Job Description
We are seeking a dynamic and proactive individual to join our team as a Loan Staff Engagement Specialist with a minimum of 3 years hands on experience on the Information security activities as listed below :
Responsibilities
- Build and maintain strong relationships with stakeholders, and internal teams, to facilitate effective communication and collaboration.
- Take ownership of internal Infosec tasks and ensure compliance with security policies and procedures.
- Support in collating evidence from various stakeholders for internal and external certification audits, including ISO 27001, PCI DSS, RBI and other similar audits conducted by the Bank.
- Perform initial-level Appsec activities, including API testing, mobile security and source code scans using tools such as Codeguru, SonarQube, and Burpsuite.
- Can independently perform vulnerability scans for the systems.
- Assist in identifying and addressing security vulnerabilities and risks within systems and applications.
- Provide guidance to other team members on security best practices and procedures.
- Collaborate with other team members to ensure proactive closure of vulnerabilities and audit observations.
- Stay informed about the latest security trends, threats, and technologies relevant to operations.
Qualifications
- Bachelors degree in computer science, Information Technology, or a related field.
- Previous experience in stakeholder management and engagement.
- Strong understanding of information security principles and best practices.
- Experience with certification audits, such as ISO 27001, PCI DSS and Indian regulatory audits from RBI.
- Familiarity with Business Continuity and Disaster Recovery concepts.
- Experience in conducting independent information security risk assessments.
- Familiarity with Appsec activities, including API testing, source code scanning, Web application security testing, mobile application security testing, etc.
- Proficiency in, or at least a basic understanding of, operating security testing tools such as CodeGuru, SonarQube, and Burp Suite.
- Excellent communication and interpersonal skills.
- Ability to work independently and take ownership of tasks.
- Have prior experience working within a Fintech organization and familiarity with operational processes.
- Relevant certifications, such as CISSP, CISA, CEH, ISO 27001 Lead Auditor & Lead Implementer are a plus.
(ref:hirist.tech)
