This job posting is no longer active.
Location: Pune, MH, India
Job ID: 1002498
• JOB FUNCTIONS AND RESPONSIBILITIES
o Lead projects to evaluate new tools, identify best fit solutions and deployment of the solutions for the enterprise.
o Keep track of industry trends and emerging security tools and technologies
o Evaluate applicability for the Ocwen environment and propose optimal solutions
o Identify deployment milestones along with dependencies and manage execution of the projects within the committed time and budget.
• Security Assessments
o Lead the activity to identify technical vulnerabilities through system, network and application vulnerability assessments and penetration testing
o Ensure that the reporting of the vulnerabilities is accurate and liaise with the respective functions to get the remediations done.
o Drive the creation and up keep of security standards and work with the stakeholders for deployment of the same.
o Drive efforts to embed application security aspects in the design of the critical applications and work with the stakeholders to assess applications from Secure SDLC perspective.
• Security Operations
o Develop and maintain a state of the art Cyber Threat Management program that will detect threats early, respond rapidly and ensure that the organization maintains a strong security posture.
o Develop and maintain an ongoing risk assessment and incident prevention program and recommend methods for vulnerability detection, remediation and oversee vulnerability testing.
o Monitor the external threat environment for emerging threats, and advise relevant stakeholders on the appropriate courses of action.
o Provide appropriate security guidance on all projects, systems, services and other initiatives including the evaluation and recommendation of technical controls.
o Develop and maintain an incident response program to address security incidents, respond to policy violations, interfacing with internal or external stakeholders as required.
o Respond appropriately to investigations and forensic requests, managing situations with discretion, sensitivity, and objectivity, and ensure due consideration of chain-of-custody.
o Liaise with Enterprise Technology teams to ensure that appropriate information security architecture standards, policies, and procedures are available and implemented consistently across all infrastructure and application development projects and programs. This includes review of as-is state as well as engagement in future initiatives.
o Collaborate with Enterprise Technology teams to define physical, virtual, and logical information security architecture specifications. - Ensure the consistent application of security standards across global technical infrastructure.
o Manages security incidents and events to protect corporate IT assets, including intellectual property, regulated data and the company's reputation
• Expectations from the candidate
o At least 15 years of Experience in design, evaluation, implementation of security tools, vulnerability assessment, penetration testing etc.
EDUCATION / EXPERIENCE
o Preferred certifications - CEH, Technical Certifications in the area of AppSec, VA PT, Product specific certifications and experience in some of the following tools / solutions - VA PT, AppSec, AV, CASB, IAM, Email security solutions, DLP, WAF, Firewall, Cloud Security solutions. Professional certifications such as CISSP, CISA
o Preferred location - Bangalore, Pune, Mumbai (In Hybrid mode)
WORK SCHEDULE OR TRAVEL REQUIREMENTS
o Work timing - 2 PM IST to 11 PM IST