Application Security Technical Project Manager

3 weeks ago

india YASH Technologies Full time

Job Description


YASH is a Digital services enabler organization delivering vast portfolio of digital services to customers across the globe. Our topline services include Cybersecurity services. We are looking for a candidate with strong security testing skills pertaining to Application Security Testing. This role will be part of vibrant YASH’s Cybersecurity – Application Security services team.


As an Apps Sec Expert, you will be responsible for assessing the security of different types of applications developed in client environment. Work with development teams or vendors to detect, prioritize and remediate security flaws within the applications. Collaborate with IT and the business to identify and implement appropriate software development related security controls.


Location: Pune, Bangalore, Hyderabad, Indore

Total Experience: 12 -15 Years


Key responsibilities

  • risk analysis and define prevention and mitigation controls for application vulnerabilities
  • mitigation strategies for applications from infrastructure, architecture and secure coding perspectives.
  • application security scanning tools, interpret reports and validate identified vulnerabilities and associated risks
  • a group of application security team performing security and data privacy assessments on applications.
  • the execution of application qualification processes (cybersecurity, data privacy, trade controls, network and legal) with associated

Perform risk analysis, classification and prioritization of applications that will go through the required qualification processes.

  • with applications stakeholders on qualification processes request, planning, and execution.
  • qualification processes reports, validate identified non-compliances and associated risks and follow-up on their remediation and mitigation.
  • onboarding applications on Cybersecurity Operation Center monitoring and Vulnerability Scanning.
  • awareness to application engineering teams on security by design training, threat modeling, DevSecOps practices, and security scanning automation in the CI/CD pipeline.
  • as SME on various topics related to integration of software systems, applications and system security qualifications, risk management, compliance, and pen testing. Explain all vulnerabilities and weaknesses in the OWASP Top 10, WASC TCv2, and CWE 25 to application development teams or application vendor, and discuss effective defensive techniques
  • mitigation strategies for applications from infrastructure, architecture and secure coding perspectives.
  • application security scanning tools, interpret reports and validate identified vulnerabilities and associated risks


Qualifications:

  • Master’s Degree (IT, Computer Science, Cybersecurity, Telecommunications, Engineering, etc.)
  • 12 years equivalent experience
  • in project management of cybersecurity projects (planning, coordination, communication, etc.)
  • of application security assessment, penetration testing, threat modeling, security by design and DevSecOps best practices
  • understanding of risk management principles and frameworks
  • of and experience with various software development models like Waterfall, Agile, SBG, etc.
  • of data privacy and data protection
  • of common Web Application vulnerabilities like XSS, CSRF, and others.
  • with security certifications and guidelines like SOC2 Type2, ISO, NIST, etc.
  • of networks, operating systems, and applications architecture.
  • with cloud technologies (IaaS, PaaS, SaaS, containers) on Google, Azure, and AWS environment bachelor’s or master’s Degree (IT, Computer Science, Cybersecurity, Telecommunications, Engineering, etc.)
  • information security certification (CSSLP, CISM, CEH, CISSP, GPEN, GWAPT, OSCP or similar)
  • with software penetration testing, architectural risk assessment, threat modelling, static code analysis and secure code review
  • with network penetration testing, firewalls configuration, network architecture and security
  • in manual penetration testing of websites, APIs and networks using a variety of tools and technologies
  • in testing network isolation, escalation of privileges, authentication, expanding the attack surface and exploiting vulnerabilities
  • with mobile application security testing on iOS and Android platforms
  • securing applications on a myriad of platforms and languages including Java, .Net, Angular, etc.
  • in OS hardening on Windows and Linux environments
  • with a variety of testing tools, including HCL AppScan, Burp Pro Suite, Veracode, Qualys Suite, NMAP, Metasploit, Kali Linux, Wireshark and OWASP ZAP.
  • understanding of networks, operating systems and data-center architecture.
  • with cloud technologies (IaaS, PaaS, SaaS, containers) on Google, Azure and AWS environments
  • performing Red Team, Blue Team Operations is a strong plus.

