Application Security Manager-Paytm Money
Noida, Uttar Pradesh
⚠️ We'll shut down after Aug 1st - try foo🦍 instead ⚠️
We are seeking an experienced Application Security Manager to lead our security initiatives andensure the integrity, confidentiality, and availability of our systems and data. This role is crucialin safeguarding our digital assets and maintaining compliance with industrystandards.
Themanageroftheapplicationsecurityprogramwillberesponsible for -
1. To Integratesecuritytools,standards,andprocessesintotheproductlifecycle(PLC).2. EnsurethatdevelopersandQApersonnelaretrainedwiththeappropriatelevelofsecurityknowledgetoperformtheir dailyactivities.3. Improveandsupportapplicationsecuritytooldeploymentsincludingstaticanalysisandruntimetestingtools and securedevelopmentstandards.4. Conduct and manage periodic penetration testing exercises through expert consulting,internal technology team, and managed services to identify the gaps and fulfill audit/regulator requirements.5. Create, Integrate and manage threat modelling process/ practices, following SSDLC andapplication framework.6. Manage the secure configuration/ hardening guidelines and compliance.7. Should create and manage application security KPIs. KRIs compliance reports anddashboards.8. Should have strong hand-on experience of different tools, processes related to SAST,DAST, API Security and Threat Modelling.9. Should take care of Infosec functions by coordinating with various stakeholders (AppTeam, Vendors, Auditors, Regulators).10. Should have knowledge of best practices like OWASP, Microsoft SDL, SANS, NIST.11. Should have a good espouser to cloud environment (AWS) and WAF (Imperva, Akamai)12. Knowledge of Network and Data Security is a plus.
Qualifications and Experience:1. 8-10 years of hands-on experience in application security.2. Strong understanding of application security best practices, frameworks, and securitytechnologies, like Checkmarx, Fortify, Burp Suite, OWASP ZAP, Acunetix etc.3. Proven experience in managing VA, PT, Code review, SAST, DAST, SSDLC, ThreatModelling, and Audit processes.4. Familiarity with regulatory requirements and compliance standards (e.g., RBI, SEBI).5. Excellent communication, interpersonal, analytical and problem-solving skills.
6. Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or arelated field. Masters degree or relevant certifications preferred.
Themanageroftheapplicationsecurityprogramwillberesponsible for -
1. To Integratesecuritytools,standards,andprocessesintotheproductlifecycle(PLC).2. EnsurethatdevelopersandQApersonnelaretrainedwiththeappropriatelevelofsecurityknowledgetoperformtheir dailyactivities.3. Improveandsupportapplicationsecuritytooldeploymentsincludingstaticanalysisandruntimetestingtools and securedevelopmentstandards.4. Conduct and manage periodic penetration testing exercises through expert consulting,internal technology team, and managed services to identify the gaps and fulfill audit/regulator requirements.5. Create, Integrate and manage threat modelling process/ practices, following SSDLC andapplication framework.6. Manage the secure configuration/ hardening guidelines and compliance.7. Should create and manage application security KPIs. KRIs compliance reports anddashboards.8. Should have strong hand-on experience of different tools, processes related to SAST,DAST, API Security and Threat Modelling.9. Should take care of Infosec functions by coordinating with various stakeholders (AppTeam, Vendors, Auditors, Regulators).10. Should have knowledge of best practices like OWASP, Microsoft SDL, SANS, NIST.11. Should have a good espouser to cloud environment (AWS) and WAF (Imperva, Akamai)12. Knowledge of Network and Data Security is a plus.
Qualifications and Experience:1. 8-10 years of hands-on experience in application security.2. Strong understanding of application security best practices, frameworks, and securitytechnologies, like Checkmarx, Fortify, Burp Suite, OWASP ZAP, Acunetix etc.3. Proven experience in managing VA, PT, Code review, SAST, DAST, SSDLC, ThreatModelling, and Audit processes.4. Familiarity with regulatory requirements and compliance standards (e.g., RBI, SEBI).5. Excellent communication, interpersonal, analytical and problem-solving skills.
6. Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or arelated field. Masters degree or relevant certifications preferred.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
0
0
0
Categories:
AppSec Jobs
Leadership Jobs
Tags: APIs Application security AWS Burp Suite Checkmarx Cloud Compliance Computer Science DAST KPIs NIST OWASP Pentesting SANS SAST SSDLC
Region:
Asia/Pacific
Country:
India
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Senior Cybersecurity Engineer jobsInformation System Security Officer jobsIT Security Analyst jobsSenior Security Analyst jobsSenior Information Security Analyst jobsSecurity Operations Engineer jobsSenior Cloud Security Engineer jobsCyber Security Specialist jobsInformation Security Manager jobsSenior Product Security Engineer jobsSenior Network Security Engineer jobsInformation System Security Officer (ISSO) jobsSenior Information Security Engineer jobsSenior Cyber Security Engineer jobsSecurity Consultant jobsChief Information Security Officer jobsInformation Systems Security Engineer jobsSecurity Specialist jobsNetwork Engineer jobsCyber Threat Intelligence Analyst jobsSenior Software Engineer jobsIT Security Engineer jobsSecurity Operations Analyst jobsCybersecurity Specialist jobsSenior IT Auditor jobs
GDPR jobsSecurity assessment jobsEDR jobsTS/SCI jobsEncryption jobsSDLC jobsThreat detection jobsRMF jobsMalware jobsTerraform jobsSplunk jobsSQL jobsIDS jobsITIL jobsFinance jobsCompTIA jobsOWASP jobsTop Secret jobsIPS jobsForensics jobsSOC 2 jobsActive Directory jobsDocker jobsGIAC jobsClearance Required jobs
TCP/IP jobsOSCP jobsCRISC jobsHIPAA jobsMITRE ATT&CK jobsDoDD 8570 jobsIntrusion detection jobsAnsible jobsVPN jobsCCSP jobsZero Trust jobsJavaScript jobsSOAR jobsJira jobsDNS jobsUNIX jobsIT infrastructure jobsData Analytics jobsIndustrial jobsSOX jobsBanking jobsNIST 800-53 jobsKPIs jobsGCIH jobsSANS jobs