Jobs
>
Gurgaon

    Application Security Lead - Gurugram, India - Egon Zehnder

    Egon Zehnder
    Egon Zehnder Gurugram, India

    2 days ago

    Default job background
    Full time
    Description

    The Company

    Knowledge Centre India (KCI)

    Established in January 2005, KCI in Gurgaon, works in close collaboration with the Global offices of Egon Zehnder. There are 5 teams that make up KCI: Research, Research Operations, Visual Solutions, Projects/CV Capture and Digital IT.

    Your Journey at Egon Zehnder Starts Here

    At EZ, you have the opportunity to deliver digital transformation initiatives across the globe for the organization. Our focus on emerging technology solutions along with our commitment to internal career growth and exceptional client value has resulted in a firm that is routinely recognized as a "Best Place to Work."

    Who we are

    We are part of Digital-IT team established 14 years ago in Gurgaon, India to provide technology support and rollout digital initiatives to 60 plus global offices. Digital IT has six key pillars – Collaboration Technology; Functional Technology; Digital Technology; Security & Architecture; Infrastructure & Services, Digital Success to support business and to take lead on digital transformation initiatives with the total strength of 150+ team members across the globe.

    Requirements

    Job Description

    Be a part of the application security team as a team lead and work closely with the Application Development team to ensure that any software developed or acquired meets the stringent standards while enabling rapid innovation to meet our firm and clients' everchanging needs.

    Successful candidates will be security evangelists who can translate security concepts into language that is meaningful to many audiences, including business and technical leaders and individual contributors.

    Candidates must be able to approach application security from the perspective of risk management and avoid purely academic thinking about software security. Demonstrable ability to influence decision‐making processes at all levels of a large organization will be critical to success.

    Responsibilities

    As an application security team lead, your role revolves around ensuring the security of software applications developed within your organization. Here's a breakdown of the key responsibilities typically associated with this role:

    1. Team Management

  • Lead a team of application security professionals, including security engineers and analysts.
  • Provide guidance, mentorship, and support to team members, fostering their professional development and growth.
  • Coordinate team activities, prioritize tasks, and allocate resources effectively to meet security objectives.

    • 2. Security Strategy and Roadmap:

  • Develop and implement a comprehensive application security strategy aligned with organizational goals and industry best practices.
  • Define security standards, policies, and procedures specific to application development and deployment.
  • Establish a roadmap for enhancing the security posture of applications over time, considering emerging threats and technologies.

    • 3. Security Assessment and Testing:

  • Oversee the assessment and testing of applications for security vulnerabilities throughout the software development lifecycle (SDLC).
  • Conduct or coordinate security reviews, code reviews, and penetration testing to identify and remediate security weaknesses.
  • Collaborate with development teams to integrate security testing tools and processes into their workflows.

    • 4. Security Awareness and Training:

  • Promote awareness of application security risks and best practices among development teams, stakeholders, and other relevant parties.
  • Deliver or facilitate training sessions and workshops on secure coding practices, vulnerability management, and related topics.
  • Foster a culture of security consciousness and accountability across the organization.

    • 5. Compliance and Regulatory Compliance:

  • Ensure that applications comply with relevant security standards, regulations, and industry certifications (e.g., OWASP, PCI DSS, GDPR).
  • Collaborate with compliance teams to assess and address security requirements imposed by regulatory bodies or contractual obligations.

    • 6. Vendor and Third-Party Risk Management:

  • Assess the security posture of third-party applications, libraries, and services used within the organization's environment.
  • Establish and maintain processes for evaluating and managing the security risks associated with third-party software components.

    • 7. Continuous Improvement and Innovation:

  • Monitor industry trends, emerging threats, and evolving security technologies to continuously improve the effectiveness of application security practices.
  • Identify opportunities for innovation and automation to streamline security processes and enhance the efficiency of security operations.