  • Application Security Technical Project Manager

    4 weeks ago

    India YASH Technologies Full time

    Job Description YASH is a Digital services enabler organization delivering vast portfolio of digital services to customers across the globe. Our topline services include Cybersecurity services. We are looking for a candidate with strong security testing skills pertaining to Application Security Testing. This role will be part of vibrant YASH’s...

  • Head of Application Security

    3 weeks ago

    india Security Lit Full time

    Job Description: Join the forefront of cybersecurity innovation at Security Lit! We're on the hunt for a dynamic Application Security (AppSec) Manager Lead to steer our Information Security Team. This pivotal role focuses on Vulnerability Assessment and Penetration Testing within the BFSI sector. You’ll be leading a spirited team spread across the UK,...

  • Technical Project Manager

    2 months ago

    india 3M Consultancy Full time

    Job Description Job Title: Technical Project Manager.Location: Santa Barbara County, CA.Duration: Full-Time.Secret Clearance required.Our client is looking for a Senior Program Manager for an exceptional opportunity to join in establishing and growing a new services practice within a technology leader. Our client's team is expanding an already successful...

  • Technical Project Manager

    2 weeks ago

    india 3M Consultancy Full time

    Job Description Job Title: Technical Project Manager.Location: Santa Barbara County, CA.Duration: Full-Time.Secret Clearance required.Our client is looking for a Senior Program Manager for an exceptional opportunity to join in establishing and growing a new services practice within a technology leader. Our client's team is expanding an already successful...

  • IT Security Analyst

    1 month ago

    india Info Origin Inc Full time

    Job Description : We are seeking a motivated and security-conscious individual to join our team and play a key role in securing our application landscape. You will be responsible for developing and maintaining system security plans (SSPs) in accordance with industry standards, ensuring our applications comply with security regulations.Responsibilities :-...

  • IT Security Analyst

    1 day ago

    india Info Origin Inc Full time

    Job Description : We are seeking a motivated and security-conscious individual to join our team and play a key role in securing our application landscape. You will be responsible for developing and maintaining system security plans (SSPs) in accordance with industry standards, ensuring our applications comply with security regulations.Responsibilities :-...

  • Senior Security Engineer

    4 weeks ago

    india TAC Security Full time

    Job Title: Senior Security Engineer - VAPT Location: Pune, India Company Description TAC Security is a global leader in vulnerability management that specializes in protecting Fortune 500 companies, leading enterprises, and governments worldwide. With its AI-based Vulnerability Management Platform ESOF (Enterprise Security in One Framework), TAC Security...

  • Technical Project Manager – Applications

    2 months ago

    India tsworks Full time

    Job Description   tsworks Technologies India Private Limited is a technology products and services company based out of Bangalore, India. We are a subsidiary of The Software Works, Inc, USA. Our mission is to adopt, challenge and set the best practices in Information Technology. At tsworks Technologies India Private Limited , we value our employees,...

  • Technical Project Manager – Applications

    2 months ago

    India tsworks Full time

    Job Description tsworks Technologies India Private Limited is a technology products and services company based out of Bangalore, India. We are a subsidiary of The Software Works, Inc, USA. Our mission is to adopt, challenge and set the best practices in Information Technology. At tsworks Technologies India Private Limited, we value our employees, take pride...

  • Technical Project Manager – Applications

    2 weeks ago

    India tsworks Full time

    Job Description   tsworks Technologies India Private Limited is a technology products and services company based out of Bangalore, India. We are a subsidiary of The Software Works, Inc, USA. Our mission is to adopt, challenge and set the best practices in Information Technology. At tsworks Technologies India Private Limited , we value our employees,...

