AVP-Security AssuranceMashreq • Lucknow, IN
AVP-Security Assurance
Mashreq • Lucknow, IN
7 days ago
Job descriptionThe role is based within the Information Security Group (ISG) and focuses on secure development practices, application security, and integrating security into DevOps and CI / CD processes. The platform security head works within security policies, industry standards, and regulatory frameworks like PCI, NESA, RBI C-SITE, SWIFT, and development frameworks such as Agile, RAD. Collaboration with development, operations, and security teams is key to ensure security is embedded into the development process. Interaction with both technical and non-technical stakeholders to present security findings and remediation strategies. Work with external vendors or cybersecurity experts when required to ensure security assessments are comprehensive and up to date. Identify security vulnerabilities and flaws in applications, APIs, and other parts of the development lifecycle and provide solutions to mitigate them. Solve problems by automating security testing processes to ensure continuous monitoring for vulnerabilities in the development pipeline. Identify and address gaps in the software development lifecycle where security controls need to be better integrated. Use security testing tools like Burp Suite, SAST, DAST, IAST, and dynamic testing tools to find vulnerabilities and recommend fixes. The Product Security Head has the authority to decide on the implementation of security tools, security strategies, and methods for automating security in the SDLC. Responsible for ensuring that security is integrated at every stage of the software development lifecycle and that development pipelines are secure. Takes responsibility for collaborating with teams and reporting security vulnerabilities, risk assessments, and remediation plans to senior management and technical teams. Bachelor’s or master’s degree in computer science, Information Security, Cybersecurity, or a related field. 13 to 16 years of progressive experience in application security, secure coding practices, API security, and CI / CD security practices. Relevant certifications such as CSSLP, OSWP, CEH, and API Security certifications are highly desirable. Proven experience in secure SDLC, API security, and continuous integration / deployment (CI / CD) security practices. Proficiency in security testing tools like Burp Suite, SAST, DAST, IAST, and dynamic testing tools. Familiarity with OpenAPI Specifications, OAuth, SAML, and API Gateway security, including enforcing AAA (Authentication, Authorization, and Accounting). Strong programming and scripting skills in languages such as Python for automation and security integration. Familiarity with security-focused DevOps tools such as Jenkins, GitLab CI, Docker, and Kubernetes. Strong analytical skills in identifying and solving security vulnerabilities in the development lifecycle. Excellent communication skills to interact with development, operations teams, and senior management to present findings and remediation strategies. Experience in the banking or financial services industry. Deep understanding of secure coding practices and application security principles. Knowledge of development, regulatory, and compliance frameworks such as Agile, RAD, PCI, NESA, RBI C-SITE, SWIFT.
We are seeking an experienced Product Security Head to lead and enhance the security practices within our software development lifecycle. The ideal candidate will have a strong background in secure SDLC, embedding security champion programs, and automating security decisions. This role involves building secure automated pipelines, implementing security testing at every stage of development, and collaborating with development and security teams to ensure that security is seamlessly integrated into the entire product development process.
KEY RESULT AREAS
- Design, implement, and maintain secure automated pipelines within the software development lifecycle to ensure security is embedded from the start.
- Automate security tasks to ensure secure continuous integration and continuous delivery (CI / CD) processes.
- Work closely with development and operations teams to integrate security controls into the software development process from the earliest stages.
- Conduct intrusive penetration testing and vulnerability assessments on applications, APIs, infrastructure, and network systems.
- Perform security audits and code reviews to identify flaws and security risks within the development pipeline.
- Use advanced attack techniques, tools, and simulations to identify security gaps and recommend mitigation actions.
- Develop and implement risk management strategies to reduce vulnerabilities in development and operational environments.
- Provide actionable feedback and training to teams to improve secure coding practices and configuration practices.
- Work with various teams to ensure security integration throughout the product development lifecycle.
- Prepare detailed reports, including risk assessments and actionable remediation strategies for both technical and non-technical stakeholders.
- Keep up with new security threats and vulnerabilities and implement best practices for secure development processes.
OPERATING ENVIRONMENT, FRAMEWORK AND BOUNDARIES, WORKING RELATIONSHIPS
PROBLEM SOLVING
DECISION MAKING AUTHORITY & RESPONSIBILITY
KNOWLEDGE, SKILLS AND EXPERIENCE
Create a job alert for this search
Assurance • Lucknow, IN
Similar jobs
Position1 : SAP SD+RAR (SD consultant with exposure in RAR).Position2 : SAP FICO Consultant+ European Implementation / Rollouts, VAT Process.
Client : One of our Prestigious client.Mode of hiring : Contr...Show more)
servicenow itom
People Prime Worldwide • lucknow, uttar pradesh, in
About Company : They balance innovation with an open, friendly culture and the backing of a long-established parent company, known for its ethical reputation.
We guide customers from what’s now to wh...Show more
Last updated: 2 hours ago • Promoted • New!
SAP Training Coordinator ( Full-time at a Fortune 500 tech MNC)
HARP • lucknow, uttar pradesh, in
The Training Coordinator position involves planning and executing training programs for transition to SAP S / 4HANA, including developing training material content, scheduling sessions, tracking prog...Show more
Last updated: 14 hours ago • Promoted • New!