    • Skills:

  • Prior work experience in application security is mandatory.
  • Should have solid experience in Penetration testing.
  • Candidates must have strong leadership skills.
  • Candidates must have excellent verbal and written communication skills.
  • Candidates should be familiar with waterfall and agile development processes and have experience integrating secure development practices into both models.
  • Familiarity with a variety of development and testing tools
  • Candidates must be able to explain all vulnerabilities and weaknesses in the OWASP Top 10, WASC TCv2, and CWE 25 to any audience and discuss effective defensive techniques.
  • Familiarity with industry standards and regulations including PCI, FFIEC, SOX, and ISO27001 is desired.
  • Experienced in tools like Snyk, Tenable WAS, Invicti, Burp suite, Postman, kali linux
  • Experience in conducting Threat Modelling using STRIDE, PASTA etc

    • Experience: At least 6 years of relevant experience

    Should be willing to support and be available during non-working hours in case of emergency situations.

    Benefits

    Benefits which make us unique

    At EZ, we know that great people are what makes a great firm. We value our people and offer employees a comprehensive benefits package. Learn more about what working at Egon Zehnder can mean for you

    Benefits Highlights:

  • 5 Days working in a Fast-paced work environment.
  • Work directly with the senior management team
  • Reward and Recognition
  • Employee friendly policies
  • Personal development and training
  • Health Benefits, Accident Insurance
  • Skillventory

    Information Security with a Leading Nbfc

    1 week ago

    Skillventory Gurgaon, India

    **Information Security with a leading NBFC**: · - From 4 to 8 year(s) of experience · - ₹ Not Disclosed by Recruiter · - Gurgaon/Gurugramor · **Roles and Responsibilities** · Key Responsibilities: · - Learns about business initiatives, products, and attack surfaces to drive relev ...

  • Experis IT Private Limited

    Lead - IT Infrastructure & Security

    1 week ago

    Experis IT Private Limited Gurugram, India

    Roles & responsibilities : · - Should have complete understanding and hands-on experience on IT security maintenance and monitoring, patching, desktop/laptop, on-premises networking, Firewalls, VPN, IT and compliance policies etc. · - Should be able to manage and develop end-to-e ...

  • Egon Zehnder

    Application Security Lead

    1 day ago

    Egon Zehnder Gurugram, India Full time

    The Company · Egon Zehnder ) is trusted advisor to many of the world's most respected organizations and a leading Executive Search firm, with more than 550 consultants and 63 offices in 36 countries spanning Europe, the Americas, Asia Pacific, the Middle East and Africa. Our clie ...

  • Kyndryl

    IT Security Services Lead

    4 days ago

    Kyndryl Gurugram, India Paid Work

    Who We Are · At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inc ...

  • Egon Zehnder

    Lead - Endpoint Security & Tooling

    1 day ago

    Egon Zehnder Gurugram, India

    Egon Zehnder​ · Egon Zehnder ) is trusted partner to many of the world's most respected organizations and is a leading leadership advisory firm, with more than 560+ consultants and 63 offices in 36 countries spanning Europe, the Americas, Asia Pacific, the Middle East and Africa. ...

  • Egon Zehnder

    Lead - Endpoint Security & Tooling

    3 days ago

    Egon Zehnder Gurugram, India

    Role · s and ResponsibilitiesExpertise in Security Tools: · Lead the management and optimization of the Zscaler suite of applications, including Zscaler Internet Access (ZIA), Zscaler Private Access (ZPA), Browser Isolation, Firewall (Tunnel 2.0), Deception, and other endpoint se ...

  • Egon Zehnder

    Lead - Endpoint Security & Tooling

    3 days ago

    Egon Zehnder Gurugram, India

    Egon Zehnder​ · Egon Zehnder ) is trusted partner to many of the world's most respected organizations and is a leading leadership advisory firm, with more than 560+ consultants and 63 offices in 36 countries spanning Europe, the Americas, Asia Pacific, the Middle East and Africa. ...

  • Fareportal India Pvt Ltd

    Fareportal - Lead - Information Security - GRC

    3 days ago

    Fareportal India Pvt Ltd Gurugram, India

    Title: Lead - Information Security (GRC). · Location: Gurgaon, India. · Job Description: · Who We Are: · Fareportal is a travel technology company powering a next-generation travel concierge service. · Utilizing its innovative technology and company owned and operated global cont ...

