Technical Lead-Cybersecurity

Area(s) of responsibility

Job description for Vulnerability Management
Must have Technical/Functional Skills:
- At least 5 years of experience in Vulnerability Management Program.
- Excellent communication and coordination skills.
- Security Certifications preferred.
- Good to have Audit experience and working with internal/External auditors (As FRB & OCC audit are there in coming months).
Functional Skills:
Roles & Responsibilities:
- Working on Vulnerability Management Program focused on ensuring that vulnerabilities within the organization are quickly identified, triaged, tracked, and appropriately remediated.
- Working with cross-functional, global stakeholders to drive remediation programs and ensure proper remediation of vulnerabilities till closure.
- Working on various vulnerability scanning reports- Assessing, validating, and triaging vulnerabilities- Ensure organizational vulnerabilities are property documented, tracked, and addressed.
- Working closely with internal stakeholders to address reported vulnerabilities to ensure timely remediation or approved exception and ad-hoc scan.
- Clearly advises stakeholders and technical teams on vulnerabilities, criticality, impacts, and remediation to meet information security standards.
- Develops remediation reports, out briefs, and scorecards addressing risk, vulnerability, and organizational progress.
- Providing regular reports and updates to senior management on the status of the vulnerability management program, including progress on remediation efforts and any critical vulnerabilities requiring immediate attention.
- Working on all other Security, Risk & Compliance issues within the Organization.
- Experience in IT, Cybersecurity, Risk/Vulnerability Analysis or Management, or related fields.
- Strong knowledge of vulnerability management processes, tools, best practices, and vulnerability validation and triaging.
- Experience with industry-standard enterprise vulnerability scanning offerings, such as Qualys, Nexus IQ, Fortify, Key-light, Datamart, Splunk etc.
- Vulnerability Management experience within containerization platforms (Docker, Kubernetes, etc.) and major cloud environments (AWS, Azure etc.)- Container vulnerabilities.
- Familiar with security frameworks and standards, such as PCI DSS, NIST, ISO 27001, OWASP Top 10, or Critical Security Controls.
Technical Skills:
- Knowledge of software development methodologies and best practices.
- Analytical and problem-solving skills.
- Experience with Oracle database management systems.
- Knowledge of PL/SQL programming concepts like cursors, triggers, stored procedures, and packages.
- Ability to understand and work with structured and unstructured data.
- Good to have Knowledge of Oracle APEX experience and JavaScript.
Responsibilities:
- Database design: Create database schemas, tables, and other data storage tools.
- Code development: Write programs, functions, and stored procedures, Triggers etc.
- Database performance: Optimize database performance by tuning SQL queries and PL/SQL code.
- Security: Implement security measures to protect the database.
- Testing: Develop and execute test plans to ensure code quality and accuracy.
- Troubleshooting: Troubleshoot and resolve issues with Pl/SQL code.
- Collaboration: Work with other teams to identify database issues.
- Design & develop solutions to business problems using Oracle APEX & Java scripts.
 

Essential job tasks

Job description for Vulnerability Management
Must have Technical/Functional Skills:
- At least 5 years of experience in Vulnerability Management Program.
- Excellent communication and coordination skills.
- Security Certifications preferred.
- Good to have Audit experience and working with internal/External auditors (As FRB & OCC audit are there in coming months).
Functional Skills:
Roles & Responsibilities:
- Working on Vulnerability Management Program focused on ensuring that vulnerabilities within the organization are quickly identified, triaged, tracked, and appropriately remediated.
- Working with cross-functional, global stakeholders to drive remediation programs and ensure proper remediation of vulnerabilities till closure.
- Working on various vulnerability scanning reports- Assessing, validating, and triaging vulnerabilities- Ensure organizational vulnerabilities are property documented, tracked, and addressed.
- Working closely with internal stakeholders to address reported vulnerabilities to ensure timely remediation or approved exception and ad-hoc scan.
- Clearly advises stakeholders and technical teams on vulnerabilities, criticality, impacts, and remediation to meet information security standards.
- Develops remediation reports, out briefs, and scorecards addressing risk, vulnerability, and organizational progress.
- Providing regular reports and updates to senior management on the status of the vulnerability management program, including progress on remediation efforts and any critical vulnerabilities requiring immediate attention.
- Working on all other Security, Risk & Compliance issues within the Organization.
- Experience in IT, Cybersecurity, Risk/Vulnerability Analysis or Management, or related fields.
- Strong knowledge of vulnerability management processes, tools, best practices, and vulnerability validation and triaging.
- Experience with industry-standard enterprise vulnerability scanning offerings, such as Qualys, Nexus IQ, Fortify, Key-light, Datamart, Splunk etc.
- Vulnerability Management experience within containerization platforms (Docker, Kubernetes, etc.) and major cloud environments (AWS, Azure etc.)- Container vulnerabilities.
- Familiar with security frameworks and standards, such as PCI DSS, NIST, ISO 27001, OWASP Top 10, or Critical Security Controls.
Technical Skills:
- Knowledge of software development methodologies and best practices.
- Analytical and problem-solving skills.
- Experience with Oracle database management systems.
- Knowledge of PL/SQL programming concepts like cursors, triggers, stored procedures, and packages.
- Ability to understand and work with structured and unstructured data.
- Good to have Knowledge of Oracle APEX experience and JavaScript.
Responsibilities:
- Database design: Create database schemas, tables, and other data storage tools.
- Code development: Write programs, functions, and stored procedures, Triggers etc.
- Database performance: Optimize database performance by tuning SQL queries and PL/SQL code.
- Security: Implement security measures to protect the database.
- Testing: Develop and execute test plans to ensure code quality and accuracy.
- Troubleshooting: Troubleshoot and resolve issues with Pl/SQL code.
- Collaboration: Work with other teams to identify database issues.
- Design & develop solutions to business problems using Oracle APEX & Java scripts.