Technical Manager

Eventus Security

Job Title: Technical Manager - Cyber Resilience

Experience: 8yrs+

Job Location: Navi Mumbai

Job Role:

Eventus Security requires a Technical Manager - Cyber Resilience with strong understanding of cybersecurity practices, extensive experience in vulnerability assessment and penetration testing (VAPT), leadership skills to manage a team of security professionals, and the ability to identify, prioritize, and remediate critical vulnerabilities across an organization's systems and applications, ensuring compliance with security standards and regulations; key responsibilities would include leading VAPT projects, overseeing vulnerability scanning, managing penetration testing activities, generating detailed reports, and collaborating with stakeholders to implement security improvements.

Key Responsibilities:

VAPT Strategy Development:

•Define and implement a comprehensive VAPT strategy aligned with organizational security goals and compliance requirements.

•Establish VAPT methodologies, standards, and best practices for conducting assessments.

•Prioritize critical assets and systems for regular VAPT scans.

Team Management:

•Lead a team of VAPT analysts, penetration testers, and vulnerability assessors.

•Assign tasks, monitor performance, and provide technical guidance to team members.

•Develop and maintain team skills through training and certifications.

•Vulnerability Assessment and Penetration Testing:

•Conduct comprehensive vulnerability assessments across networks, systems, applications, and web services using automated tools and manual techniques.

•Execute penetration testing engagements to identify exploitable vulnerabilities and assess potential security risks.

•Analyze test results, prioritize vulnerabilities based on severity and impact, and generate detailed reports with actionable remediation recommendations.

Risk Management:

•Collaborate with security stakeholders to assess the risk associated with identified vulnerabilities.

•Communicate security risks to relevant decision-makers and advocate for timely remediation.

•Track remediation progress and ensure vulnerabilities are addressed effectively.

Compliance Management:

•Ensure VAPT activities align with industry standards and regulatory compliance requirements (e.g., PCI DSS, HIPAA, GDPR).

•Maintain documentation and reporting to demonstrate compliance with security policies.

Required Skills and Qualifications:

Technical Expertise:

•Deep understanding of network security concepts, protocols, and vulnerabilities.

•Proficient in various VAPT tools and frameworks (e.g., Nessus, Burp Suite, Nmap, Metasploit).

•Familiarity with web application security, OWASP Top 10, and secure coding practices

Leadership Skills:

•Proven ability to lead and mentor a team of security professionals.

•Strong communication and presentation skills to effectively convey technical information to stakeholders.

Analytical Skills:

•Ability to analyze complex security issues, identify root causes, and prioritize remediation actions.

•Critical thinking and problem-solving skills to evaluate potential security threats.

Certifications:

Relevant cybersecurity certifications such as CISSP, CISA, OSCP, CEH, or equivalent.