Mphasis Ltd

Asst Manager - Cyber Security

Mphasis Ltd
Bengaluru/Bangalore
Not disclosed
Work from OfficeWork from Office
Full TimeFull Time
Min. 7 yearsMin. 7 years

Job Description

Asst Manager - Cyber Security

Senior Application Security Engineer plus Vulnerability Operations

Location: India

Role Summary:

Role Summary:

The Senior Application Security Engineer serves as a technical and operational leader within the Vulnerability Operations function. This role drives large scale adoption of application security controls, partnering closely with engineering teams and the Application Security Champion community to ensure secure design, development, and deployment across the enterprise. You will lead strategic control rollouts, guide vulnerability governance, address emerging threat classes, and provide expert escalation support for the most complex AppSec issues.

Key Responsibilities:

Strategic Leadership and Program Enablement

Lead the enterprise wide operationalization of AppSec controls, ensuring scalable integration across CI/CD pipelines and diverse engineering environments.

Partner with the Application Security Champion team to embed secure development practices, coordinate training, share emerging vulnerability insights, and drive decentralized security ownership.

Own the tiered security control strategy (Tier 1 to 3), defining quarterly migration targets and ensuring cross portfolio alignment.

Advanced Vulnerability and Threat Management

Act as subject matter expert for advanced and emerging vulnerability classes (for example supply chain risks, AI and ML application threats, container and serverless misconfigurations, emerging OWASP categories).

Lead complex vulnerability triage and remediation efforts; facilitate cross team deep dive sessions to drive prioritization and timely mitigation.

Conduct proactive threat modeling and security design reviews for high risk or business critical applications.

Automation and CI/CD Security Architecture

Architect scalable CI/CD integrations for SAST, DAST, SCA, and secrets scanning using policy as code, automated gating, and risk based controls.

Implement and optimize Tier 3 merge prevention and build failure gates, ensuring engineering teams meet strict compliance requirements.

Develop reusable automation frameworks, scanning templates, and pipeline modules to accelerate secure software delivery.

Governance, Reporting and Stakeholder Engagement

Design and maintain KPIs, scorecards, and compliance dashboards using analytics platforms (Power BI, Grafana, or equivalent).

Lead risk review forums, document mitigations, publish weekly risk register updates, and deliver executive level insights on trends, gaps, and emerging threats.

Oversee quarterly migration planning, dependency tracking, and cross team alignment on AppSec program objectives.

Mentor AppSec Specialists and upskill partner engineering teams on tools, governance workflows, and emerging security techniques.

Emerging Vulnerabilities and Continuous Improvement

Stay current with modern vulnerability trends (for example supply chain risks, API threats, cloud native issues).

Evaluate tool outputs, identify false positives, and provide actionable remediation guidance.

Recommend improvements to scanning processes, workflows, and onboarding procedures.

Required Qualifications and Skills:

Bachelors or Masters in Computer Science, Cybersecurity, or related field.

7 plus years of experience in Application Security engineering, vulnerability management, or secure development.

Expertise in advanced AppSec concepts: secure design patterns, threat modeling, exploit analysis, and remediation strategy for modern architectures (microservices, APIs, cloud native).

Proven experience leading CI/CD integrated security automation (SAST, DAST, SCA, secrets scanning, infrastructure as code scanning).

Strong track record of working with engineering organizations and AppSec Champions to drive program adoption.

Demonstrated ability to interpret complex vulnerability trends, emerging threats, and zero day risk scenarios.

Excellent communication and executive presentation skills, with ability to influence senior technical leaders.

Preferred Qualifications:

Hands on experience with cloud native security tooling across AWS, Azure, or GCP.

Certifications: CISSP, CSSLP, OSWE, OSCP, GWAPT, or equivalent industry credentials.

Familiarity with policy and governance tools (OPA and Gatekeeper), software supply chain frameworks (SLSA, SBOM), and infrastructure as code security.

Experience designing or contributing to AppSec Champion programs or federated security enablement models.

Job role

Work location
Work locationBangalore
Department
DepartmentIT & Information Security
Role / Category
Role / CategoryIT Security
Employment type
Employment typeFull Time
Shift
ShiftDay Shift

Job requirements

Experience
ExperienceMin. 7 years

About company

Name
NameMphasis Ltd
Job posted by Mphasis Ltd

Similar jobs you can apply for

Hardware & Network Engineer
Hireginie Talent Cloud

Network Engineer

Hireginie Talent Cloud
Bengaluru/Bangalore
₹20,000 - ₹25,000
Field Job
Full Time
Min. 1 year
Good (Intermediate / Advanced) English
Airtel

Field Installation Engineer

Airtel
KR Puram, Bengaluru/Bangalore
₹17,000 - ₹58,000*
Field Job
Full Time
Any experience
No English Required
Prakruthi Recycling Private Limited

Laptop Repair Technician

Prakruthi Recycling Private Limited
Nagarabhavi, Bengaluru/Bangalore
₹25,000 - ₹50,000
Work from Office
Full Time
Min. 3 years
Basic English
V5 Global

Installation Engineer

V5 Global
Bengaluru/Bangalore
₹18,000 - ₹35,000*
Field Job
Full Time
Any experience
Basic English

Testing Engineer

Electronics & Controls Power Systems Pvt Ltd
Peenya, Bengaluru/Bangalore
₹15,000 - ₹18,000
Work from Office
Full Time
Min. 1 year
Basic English
Communications Test Design India Pvt Ltd

Laptop Repair Technician

Communications Test Design India Pvt Ltd
Peenya, Bengaluru/Bangalore
₹25,000 - ₹30,000
Work from Office
Full Time
Night Shift
Min. 5 years
Basic English

You can expect a minimum salary of 0 INR. The salary offered will depend on your skills, experience and performance in the interview.

The candidate should have completed the required education and people who have 7 to 10 years are eligible to apply for this job. You can apply for more jobs in Bengaluru/Bangalore to get hired quickly.

The candidate should have sound communication skills and sound communication skills for this job.

Both Male and Female candidates can apply for this job.

No, it's not a work from home job and can't be done online. You can explore and apply for other work from home jobs in Bengaluru/Bangalore at apna.

No work-related deposit needs to be made during your employment with the company.

Go to the apna app and apply for this job. Click on the apply button and call HR directly to schedule your interview.

The last date to apply for this job is . For more details, download apna app and find Full Time jobs in Bengaluru/Bangalore . Through apna, you can find jobs in 64 cities across India. Join NOW!