The MBSS Expert is a technical subject matter expert. They are responsible for the end-to-end execution of Minimum Baseline Security Standards. This role focuses on the high-level technical design of security hardening controls. These controls are for Telecom & IT nodes. The expert oversees compliance assessments. They also support the governance of MBSS compliance. This covers various Lines of Business (LOBs). It also includes Managed Service Providers (MSPs) for a telecom network.

• Design security controls through advanced architecture analysis across various dimensions.
• Develop comprehensive MBSS control design templates, including commands and validation methods for diverse node types and vendors.
• Integrate industry standards like CIS Benchmarks and NIST into hardening guidelines.
• Collaborate with Original Equipment Manufacturers (OEMs) to validate controls and secure production deployment signoffs.
• Manage quarterly compliance scanning operations for over 120,000 nodes.
• Validate MBSS compliance for new nodes and provide technical "Go-Live" approvals.
• Act as the technical point of contact for MBSS tool deployment during First Node Implementations and mass rollouts.
• Produce detailed technical compliance reports, conduct gap analysis, and support remediation of non-compliances.

Must-Have:

1. B.E. / B.Tech degree in Computer Science, IT, or Electronics & Telecommunications, coupled with a CISA or CISSP certification.
2. 8–12 years of professional experience in the field.
3. Deep knowledge of CIS Benchmarks, NIST, and hardening for various OS/OEM products (especially Telecom & IT), with proven experience in creating baseline standards for diverse OEMs.
4. Good hands-on experience with Telecom Nodes (2G-5G Products), including architecture know-how of Core, RAN, Tx & IP Fabric networks and elements.
5. Proven experience managing security compliance across 50,000+ nodes using automated tools (e.g., BladeLogic) and coordinating large-scale remediation projects across MSP and OEM environments.

Nice-to-Have:

1. C-SANS (GCWN / GCUX) for Windows/Unix expertise.
2. CCNP Security or Nokia NRS II.
3. CCSP or Azure Security Engineer.