a culture of continuous improvement in cybersecurity practices by leveraging benchmarking data to drive positive change.

Staying Current with Industry Trends:

- Continuously monitor the evolving cybersecurity landscape, including new threats, technologies, and best practices, to ensure the benchmarking program remains relevant and effective.

OTHER MANDATORY/PREFERRED QUALIFICATION/CERTFICATION (AS ON 01.08.2025)

Mandatory: Basic Qualifications: BE/ BTech degree in any discipline from a university / Institution / Board recognized by Govt. of India / approved by Govt. Regulatory bodies.

OR

MCA / M.E./ MTech / MSc in any discipline from a university / Institution / Board recognized by Govt. of India / approved by Govt. Regulatory bodies. Preferred: An advanced degree in Cybersecurity or Information Technology.

CISSP, CISM, CISA, CCSP, PMP, MBA (Technology Management)