This job ad has been posted over 30 days ago...



Assistant Vice President Full-time

at BNP Pariabs in Mumbai (Published at 18-06-2018)

Skills & Experience Required:

• 8-10 years Information Security experience, specifically in Vulnerability Assessments and Penetration Testing for Mobile, Application and Web security
• Perform formal Vulnerability Assessment and Penetration tests on web-based applications, networks and computer systems
• Probe for vulnerabilities in network, systems, servers
• Pinpoint methods that attackers could use to exploit weaknesses and logic flaws
• Red Team Assessment-Employ social engineering to uncover security holes (e.g. poor user security practices or password policies)
• Research and document security findings for the management and IT teams
• Work on improvements for security services, including the continuous enhancement of existing methodology material and supporting assets
• Helps matures the risk based metrics, scorecards and dashboards to track performance as well as identify and monitor trends across the Bank.
• Builds proactive and influential working relationships with stakeholders
• Stays current in technology specific operational risk management techniques, industry best practices, and regulatory requirements.
• Experience in Malware detection and analysis
• Experience in integrating various security and data protection and offensive security technologies into a cohesive architecture that sufficiently mitigates risk to the Bank.
• Experience in exploiting security vulnerabilities in web-based applications, networks and systems.
• Team-player – focus on the success of the whole team. Working well both with others, as well as individually;
• Good stakeholder management skills;
• Good listening and analytical skills – being able to come to a thoughtful and business focused conclusion quickly;
• Ability to co-operate and work well with others adopting an approachable style – Important as we work closely with a large and diverse set of suppliers and customers;
• Ability to see the customer perspective, i.e. from a business point of view, the most secure solution is not always workable or realistic considering costs and benefits;
• Demonstrating a calm professional approach, with a good understanding of delivery within time constraints and the need to escalate/inform departmental management as appropriate;
• Adapting personal approach to suit situations, individuals, groups and cultures. Is flexible in relation to getting the job done;
• Demonstrating a high-level of commitment and self-motivation, combined with enthusiasm and a genuine interest in the role of Risk Assessment in business;
• Ability to express views clearly and fluently, both orally and in writing. Considers the audience, avoiding technical jargon wherever necessary and appropriate.


• A professional qualification relevant to Information Security (such as a university degree, CISSP, CEH, OSCP etc.);
• Excellent understanding of threat and offensive technologies
• A good understanding of large-scale technology infrastructure;
• Experience of formal document creation, such as the creation of presentations, reports or procedures. Presenting documentation in a professional and well-structured format;
• Strong MS Office skills (core applications).

Viewed: 744 times
« Go back to category
Is this job ad fake? Report it!   
Recommend to a friend