Vulnerability Management Technical Project Lead

Location (Primary) - Noida

GCF Level - 3A

Role Description:- The Tech Lead/ServiceLine Lead will be responsible for the operational, organisational, and strategic management of activities related to Vulnerability Management (VM), CTI incidentology, and COD controls. Will act as the primary interface between the Client (CYB, TGITS, Divisions), operational teams, and governance bodies, ensuring service quality, performance, and continuous improvement.

In addition of this governance role, he/she is also responsible for delivering & managing the team. Here is the high-level scope of the responsibilities:

1. Monitoring of critical P0 / P1 vulnerabilities
2. Steering CTI incidentology
3. Execution and governance of COD controls
4. Organisation of committees and reporting
5. Operational management and team skill development
6. Contribution to process, tool, and KPI optimisation

Job Description:

1. Management of Critical P0 / P1 Vulnerabilities - Promptly responding to P0/P1 vulnerabilities, including identification, assessment, patching, documentation, and development of remediation plans when patching is not possible.
2. Governance Specific to P0 Vulnerabilities - Coordinate and oversee P0 vulnerability follow-up meetings, communicate updates and remediation progress, escalate unresolved issues, and ensure compliance with established deadlines.
3. Organisation and Facilitation of Committees - To attend, present & track regular meetings and committee sessions with vulnerability status, track remediation efforts, report key performance indicators, and coordinate with divisions on security tools and control enhancements.
4. Management of COD Controls - oversees the execution, analysis, and remediation of six COD controls, ensuring effective risk reduction and planning for additional controls to further mitigate cyber threats.
5. Team Management and Organisation - Responsible for organising and coordinating the controls and remediation team by planning activities, distributing workloads, managing priorities, ensuring service continuity, and overseeing training, skills development, and leave management.
6. Continuous Improvement and Value Creation - Actively contribute to automation initiatives, enhance data reliability, optimize monitoring tools and processes, drive operational efficiency, and support the evolution of services to meet client expectations.
7. Key Tools and Environments - Proficiency in ServiceNow SECOPS (certification preferred), vulnerability detection and monitoring tools (Microsoft Defender for Endpoint EDR/XDR, WIZ, NESSUS PRO, Dynatrace), CMDB, VISIT, reporting tools (PowerBI, PowerPoint), and adherence to security standards and Client SLAs is required.

Strongly Preferred Certifications

1. ServiceNow SECOPS certification
2. CISSP / CISM / ISO 27001 certifications
3. GIAC (GREM / GCED / GCTI) certifications
4. Cloud and Microsoft security certifications

Mandatory Soft Skills:

1. Proven leadership experience
2. Strong people management and client‑facing governance skills
3. Executive communication (FR/EN written & verbal reporting
4. Crisis management & escalation handling for P0/P1 situations
5. Data‑driven decision making using KPIs, dashboards, and trends
6. Continuous improvement & automation mindset

Total Experience Expected: 08-10 years