SAP hiring-Remote-Contract-7+Years
Tekgence Inc • lucknow, uttar pradesh, in
Remote
Last updated: 14 hours ago • Promoted • New!
ADP Consultant
TalentXM (Formerly BlockTXM Inc) • Lucknow, IN
The consultant will work closely with HR, Payroll, Finance, and IT stakeholders to ensure ADP platforms are configured to support accurate payroll processing, compliant HR operations, and scalable ...Show more
Last updated: 5 days ago • Promoted
SAP S / 4HANA RECORD TO REPORT - LEAD (Full-time at a Fortune 500 tech MNC)
HARP • lucknow, uttar pradesh, in
We are seeking a seasoned SAP S / 4HANA RTR Lead Consultant with SAP S / 4HANA RTR functional & technical experience executing and delivering a complex migration project from SAP ECC to SAP S / 4HANA.The...Show more
Last updated: 14 hours ago • Promoted • New!
Senior Engineer -Proxy Development- AI Security Startup in India!!!
CareerXperts Consulting • lucknow, uttar pradesh, in
AI is changing how we think - and this Startup is securing the future it creates.Led by founders behind billion-dollar exits and backed by experts from the world’s top security teams, they’re build...Show more
Last updated: 14 hours ago • Promoted • New!
Oracle Fusion Order Management Consultant
Atom • lucknow, uttar pradesh, in
We are currently looking for an.Oracle Fusion Oracle Order Management Consultant.Oracle Fusion Order Management Consultant.
Atom adding value through your ability to think outside of the box while p...Show more
Last updated: 14 hours ago • Promoted • New!
SAP CRM Functional
ZettaMine Labs Pvt. Ltd. • lucknow, uttar pradesh, in
We are currently hiring for the position of.Please find the detailed job description and requirements below : .Designation / Position : SAP CRM Senior Consultant.
Work Experience (Domain / SAP) : 14+ye...Show more
Last updated: 14 hours ago • Promoted • New!
AVEVA PI Vision Dashboard Engineer
Grassdoor • lucknow, uttar pradesh, in
AVEVA PI Vision Dashboard Engineer.We are seeking an AVEVA PI Vision Dashboard Engineer with 5–6 years of experience.The ideal candidate must be responsible for designing and developing intuitive, ...Show more
Last updated: 14 hours ago • Promoted • New!
AVP - Third Party Risk Management
Mashreq • Lucknow, IN
The incumbent supports the VP – Operational Risk, Head of TPRM in directing and leading the Group-wide (including subsidiaries and international branches) strategic development and implementation o...Show more
Last updated: 20 days ago • Promoted
Sucessfactor EC and Reporting Consultant
HR Path • Lucknow, IN
HR Path Group, a global leader in HR consulting, helps clients with their HR transformation projects, covering both human and HRIS (Human Resources Information System) aspects.Our 2,500 employees a...Show more
Last updated: 12 days ago • Promoted
AVEVA PI Analytics Engineer
Grassdoor • lucknow, uttar pradesh, in
We are seeking an AVEVA PI Analytics Engineer with 4–7 years of experience.Responsible for developing analytics and calculations in the AVEVA PI System to transform raw data into meaningful operati...Show more
Last updated: 14 hours ago • Promoted • New!
Quality Assurance Engineer
im24x7 Delta Solutions FZCO • lucknow, uttar pradesh, in
QA Engineer (2–3 Years Experience only).We are looking for a QA Engineer with 2–3 years of hands-on experience in software testing to join our growing engineering team.
The ideal candidate should ha...Show more
Last updated: 30+ days ago • Promoted
Network Engineer (WLC & ISE Experience)
N Consulting Global • lucknow, uttar pradesh, in
Seeking a skilled and experienced.Administrator with expertise in.Cisco Identity Services Engine (ISE).Cisco Digital Network Architecture Center (DNAC).
The ideal candidate will have 5-7 years of ha...Show more
Last updated: 14 hours ago • Promoted • New!
Specialist
LearningMate • lucknow, uttar pradesh, in
The purpose of this engagement is to create assessment items aligned with the Armed Services Vocational Aptitude Battery (ASVAB) standards across eight components.
We need SMEs across subject areas ...Show more
Last updated: 14 hours ago • Promoted • New!
Network Security Engineer L1
St. Fox • lucknow, uttar pradesh, in
Fox is a trusted consultancy specializing in securing Cloud, Data, endpoints, and applications.We empower businesses to innovate and scale fearlessly by offering tailored security solutions and sta...Show more
Last updated: 2 hours ago • Promoted • New!
Security Developer
Beam • lucknow, uttar pradesh, in
International Position – Security Developer.Beam Wallet is a global platform redefining how security, technology and digital finance coexist.
We are hiring a highly qualified Security Developer, wit...Show more
Last updated: 14 hours ago • Promoted • New!
Loan IQ Techno-Functional Consultant
ZealoTech People • lucknow, uttar pradesh, in
Senior Loan IQ Techno-Functional Consultant.Commercial and Syndicated Loans.Loan IQ experience and strong banking domain knowledge.
Customize, configure, and support the.Loan IQ installations, upgra...Show more
Last updated: 14 hours ago • Promoted • New!