Head of Crowd-sourced Security Testing/ Delivery Head

Job Description

Role & responsibilities Accountable for the delivery of the Bug Bounty to meet the requirements cybersecurity controls, auditors, and global regulators. Responsible for ensuring the crowd is leveraged with well scoped with clearly defined objectives, and delivered on time through an approach that scales and minimises operational risk. Responsible for identifying thematic findings in line with threat actor techniques and procedures, and the shifting technology landscape within and driving the crowd to target these areas. Accountable for the delivery of the change and continuous uplift across crowd-sourced testing. Global Control Operator for Crowd-sourced Security Testing under VIAO.3 (Offensive Security) control and protecting the banks technology, information, and customers. Leadership of a small team to manage operation of the Bug Bounty. To be successful in this role, you should meet the following requirements: Proven experience in identifying and communicating security vulnerabilities across Web, APIs, Infrastructure, and Mobile (e.g., penetration testing). Experience in identifying vulnerabilities by leveraging the crowd (e.g., Bug Bounty) Experience working in highly sensitive projects and a highly regulated environment. Excellent communication and interpersonal skills with the ability to produce clear and concise reports for targeted audiences across internal and external stakeholders. Excellent understanding of cybersecurity principles, global financial services business models, regional regulations and applicable laws. Formal education and advanced degree in Information Security, Cybersecurity, Computer Science or similar and/or commensurate demonstrated work experience in the same.