Information Security Specialist

About Policybazaar.com –

Mission:

Values:

Vision:

PolicyBazaar.com is India's largest insurance marketplace and a leading fintech player globally. It has backing from a host of investors including the likes of Soft Bank, InfoEdge (Naukri.com), Temasek, Tiger Global Management, True North, Premji Invest. The portal started in 2008 with a purpose to educate people on insurance products and has had a significant influence on how insurance is bought in India. It has helped in driving penetration of pure life insurance, health insurance, and such products which were barely bought earlier.

From receiving traffic of 180,000 visitors in 2008, PolicyBazaar.com has come a long way and today hosts over 100 million visitors yearly, and records 10 transactions on its platform every minute. The company collected Rs 3,500 cr of insurance premium in FY19, and is on track to double this figure in FY20. PolicyBazaar.com accounts for nearly 25% of India’s life cover, and over 7% of India’s retail health business. It accounts for roughly half of all internet based insurance purchase in the country..

Group Companies –Paisabazaar.com, Docprime, QuickFixCars, Policybazaar.ae, Zphin

Visit policybazaar.com to know more about us.

What we are looking for in a candidate

• Interact with teams to develop understanding of Policybazaar’s security landscape/posture
• Conducting vulnerability scans and penetration testing to identify security weaknesses across infrastructure and application landscape
• Documenting and reporting findings, including recommendations for remediation and liaising with internal stakeholders for closure
• Staying current with new attack vectors and tools, and incorporating them into testing procedures
• Collaborating with other teams to prioritize remediation efforts

Skills

• Proven work experience of 2-3 years in information security domain
• B.Tech or equivalent degree in Computer Science, Information Security or related field
• Excellent written and verbal communication skills
• Good understanding of technology risk assessment frameworks
• Ability to contribute individually, and as a part of team
• Knowledge of OWASP Top 10 is a must
• Knowledge of NIST CSF, MITRE ATT&CK is preferable
• Good to have technical security certifications like OSCP, PNPT, CRTP, or similar
• Experienced in DAST, SAST and Infra VAPTand infrastructure penetration testing techniques
• Experienced in penetration testing methodology and techniques
• Ability to identify security vulnerabilities and suggest appropriate mitigation steps
• Must have knowledge about the Cyber threat Intelligence and Source Code Review

What do we offer?

• Endless growth opportunities
• GMC- Group medical coverage
• Gratuity is paid as per applicable law which is over and above total offered CTC
• Cutting edge technology stack to work upon
• Exposure in the domain of cloud security, cyber threat intelligence, application security and techno=compliance audits

Our Recent Awards

Over the years, Policybazaar.com has won over 50 awards for its innovative business model, marketing efforts and customer centricity at various forums. Following are some of the prominent ones.

We Are An Equal Opportunity Employer