How much salary can I expect as a Vice President - Offensive Security Lead in Sbi Cards And Payment Services Limited in undefined?

You can expect a minimum salary of 0 INR. The salary offered will depend on your skills, experience and performance in the interview.

What is the eligibility criteria to apply for Vice President - Offensive Security Lead in Sbi Cards And Payment Services Limited in undefined?

The candidate should have completed undefined degree and people who have 5 to 31 years are eligible to apply for this job. You can apply for more jobs in undefined to get hired quickly.

Is there any specific skill required for this job?

The candidate should have undefined skills and sound communication skills for this job.

Who can apply for this job?

Both Male and Female candidates can apply for this job.

Is it a work from home job?

No, it’s not a work from home job and can’t be done online. You can explore and apply for other work from home jobs in undefined at apna.

Are there any charges or deposits required while applying for the role or while joining?

No work-related deposit needs to be made during your employment with the company.

How can I apply for this job?

Go to the apna app and apply for this job. Click on the apply button and call HR directly to schedule your interview.

What is the last date to apply?

The last date to apply for this job is . For more details, download apna app and find Full Time jobs in undefined . Through apna, you can find jobs in 74 cities across India. Join NOW

Vice President - Offensive Security Lead

Sbi Cards And Payment Services Limited

Gurgaon/Gurugram

Not disclosed

Work from Office

Full Time

Min. 5 years

Job Details

Job Description

Vice President - Offensive Security Lead

About Us

SBI Card is a leading pure-play credit card issuer in India, offering a wide range of credit cards to cater to diverse customer needs. We are constantly innovating to meet the evolving financial needs of our customers, empowering them with digital currency for seamless payment experience and indulge in rewarding benefits. At SBI Card, the motto 'Make Life Simple' inspires every initiative, ensuring that customer convenience is at the forefront of all that we do. We are committed to building an environment where people can thrive and create a better future for everyone.

SBI Card is proud to be an equal opportunity & inclusive employer and welcome employees without any discrimination on the grounds of race, colour, gender, religion, creed, disability, sexual orientation, gender identity, marital status, caste etc. SBI Card is committed to fostering an inclusive and diverse workplace where all employees are treated equally with dignity and respect which makes it a promising place to work.

Join us to shape the future of digital payment in India and unlock your full potential.

What’s in it for YOU

SBI Card truly lives by the work-life balance philosophy. We offer a robust wellness and wellbeing program to support mental and physical health of our employees
Admirable work deserves to be rewarded. We have a well curated bouquet of rewards and recognition program for the employees
Dynamic, Inclusive and Diverse team culture
Gender Neutral Policy
Inclusive Health Benefits for all - Medical Insurance, Personal Accidental, Group Term Life Insurance and Annual Health Checkup, Dental and OPD benefits
Commitment to the overall development of an employee through comprehensive learning & development framework

Role Purpose

Responsible for ensuring development, implementation, and effectiveness of vulnerability management and security testing programs, initiatives, and capabilities

Role Accountability

Assist with strategic planning, providing input on capabilities and methods used for vulnerability management and security testing, and driving improvements
Develop Vulnerability management framework, support compliance and risk management activities, recommending security controls and corrective actions to mitigate vulnerability risks
Lead innovative research and stay updated on emerging threats, vulnerabilities, and exploits with the goal of developing new TTPs improving attack efficacy
Partner with Security Operations team to develop tooling and instrumentation (including automation) to improve detection and response capabilities
Design scenario-based / thematic security testing to identify vulnerabilities in the product and gaps in detection and response capabilities
Engage with the developers in developing workarounds / mitigation plan and ensure they are implemented per policy
Manage security testing related programs such as responsible disclosure / bug bounty
Conduct vulnerability assessments and penetration testing, red teaming, blue teaming (application and/or infrastructure) and articulating security issues to technical and non-technical audience
Provide expertise in security tools for vulnerability assessment, penetration testing & application security
Perform vulnerability risk profiling and prioritization of vulnerabilities
Perform regular status reviews with IT asset owners & senior leadership to ensure compliance with InfoSec policies
Provide security architecture and advice in support of application development, infrastructure, and enterprise technology projects
Drive secure coding related training and awareness initiatives for software developers & architects at SBI Cards
Oversee the development, implementation and maintenance of vendor standard operating procedures/ run book in line with SBI Card policies & standards
Monitor offensive security vendor SLAs, perform regular review with vendor management and report to SBI Card leadership
Ensure process documentation and compliance adherence

Measures of Success

Reduction in security vulnerabilities in SBI Card IT platforms
Reduction in information leakage and exploitation from vulnerabilities
Compliance with regulatory guidelines
Timely and accurate vulnerability testing and remediation
Vendor SLA Adherence
No adverse observations in internal/external audits
Process Adherence as per MOU

Technical Skills / Experience / Certifications

Strong knowledge of web development and programming languages e.g. Java, .NET, Python, etc.
Strong knowledge of web application technology, e.g. Application Servers, Web Servers, Databases
Ability to perform security testing on an app development project either using struts, spring much like java based frameworks
Experience of performing manual code review and manual dynamic testing to find application vulnerabilities
GIAC/GWAPT/GPEN/GXPN/OSCP/CISSP certification, or any other equivalent industry accredited certification
Exposure to methodologies, such as OWASP preferred, Penetration, Host, Applications (Ethical Hacking tools such as Nessus, Qualys, Nexpose), Vulnerability Assessments - Network, Host, Applications, Security in SDLC (Application Security), Secure code review - .NET and J2EE technologies
Experience of building, deploying, and managing offensive security operational infrastructure
Knowledge of open source intelligence gathering and social engineering
Knowledge of Commodity and advanced threat actor Tactics, Techniques and Procedures
Expert-level knowledge and experience in identifying multiple classes of vulnerabilities that includes cross-site scripting, SQL Injection, CSRF, cryptographic related weakness, and code injection

Competencies critical to the role

Analytical Ability
Innovation & Problem Solving
High Impact Communication
Market Awareness
Continuous Learning

Qualification

Bachelor of Engineering in Computer Science / Engineering/ or any other relevant discipline, Masters in Computer Science/or any other relevant discipline

Preferred Industry

BFSI, NBFC, E-Commerce, IT development and operations