  • NOKIA

    Cyber Security Architect

    2 days ago

    NOKIA Gurgaon, India

    **Come create the technology that helps the world act together** · Nokia is committed to innovation and technology leadership across mobile, fixed and cloud networks. Your career here will have a positive impact on people's lives and will help us build the capabilities needed for ...

  • Orange Business

    Chief Security Officer

    1 week ago

    Orange Business Gurgaon, India

    **About the role**: · The Chief Security Officer is responsible for the organization's Security Program including but not limited to daily operations of the IT security program, oversight of the annual and ongoing risk assessment process, development, implementation, and maintena ...

  • BT Group

    Cyber Security Associate

    1 day ago

    BT Group Gurgaon, India

    Cyber Security Associate · **Job Req ID**:10864**Posting Date**:03-Feb-2023**Profession**:Security**Location**:25A DLF City Phase-III,, Gurugram, India**Salary**:Competitive- Key Skills · - SIEM - IBM Qradar,Splunk,Securonix, Trelix · - SOAR-Resilient, Sentinel, PA XOAR · - EndPo ...

  • NOKIA

    Security Assessment Expert

    2 hours ago

    NOKIA Gurgaon, India

    **Come create the technology that helps the world act together** · Nokia is committed to innovation and technology leadership across mobile, fixed and cloud networks. Your career here will have a positive impact on people's lives and will help us build the capabilities needed for ...

  • Egon Zehnder

    Security Architect

    1 day ago

    Egon Zehnder Gurgaon, India

    **Egon Zehnder** · The firm is a private partnership which allows us to operate independent of any outside interests. As a result of this unique culture, Egon Zehnder has the highest professional staff retention rate for a global firm in our profession. We work with both disrupto ...

  • Maruti Suzuki India Ltd

    Information Security Officer-it

    3 days ago

    Maruti Suzuki India Ltd Gurgaon, India

    Department/ Division-IT · - Job Title-Chief Information Security Officer (CISO) · - Level in the organization-SMGR/ AGM · - Educational Qualification-BE / B. Tech/ MCA/ MBA from Premier Institute · - Work Experience (Years): 13-15 years · - Role: Experience and exposure to Inform ...

  • NOKIA

    Grc Expert

    2 days ago

    NOKIA Gurgaon, India

    **Come create the technology that helps the world act together** · Nokia is committed to innovation and technology leadership across mobile, fixed and cloud networks. Your career here will have a positive impact on people's lives and will help us build the capabilities needed for ...

  • Airtel India

    Network Security Sme

    1 week ago

    Airtel India Gurgaon, India

    Lead - network Security & SDWAN · Firewall Management · SME (L-3/L-4) for the Network Security products like Firewall IPS/IDS, SDWAN, Firewall assurance, Management across Multiple Customers ...

  • Junglee Games

    Avp- Information Security

    5 days ago

    Junglee Games Gurgaon, India

    As our **AVP - Information Security** you will foster a security-first culture within the company and help implement solutions that will enhance their overall security posture and user experience by providing adequate awareness training, workshops, information sessions etc. · **R ...

  • S&P Global

    Junior Security Architect

    4 days ago

    S&P Global Gurugram, Haryana, India

    **About the Role**: · **Grade Level (for internal use)**: 09 · **Role Description**: Define as a Junior Security Architect, you will play a critical role in enhancing and maintaining the security posture of our organization. Working closely with senior security architects and oth ...

  • NOKIA

    Penetration Testing Security Expert

    2 days ago

    NOKIA Gurgaon, India

    **Come create the technology that helps the world act together** · Nokia is committed to innovation and technology leadership across mobile, fixed and cloud networks. Your career here will have a positive impact on people's lives and will help us build the capabilities needed for ...

  • Maruti Suzuki India Ltd

    Security Architect

    2 hours ago

    Maruti Suzuki India Ltd Gurugram, Haryana, India

    Division · : ITIS · Department · : ITEA · Job Location · : MSIL Gurgaon · Job Title · : Security Architect · Job Role · : Leading the Security domain in Enterprise Architecture Practice at Maruti Suzuki · Reporting To · : Enterprise Architect · Level in the organization · : DM/MG ...