Technical Manager Job in Happiest Minds Technologies

Job Title: Application Security Lead

Education Requirements (Must Have):

• B.Sc (IT/CS), B.Tech in any Engineering discipline, BCA, MCA, M.Sc. in Information Technology or a related field.
• Security Certifications (CEH, CISSP, CISA, CISM, CRISC) are highly preferred.

Experience:

• 11-15 years of hands-on experience in Application Security, Network Security, and IT Risk & Compliance, with a strong background in security assessments, process audits, and application reviews.
• Experience in the BFSI (Banking, Financial Services, and Insurance) sector is preferred.

Key Responsibilities:

Leadership & Team Management:

• Lead and manage the Application Security (AppSec) team, which includes L1 and L2 resources.
• Act as the primary point of contact between clients and the team for all project-related activities, ensuring clear communication and effective collaboration.
• Oversee daily operations, ensuring resource optimization, and proactively address any issues or bottlenecks that arise during engagement.

Application & Security Review:

• Lead the review of the security posture for various applications, including web, mobile, APIs, and other banking applications.
• Perform in-depth reviews of network architecture, source code, Vulnerability Assessment and Penetration Testing (VAPT) reports, and configuration audits to identify security risks.
• Review deliverables from L1 and L2 team members, ensuring they meet quality and completeness standards.

Compliance & Risk Management:

• Monitor and report on compliance with relevant security standards and frameworks.
• Provide regular risk management updates to stakeholders, highlighting key findings and recommended mitigation strategies.

Stakeholder Management:

• Engage with stakeholders across teams and departments to ensure alignment on security goals, strategies, and outcomes.
• Provide expert advice and recommendations on security best practices and risk management strategies.

Required Skills & Expertise:

Security Testing & Vulnerability Management:

• Strong expertise in vulnerability assessment and manual penetration testing using OWASP checklists.
• Proficiency in conducting penetration testing, ethical hacking, and static/dynamic testing of mobile applications.
• Expertise in the OWASP Top 10 and utilizing tools like OWASP ZAP for testing and vulnerability mitigation.

Application Security Expertise:

• Deep understanding of application security concepts and best practices, including secure software development lifecycle (SDLC), threat modeling, and risk assessments.
• Experience in application and network security reviews, identifying vulnerabilities, and providing remediation strategies.

Compliance & Risk Management Knowledge:

• Solid understanding of IT compliance standards and regulations, including PCI-DSS, GDPR, and other industry-specific frameworks.
• Proven ability to conduct audits, produce compliance reports, and assess risks effectively.

Desirable Skills:

• Previous experience working within the BFSI sector is highly preferred.
• Excellent communication and stakeholder management skills.
• Ability to manage multiple projects simultaneously while ensuring high-quality deliverables.

What We Offer:

• An opportunity to lead a team of security experts and work on high-impact projects within a dynamic and fast-paced environment.
• Continuous learning and development in the ever-evolving field of application security.