We are M&G Global Services Private Limited (formerly known as 10FA India Private Limited, and prior to that Prudential Global Services Private Limited). We are a fully owned subsidiary of the M&G group of companies, operating as a Global Capability Centre providing a range of value adding services to the Group since 2003.

Our purpose is to give everyone real confidence to put their money to work. With a heritage dating back more than 175 years, we have a long history of innovation in savings and investments, combining asset management and insurance expertise to offer a wide range of solutions.

Our two distinct operating segments, Asset Management and Life, work together to provide access to balanced, long-term investment and savings solutions.

M&G Global Services has rapidly transformed itself into a powerhouse of capability that is playing an important role in M&G’s ambition to be the best loved and most successful savings and investments company in the world.

Our diversified service offerings extending from Digital Services (Digital Engineering, AI, Advanced Analytics, RPA, and BI & Insights), Business Transformation, Management Consulting & Strategy, Finance, Actuarial, Quants, Research, Information Technology, Customer Service, Risk & Compliance and Audit provide our people with exciting career growth opportunities. Through our behaviours of telling it like it is, owning it now, and moving it forward together with care and integrity; we are creating an exceptional place to work for exceptional talent.

Primary Key Responsibilities (Top 3-5 KRA)

* Vulnerability Management Technical Leadership: Lead M&G’s Vulnerability Management program ensure accurate and comprehensive coverage of all weakesses.

* Vulnerability Management Tooling Administration: Oversee the setup, operation, and optimization of Vulnerability Management tooling to ensure coverage and assurance across the organization.

* Threat Driven: Champion a threat-driven approach to vulnerability management by aligning remediation priorities with current threat intelligence, adversary behaviors, and exploitability trends to reduce risk effectively.

* Team Leadership: Lead and mentor a team of high performing VM professionals.

Additional Responsibilities:

• Stakeholder Collaboration: Partner with Enterprise Security, IT, and Risk teams to ensure vulnerability management strategies align with broader security and risk objectives.
• Threat-Driven Prioritization: Contribute to the adoption of a threat-driven approach to vulnerability management, ensuring remediation efforts are informed by current threat intelligence and adversary tactics.
• Compliance & Reporting: Ensure vulnerability management practices meet regulatory & industry standards and provide clear reporting for audits and executive oversight.
• Technology Oversight: Evaluate and implement vulnerability scanning tools and platforms, ensuring optimal coverage, accuracy, and integration with other security systems.
• Incident Support: Collaborate with incident response teams to assess and remediate vulnerabilities exploited during security events, contributing to root cause analysis and future prevention.
• Vendor Management: Manage relationships with vulnerability management solution providers, ensuring timely support, updates, and alignment with strategic goals.
• Training & Awareness: support the education of technical teams’ understanding of vulnerability management processes and threat prioritization.
• Continuous Improvement: Monitor emerging vulnerabilities, threat actor behaviours, and technology changes to continuously evolve the vulnerability management program.
• Project Leadership: support strategic initiatives such as vulnerability data integration with SIEMs, CMDBs, and risk platforms to enhance visibility and decision-making.
• Cloud Posture Management: Oversee the integration of cloud security posture management (CSPM) tools into the vulnerability management program, ensuring continuous assessment and remediation of misconfigurations and vulnerabilities across cloud environments.
• Data Integration & Reporting: Drive the integration of vulnerability data into platforms like Power BI and other analytics tools to enable dynamic dashboards, executive reporting, and data-driven decision-making across the organization.

Knowledge & Skills

• VM Tool Expertise: Deep hands-on experience with VM tooling, including modules relevant to Vulnerability Identification, Build Compliance, Attack Surface Management, and Cloud Posture Management.
• Security Standards Knowledge: Strong understanding of security frameworks and best practices such as ISF, NIST, and industry compliance requirements (e.g. AAF, SOX).
• Critical Thinking: Ability to troubleshoot and resolve complex issues within an enterprise environment.
• Leadership & Communication: Excellent leadership abilities with strong communication skills to work with both technical teams and non-technical stakeholders.
• Risk & Compliance: Strong understanding of regulatory requirements and how VM tooling can be used to meet compliance standards.

Experience

• 10+ years of experience in cybersecurity, with at least 4 years focused on managing and administering Vulnerability Management solutions.
• Demonstrated experience implementing and optimising Vulnerability Management in a large enterprise environment.
• Proven leadership experience in managing teams, specifically in cybersecurity or Vulnerability Management.
• Experience with auditing and compliance reporting using VM tools.
• Experience with integrating VM tools with various security technologies such as SIEMS, CMDB, and other platforms.

Relevant Qualifications

• A degree in Computer Science, Information Security, or a related field. A master’s degree is a plus.
• Professional certifications such as CISSP, CISM, or similar are preferred.

We have a diverse workforce and an inclusive culture at M&G Global Services, regardless of gender, ethnicity, age, sexual orientation, nationality, disability or long term condition, we are looking to attract, promote and retain exceptional people. We also welcome those who take part in military service and those returning from career breaks.