Listing Description

What will I be doing?

• Own and manage the information security program for the organization


• Perform security incident management and reporting including RCA. This includes working with all stakeholders both internal and external


• Work with internal and external stakeholders in performing vulnerability assessments and penetration tests for the infrastructure (IT and  Cloud); and application security testing (DAST & SAST) for the product and track the findings to closure


• Work closely in integrating security tools, standards, and processes into the product lifecycle


• Perform BCP & DR Testing


• Ensure compliance with contractual certification requirements like SOC1, SOC2, ISO27001, HIPAA, and PCI DSS from an Information Security perspective


• Manage and monitor security operations and related tools & technologies


• Respond to security questionnaires in time.

What skills do I need?

• Around 10+ years of relevant experience


• Experience in application security testing (OWASP top 10), vulnerability assessments and penetration testing


• Working knowledge in using DAST, SAST, VAPT tools


• Good understanding of Product Security (SaaS)


• Knowledge in Cloud Security


• Bug bounty program experience


• Understand application architecture controls & design based on security standards and regulations such as NIST, PCI-DSS, ISO etc.


• Work as an Individual Contributor


• Very good understanding of Logging, Monitoring, Security Operations


• Working knowledge in SIEM tools


• Ability to perform Risk Assessments and Business Impact Analysis


• Experience in Security Incident Management


• Be Proactive, organized, analytical, detail-oriented and persistent


• Certifications preferred: CEH, CISSP, OSCP

Benefits

• Best in industry salary and equity in the company


• Comprehensive medical coverage for yourself and your immediate family


• An environment where wellbeing is high on priority – access to regular yoga, meditation, breathwork, nutrition counseling, stress management, inclusion of family for most benefit awareness building sessions


• Unlimited vacation


• Opportunities to be a part of a community and give back: Social activities are part of our culture; You can look forward to regular engagement, social work, community give-back initiatives.