Position Name Sr Manager – IT Security Operations & Controls – Application Security Position level L5
DEM position name DGM – IT Security & Controls DEM position level L4
FEM position name NA FEM position level NA
Purpose of the position / Position Summary
Managing Application Security by driving the execution through various Service Providers. Performing project management to implement security tools and technologies as per Information Security Roadmap. Driving Security Governance with service providers and liaising with Senior Management.
Dimensions of the position
Competencies (Technical / functional) Competencies (Industry Knowledge)
IT Application Security – Web and Mobile IT Regulations and Standards
Secure Software Development Life Cycle Emerging Security Threats
ISO27001 Audit Latest Security tools and technologies
Personal Profile
Education
Skills B.E. / B.Tech
Relevant Experience:
Minimum of 8-10 years of professional experience in Information Security, Application security, Risk Management, IT Controls
Certifications: CISSP, ISO 27001 LA/LI
Preferred Industry: IT/Automobile
Job Responsibility
S.N. Job Responsibility
1Develop, maintain and implement improvements to a landscape of technical security safeguards, including assessment and deployment of new capabilities, technologies, and systems
2Apply expert level knowledge in developing security architecture, frameworks, design patterns, standards, reference architectures and best practices
3Identify & implement emerging technology solutions that reduce costs, increase efficiencies, provide more value, provide more capabilities, reduce risks, and increase security posture
4Lead security architecture team efforts for technology evaluations, which involves identifying a weighted feature matrix for a specific need and evaluating and scoring products against the desired features lead research activities including industry materials review, proof-of-concepts (POCs), and lab testing
5Proactively identify web app sec controls and risks, commenting and/or providing alternatives for improvement
6Ensure Repository of TML web apps (internal or external host) & ensure updated security measures. Highlight & resolve the risk.
7Oversee and consult with teams to ensure adherence to Application security best practices
8Identify and understand issues, problems, and opportunities as applied to web app sec Implement the DevSecOps.
9Translate internal and external security requirements into design of specific information security safeguards
10In collaboration with internal (IT, legal, audit, business and other) and external stakeholders, develop roadmaps and deployment plans for technical solutions and related procedures in line with global information security program
11Manage activities of the security architecture team and where necessary third-party specialists to support design, development and implementation of information security safeguards
12Ensure Closure of gaps identified during Internal Audits & any other Application security audits.
13Risk assessment and mitigation from security and compliance perspective
14Secure SDLC life cycle implementation
15Rollout ISO 27001 standard across the organization
16Perform ISO 27001 activities like updating/creating information asset register, conduct risk assessments, review ISMS policies, mandatory documents like SOA etc.
17Identify & highlight SSL certificate requirement as per applications
Customer Centricity – Anticipating, understanding and focusing efforts on meeting the customer (stakeholders) needs or expectations
Developing Self and Others – Recognizing continuous development is essential for success and taking steps to develop self and helping others to excel
Driving Execution – Translating strategy into action and execution
Leading by Example – Encouraging and following ethical standards
Leading Change – Recognizing the need for change, initiating and adapting to change
Motivating Self and Others – Inspiring teams and individuals
Job Description Key Deliverables Handling end-to-end sales for the Enterprise Business Accounts. Work in white space to add new logos...
Apply For This JobJob Description Line of Service Advisory Industry/Sector Not Applicable Specialism Cybersecurity & Privacy Management Level Senior Associate Job Description &...
Apply For This JobJob Description KPMG entities in India are professional services firm(s). These Indian member firms are affiliated with KPMG International Limited....
Apply For This JobJob Description Position Objective Ensure smooth functioning of Security Management Systems (SMS) department and proper security controls are in place...
Apply For This JobJob Description We are looking for an enthusiastic team member who drives efforts to enhance overall security posture at Unacademy...
Apply For This JobJob Description Job Title Information Security Lead Job Description Philips is a global leader in health technology, committed to improving...
Apply For This Job