Penetration Testing Project Manager

Responsibilities What will you contribute? We are seeking an experienced Project Manager/coordinator to oversee our web, mobile and infrastructure penetration testing activities. The ideal candidate will manage projects by liaising with third-party penetration test providers and internal teams to ensure the security and integrity of our systems. As part of Finastra’s Threat & Vulnerability Management team, you’ll be directly responsible for administering and actively maturing our company’s Penetration Testing program. Your crucial role will involve preventing cyber-attacks and safeguarding the company and our clients from vulnerabilities. Responsibilities & Deliverables: Your deliverables will include, but are not limited to, the following: Penetration Testing Management: Coordinate and oversee advanced penetration testing activities, including network, web application, and mobile application testing. Serve as the primary point of contact between third-party penetration testers and internal teams. Facilitate communication and provide regular updates to stakeholders on the progress of penetration testing activities. Project Management: Plan, prioritize, and manage multiple penetration testing projects simultaneously, ensuring timely delivery of high-quality results within budget constraints. Collaborate with application teams and environment owners to schedule and execute testing. Defect Management: Record findings in a centralized repository for review, prioritization, and remediation tracking. Compliance and Reporting: Ensure compliance with industry standards, regulations, and best practices. Prepare detailed penetration testing reports with findings, analysis, and recommendations for internal stakeholders. Metric Reporting: Establish, track, and report penetration testing metrics periodically by product, application, and/or domain. Utilize Power BI and other reporting tools to create insightful reports on penetration testing outcomes and risk assessments. Vendor Management: Act as the primary contact and relationship manager for third-party penetration testing providers, ensuring successful execution and adherence to service level agreements (SLAs), contract negotiation, scope definition, and effort estimation. Continuous Improvement: Drive initiatives to enhance the effectiveness and efficiency of penetration testing processes, methodologies, and tools. Contribute to innovative solutions for emerging cybersecurity challenges. Technical Expertise: Stay informed about the latest cybersecurity threats, vulnerabilities, and attack techniques, applying this knowledge to improve penetration testing methodologies and tools. Required Experience: Minimum of five years of experience in cybersecurity, with a specific focus on penetration testing. Proven experience in project management, preferably in the field of information security. Intermediate knowledge of security principles and ITIL framework. Strong technical proficiency in areas such as network security, web application security, mobile security, and social engineering. Good understanding of Software Development Life Cycle (SDLC) best practices. Excellent verbal and written English communication skills, with the ability to effectively interact with technical, business, and other stakeholders at all levels of the organization. Superior analytical and problem-solving abilities, enabling assessment of complex security issues, prioritization of tasks, and development of practical solutions. Adaptability in tailoring conversations and presentations for different audiences, spanning technical, nontechnical, and executive leadership. Ability to manage multiple projects simultaneously and under tight deadlines Beneficial - Proficiency in Power BI and reporting skills. Demonstrated commitment to continuous learning and professional development in the field of cybersecurity. Education/Certifications Desired Bachelor's degree from an accredited college or university, or equivalent experience. A degree in Computer Science, Computer/Data Systems Management or a related field or discipline is preferred. Project Management Professional (PMP) certification is preferred.