Senior Manager – Information Security

🗏Job Type

Full Time

Description
Senior Manager – Information Security

Join the Global Technology team of a leading BPO firm...and enjoy an interesting career opportunity! This dynamic forward-thinking organisation covers the United States, Latin America, Europe, Asia and South Africa.

As Infosec Manager:

Design security guidelines and controls to enforce security on web-based application using Threat Modeling, Threat Profiling, OWASP Top Ten Testing, Black Box Testing, and Source Code Reviews.
Facilitate external VA/PT audits, Application Security Audits, customer audits, and actively project-manage the remediation of audit findings
The successful incumbent will enjoy the following responsibilities:

Perform security testing of web applications, networks and source code reviews using Risk based approach
Conduct VAPT, Source code audits, Infrastructure reviews
Conduct security assessments on a wide variety of business applications in the areas of Ecommerce Finance, Insurance, Utilities, Transportation etc.

Perform Application Threat Modeling and Threat profiling based on Hackers Interest areas.
Performing source code reviews of multiple critical applications on different platforms and technologies.
Conduct a configuration audit of multiple platforms including Windows, Linux, AIX, Solaris, Oracle and MSSQL databases, Apache and IIS web servers, IIS, Cisco IOS, Cisco Pix Firewall, DHCP Server, Microsoft Exchange Server etc.
Analyze security of the network & wireless Infrastructure.
Perform external as well asiInternal penetration testing of Internet-facing servers using tools like Burp suite, Nmap, Nessus, Metasploit and performed black box and grey box testing on internally hosted Web applications.
Perform Vulnerability on Windows 2003,2008 R2, Domain Controllers, Linux, Oracle, SQL database servers.
Audit the Firewall Rule base of multiple firewalls including but not limited to Fortigate, Checkpoint, Cisco Juniper, Microsoft ASA, Microsoft TMG etc.
Conduct trainings and awareness sessions in the domain of web application security and secure coding practices.
To be considered for this leading, upscale, global BPO organisation, one has the following skills, abilities, qualifications and experience:

Graduate – Science or Engineering background
Certification i.e. CSSLP / CISSP / CEH / SANS
8 to 12 years’ relevant experience
Knowledgeable in Platforms:
Secure J2EE Programming
Secure .NET Programming
Secure PHP Programming
Programming languages: Java, Perl, SQL, C and C++
The willingness to work in a 24 x 7 environment
Strong verbal and written communication skills, good presentation skills and the ability to interface and communicate at all levels within the organisation
Excellent client relationship management skills
Strong domain understanding of offshore technology sectors and / or business operations
Capable of managing project tasks individually and as a team
Ability to document and explain technical details in a concise and understandable manner
Market related package – please include current salary package and notice period in your application.


Apply Here http://bit.ly/2CjP9gF

Job id : , #72192, 5 views,

« IT Service TechnicianSystems Analyst-E-magination InfoSolutions »