  • Technical Project Manager – Applications

    2 weeks ago

    India tsworks Full time

    Job Description tsworks Technologies India Private Limited is a technology products and services company based out of Bangalore, India. We are a subsidiary of The Software Works, Inc, USA. Our mission is to adopt, challenge and set the best practices in Information Technology. At tsworks Technologies India Private Limited, we value our employees, take pride...

  • Project Manager

    3 weeks ago

    india Project Partners Ltd Full time

    Job Description Role: Project Manager x 2Salary:  £475 per day (outside IR35)Location: Hybrid, 1-2 days client site (Yorkshire) as needed, remainder remote or at Project Partners head office (Milton Keynes)Are you an experienced Project Manager with a passion for both exemplar governance AND quality stakeholder management?I'm sure you said "yes" to this...

  • Project Manager

    2 weeks ago

    india Project Partners Ltd Full time

    Job Description Role: Project Manager x 2Salary:  £475 per day (outside IR35)Location: Hybrid, 1-2 days client site (Yorkshire) as needed, remainder remote or at Project Partners head office (Milton Keynes)Are you an experienced Project Manager with a passion for both exemplar governance AND quality stakeholder management?I'm sure you said "yes" to this...

  • Technical Project Manager

    4 weeks ago

    India Intuitive.Cloud Full time

    About us: Intuitive.Cloud is one of the fastest-growing (INC 5000, CRN) Cloud & SDx solution and services companies supporting enterprise customers on a global scale. Intuitive is an "Engineering Company" delivering measurable value and key business outcomes. Intuitive Superpowers: - DataOps & AI/ML - Cloud Native, AppSecOps, DevSecOps - Cloud Migration &...

  • Technical Project Manager

    4 weeks ago

    India Intuitive.Cloud Full time

    About us:Intuitive.Cloud is one of the fastest-growing (INC 5000, CRN) Cloud & SDx solution and services companies supporting enterprise customers on a global scale. Intuitive is an "Engineering Company" delivering measurable value and key business outcomes.Intuitive Superpowers:- DataOps & AI/ML- Cloud Native, AppSecOps, DevSecOps- Cloud Migration &...

  • Technical Project Manager

    1 day ago

    India Intuitive.Cloud Full time

    About us:Intuitive.Cloud is one of the fastest-growing (INC 5000, CRN) Cloud & SDx solution and services companies supporting enterprise customers on a global scale. Intuitive is an "Engineering Company" delivering measurable value and key business outcomes.Intuitive Superpowers:- DataOps & AI/ML- Cloud Native, AppSecOps, DevSecOps- Cloud Migration &...

  • Technical Project Manager

    2 weeks ago

    india Intuitive.Cloud Full time

    About us: Intuitive.Cloud is one of the fastest-growing (INC 5000, CRN) Cloud & SDx solution and services companies supporting enterprise customers on a global scale. Intuitive is an "Engineering Company" delivering measurable value and key business outcomes. Intuitive Superpowers: - DataOps & AI/ML - Cloud Native, AppSecOps, DevSecOps - Cloud Migration &...

  • Technical Project Manager

    3 weeks ago

    india Giggso Full time

    Company Description Giggso is a No-Code ModelOps Observability platform founded in 2018. We provide a single integrated platform for data science, engineering teams, and business executives to consolidate, engage, and act on information from monitoring and observability. Our platform helps AI ML teams with incident management, automation, remediation, and...

  • Senior Technical Project Manager

    1 month ago

    india Rakuten India Full time

    Overview: We are seeking a highly experienced senior technical project manager to manage projects related to our core application development systems and toolsets. The ideal candidate will have a strong technical background, excellent communication skills, and the ability to manage complex projects within agreed time, quality, and cost. Key...

  • Technical Project Manager

    1 month ago

    india iitjobs Inc Full time

    Responsibilities :- Lead and drive technical programs related to DevOps, HOS, and HISO initiatives within the organization.- Collaborate with cross-functional teams including engineering, operations, and security to define and execute program objectives and milestones.- Manage project timelines, resources, and budgets to ensure successful delivery of...