Kotak Mahindra Bank

Kotak Mahindra Bank is hiring Team Member – External Security Assessments

April 10, 2024
chandan

Grade: Manager

Job Role:

  • Manage and provide guidance to a team of external penetration testers / analysts and vendor project leads;
  • Develop and enhance processes around external penetration testing security best practices, exceptions, continuous threat exposure management etc.;
  • Create, discuss and release dashboards and reports periodically to management, business owners and relevant stake holders;
  • Ensure that application security testing for existing / new applications is performed as per policy, track the compliance status, following up with application owners for closures of the security findings;
  • Perform impact analysis on all application updates, and provide recommendations for applying them effectively;
  • Responsible for comprehensive application testing, reporting and sign-off of critical public facing applications and third party applications;
  • Plan and scheduling of applications for calendar assessments, following up with application owners for details, reporting and tracking closures of the findings etc. in the production environment;
  • Co-ordinate and support vendors for external application penetration testing activities;
  • Explain and articulate effectively the Risk/Vulnerabilities and weaknesses as per in the OWASP Top 10, CWE 25 and other known security standards to any audience and discuss impact and its effective controls/mitigation techniques.

Job Requirements:

  • Bachelor or Graduate Degree in any discipline;;
  • 3 – 5 years of experience in Cybersecurity and relevant hands-on experience in Application Security;
  • Knowledge of Security Standards such as OWASP, SANS, MITRE, CIS etc.;
  • CEH, OSCP certifications preferred;
  • Sound understanding of security technologies, common external / perimeter security threats and industry best practices;
  • Strong project management skills (objective setting, communications, risk management, performance tracking, evaluation/measurement);
  • Self-starter; consistently energetic, positive and proactive;
  • Ability to convey technical information to senior management in a simple and unambiguous manner;
  • Excellent analytical, communication and presentation skills.