Senior Security Engineer - Security

Role description

Job Description :

We are seeking a dynamic and proactive individual to join our team as a Loan Staff Engagement

Specialist with a minimum of 3 years hands on experience on the Information security activities as

listed below : Responsibilities :

1. Build and maintain strong relationships with stakeholders, and internal teams, to facilitate

effective communication and collaboration.

2. Take ownership of internal Infosec tasks and ensure compliance with security policies and

procedures.

3. Support in collating evidence from various stakeholders for internal and external certification

audits, including ISO 27001, PCI DSS, RBI and other similar audits conducted by the Bank.

4. Perform initial-level Appsec activities, including API testing, mobile security and source code

scans using tools such as Codeguru, SonarQube, and Burpsuite.

5. Can independently perform vulnerability scans for the systems.

6. Assist in identifying and addressing security vulnerabilities and risks within systems and

applications.

7. Provide guidance to other team members on security best practices and procedures.

8. Collaborate with other team members to ensure proactive closure of vulnerabilities and

audit observations.

9. Stay informed about the latest security trends, threats, and technologies relevant to

operations.

Qualifications :

1. Bachelor's degree in computer science, Information Technology, or a related field.

2. Previous experience in stakeholder management and engagement.

3. Strong understanding of information security principles and best practices.

4. Experience with certification audits, such as ISO 27001, PCI DSS and Indian regulatory audits

from RBI.

5. Familiarity with Business Continuity and Disaster Recovery concepts.

6. Experience in conducting independent information security risk assessments.

7. Familiarity with Appsec activities, including API testing, source code scanning, Web

application security testing, mobile application security testing, etc.

8. Proficiency in, or at least a basic understanding of, operating security testing tools such as

CodeGuru, SonarQube, and Burp Suite.

9. Excellent communication and interpersonal skills.

10. Ability to work independently and take ownership of tasks.

11. Have prior experience working within a Fintech organization and familiarity with operational

processes.

12. Relevant certifications, such as CISSP, CISA, CEH, ISO 27001 Lead Auditor & Lead

Implementer are a plus.

Skills Required

Pci Dss, Burp Suite, Iso 27001, Sonarqube, Api Testing, Mobile Security