Manager - Cybersecurity & Risk Assessment & Advisory - Banking Domain

We are hiring for a Banking subsidiary in India.

Financial Domain (Banking / NBFC experience is desirable).

Manager RaaS Cybersecurity and Risk Assessment & Advisory.

Location Juinagar, Navi Mumbai.

Experience/ Qualifications:.

- A minimum experience of 12 years in IT Services and Security Management with relevant 8-10 years in information / cyber security risk assessment or management or security risk advisory consulting experience.

- Minimum 8 years of relevant experience in web application/ mobile application development.

- In-depth understanding of OWASP & CWE application / API security vulnerabilities.

- Hands-on experience in implementing risk management framework NIST CSF, ISO 31000, Threat Modelling, and PASTA.

- Ability to manage team, escalation management, review risk reports and collaborate with stakeholders.

- Overall understanding of web servers and database security.

- Good hold in microservices, Infrastructure and API security.

- Excellent oral and written communication skills preferred having customer or stakeholder interaction exposure.

- Must have managed technical team size or more than 4 members.

- Proficient in preparing risk trackers, report and management-level reporting to provide visibility of teamwork through KPIs.

- Well-versed with latest technologies such as private cloud, platform security, containerisation and holistic cyber security architecture review.

Responsibilities:.

- Perform application & mobile security risk assessment as per best industry standards (NIST, ISO).

- Develop a threat model as per the application applicability and business environment.

- Manage a team of risk assessors and guide them with technical training, and inputs to provide quality risk reports.

- Ensure the risk tracker is updated and timely exceptions, and escalations are performed.

- Manage change requests for applications and ensure tracking and weekly reporting.

- Conduct technical training for team members to enhance their knowledge of risk assessment.

- Communicate effectively across various levels of stakeholders and manage escalations.

- Advises management of critical issues that may affect the risk posture of the organizational information assets and application.

- Establish positive working relationships with various teams across the organization.

- Generate innovative ideas for achieving the objectives.

- Demonstrate leadership and problem-solving skills.