Position Name Sr Manager – IT Security Operations & Controls – Application Security Position level L5
DEM position name DGM – IT Security & Controls DEM position level L4
FEM position name NA FEM position level NA
Purpose of the position / Position Summary
Managing Application Security by driving the execution through various Service Providers. Performing project management to implement security tools and technologies as per Information Security Roadmap. Driving Security Governance with service providers and liaising with Senior Management.
Dimensions of the position
Competencies (Technical / functional) Competencies (Industry Knowledge)
IT Application Security – Web and Mobile IT Regulations and Standards
Secure Software Development Life Cycle Emerging Security Threats
ISO27001 Audit Latest Security tools and technologies
Personal Profile
Education
Skills B.E. / B.Tech
Relevant Experience:
Minimum of 8-10 years of professional experience in Information Security, Application security, Risk Management, IT Controls
Certifications: CISSP, ISO 27001 LA/LI
Preferred Industry: IT/Automobile
Job Responsibility
S.N. Job Responsibility
1Develop, maintain and implement improvements to a landscape of technical security safeguards, including assessment and deployment of new capabilities, technologies, and systems
2Apply expert level knowledge in developing security architecture, frameworks, design patterns, standards, reference architectures and best practices
3Identify & implement emerging technology solutions that reduce costs, increase efficiencies, provide more value, provide more capabilities, reduce risks, and increase security posture
4Lead security architecture team efforts for technology evaluations, which involves identifying a weighted feature matrix for a specific need and evaluating and scoring products against the desired features lead research activities including industry materials review, proof-of-concepts (POCs), and lab testing
5Proactively identify web app sec controls and risks, commenting and/or providing alternatives for improvement
6Ensure Repository of TML web apps (internal or external host) & ensure updated security measures. Highlight & resolve the risk.
7Oversee and consult with teams to ensure adherence to Application security best practices
8Identify and understand issues, problems, and opportunities as applied to web app sec Implement the DevSecOps.
9Translate internal and external security requirements into design of specific information security safeguards
10In collaboration with internal (IT, legal, audit, business and other) and external stakeholders, develop roadmaps and deployment plans for technical solutions and related procedures in line with global information security program
11Manage activities of the security architecture team and where necessary third-party specialists to support design, development and implementation of information security safeguards
12Ensure Closure of gaps identified during Internal Audits & any other Application security audits.
13Risk assessment and mitigation from security and compliance perspective
14Secure SDLC life cycle implementation
15Rollout ISO 27001 standard across the organization
16Perform ISO 27001 activities like updating/creating information asset register, conduct risk assessments, review ISMS policies, mandatory documents like SOA etc.
17Identify & highlight SSL certificate requirement as per applications
Customer Centricity – Anticipating, understanding and focusing efforts on meeting the customer (stakeholders) needs or expectations
Developing Self and Others – Recognizing continuous development is essential for success and taking steps to develop self and helping others to excel
Driving Execution – Translating strategy into action and execution
Leading by Example – Encouraging and following ethical standards
Leading Change – Recognizing the need for change, initiating and adapting to change
Motivating Self and Others – Inspiring teams and individuals
Risk Advisory | Cyber| SAP IT| SAP DevOps What impact will you make Every day, your work will make an...
Apply For This JobProgram Director Qualification: Equivalent of BS/ MS Responsibility: Charter: . Understand program objectives and prepare the program charter. identify benefits...
Apply For This JobQuess IT Staffing Founded in 1997 as an entrepreneurial venture, Magna Infotech was the first mover in the IT Contract...
Apply For This JobJob Description Job Description Details: IAM Specialist/IT Security Analyst, Sr (IAM): To be part of a global security services project...
Apply For This JobJoin a team recognized for leadership, innovation and diversity The future is what you make it. When you join Honeywell,...
Apply For This JobJob Description Position Details SOC Manager As part of its overall expansion, BluSapphire is ramping up its Security Operations Center...
Apply For This Job