Hirng For GRC Witrh APP Sec-Tech M-Bangalore/Hyderabad

Job Description

Role & responsibilities Compliance Manager (GRC + Audit + AppSec) Educational Qualification: BE/BTech/MCA Experience: 6 to 9 years Certifications such as CISSP, CISA, CISM, or ISO 27001 Lead Auditor preferred. Key Responsibilities: • Prior experience in a regulatory compliance in BFSI is preferable. • Develop and manage the GRC framework to ensure regulatory compliance. • Ensure adherence to standards like ISO 27001, PCI-DSS, SOC 2, and NIST. • Establish and enforce security policies for data protection and secure development. • Collaborate with development teams to integrate security into the SDLC. • Conduct application security assessments, code reviews, and vulnerability scans. • Manage audits for application security controls and vulnerability management. • Conduct risk assessments, maintain a risk register, and track remediation efforts. • Deliver training on secure coding practices and compliance awareness. • Document and report compliance activities, risk findings, and audit results. • Strong knowledge on automated scanning using HP Fortify, Burp suite or similar tools. • Suggest mitigation for identified vulnerabilities. • Deep knowledge of web Application and mobile applications security testing. • Collaboration on product conceptualization for security by design. • Knowledge on web Appsec, ethical hacking, DFRA, CSR. • Experience in understanding false-positive from the Source code scans. • Lead at least one CSR (Compressive security review)