Cyber Security Engineer

Role Overview: As a VAPT Senior Manager, your responsibilities include conducting internal and third-party Ethical Hacking, Vulnerability Assessment, Penetration Testing, and Red Team assessments on critical business assets and processes. You will need to coordinate with external ethical hacking and penetration testing teams for RBI projects. It is essential to liaise with the security intelligence framework to stay informed about the latest threats and vulnerabilities. Your duties also involve preparing security effectiveness reports for management and ensuring applications/systems comply with RBI/ReBIT Information Security practices. You must oversee the induction of new applications into the data center only after conducting penetration testing and vulnerability assessment. Prioritizing security vulnerabilities based on business impact, updating the Security operations team, and monitoring the closure of identified gaps are integral parts of your role. Additionally, you will play a key role in determining relevant metrics for measuring security effectiveness and selecting appropriate algorithms for quantification. Key Responsibilities: - Conduct internal and third-party Ethical Hacking, Vulnerability Assessment, Penetration Testing, and Red Team assessment - Coordinate with external ethical hacking and penetration testing teams for RBI projects - Liaise with the security intelligence framework to obtain the latest threats and vulnerabilities - Prepare security effectiveness reports for management - Test applications/systems for compliance with RBI/ReBIT Information Security practices - Ensure new applications are inducted into the data center after conducting penetration testing and vulnerability assessment - Prioritize security vulnerabilities based on business impact and update the Security operations team - Follow up on the closure of identified gaps and escalate when necessary - Decide on the most relevant metrics for measuring security effectiveness and determine the requisite algorithms for quantification Qualifications Required: - University degree in the field of computer science or IT - 8+ years of Information Security background - 5+ years of Penetration testing, Red teaming, or vulnerability assessment experience - Hands-on experience with black-box and grey-box penetration testing on platforms like .Net, Java, etc. - Hands-on experience in mobile testing of Android and iOS - Familiarity with OWASP, SANS Institute, ISACA, GAO, FISCAM, NSA, NIST, IETF best practices - Experience in project management - CISSP certification - CEH, OSCP, OSCE, or GPEN certification Please note that the work location for this full-time position is in person.,