Manager Cyber Security - VAPT Reserve Bank Information Technology Private Limited (ReBIT)

5.0 - 9.0 years

0 Lacs

navi mumbai, maharashtra

On-site

You will be reporting to the Senior Manager VAPT as part of this role. A university degree in computer science or IT is required for this position. With over 8 years of experience in Information Security, including at least 5 years of experience in Penetration Testing, Red Teaming, and/or vulnerability assessment, you will play a crucial role in evaluating the control environment through Ethical Hacking. Your responsibilities will include hands-on experience in black-box and grey-box penetration testing on platforms like .Net and Java, as well as mobile testing of Android and iOS. Having a high-level understanding of Security Architecture and Infrastructure is essential, along with familiarity with best practices from organizations such as OWASP, SANS Institute, ISACA, GAO, FISCAM, NSA, NIST, and Internet Engineering Task Force (IETF). You will be expected to develop a framework for testing the compliance of applications and systems, as well as possess experience in project management. This position falls within the Information Technology industry. Your main responsibilities will involve conducting internal and third-party Ethical Hacking, Vulnerability Assessment, Penetration Testing, and Red Team assessments on business-critical assets and processes. You will need to liaise with external ethical hacking and penetration testing teams for RBI projects, and coordinate with the security intelligence framework to stay updated on the latest threats and vulnerabilities. Preparing security effectiveness reports for management, testing applications/systems for compliance to RBI/ReBIT Information Security practices, and ensuring new applications are inducted into the Data center after conducting pen testing/vulnerability assessment are key tasks. You will be responsible for prioritizing security vulnerabilities, updating the Security operations team for mitigation, and deciding on the most relevant metrics and algorithms for measuring security effectiveness. Certifications required for this role include any two of the following: CISSP, CEH, OSCP, OSCE, or GPEN.,

Posted 1 week ago

Apply

Lead - Application Security SSDLC Reserve Bank Information Technology Private Limited (ReBIT)

4.0 - 8.0 years

0 Lacs

navi mumbai, maharashtra

On-site

As a highly skilled professional in the field of Information Security, you will play a crucial role in ensuring the secure development of software applications. With your University degree in computer science or IT and a minimum of 6 years of experience in Information Security, you will possess the necessary qualifications to excel in this role. Your expertise in Software Development Lifecycle (SDLC) security reviews, control environment evaluation, and design flaw assessments will be key in upholding the highest standards of security. Your responsibilities will include conducting internal and third-party Security Risk Assessments on critical assets, coordinating with project teams to enforce security frameworks throughout the SDLC, and preparing detailed security effectiveness reports for management review. Your hands-on experience in Static and Dynamic Application Security Testing, along with your familiarity with industry best practices such as OWASP, SANS Institute, and NIST, will be invaluable in developing a comprehensive security framework for developers to follow. In this role, you will also be responsible for testing applications/systems against SSDLC frameworks, ensuring compliance with RBI/ReBIT Information Security practices, and facilitating the integration of new applications into the data center post-assessment. Your expertise in application security tools and methodologies, along with your ability to define and enhance security requirements for agile development methods, will be essential in driving continuous improvement in application security standards. Additionally, you will collaborate with the DevSecOps team to establish secure CI/CD pipeline processes and enable application teams to develop new capabilities securely. Your certifications in CISSP, CSSLP, cloud security, or DevSecOps automation will further validate your expertise and commitment to upholding the highest standards of information security in the industry.,

Posted 3 weeks ago

Apply

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.