Own the end-to-end vulnerability management lifecycle across multiple environments (test, staging, DR, production).
Coordinate and oversee vulnerability scanning activities using enterprise-grade tools over appliances, VMs and containers.
Prioritize findings based on risk, ensure timely remediation with IT/Application teams, and track closure.
Coordinate internal and external penetration testing engagements with third-party vendors.
Review penetration test reports, validate findings, and follow up remediation until closure.
Act as the technical bridge between assessors and internal technical teams.
Run assurance activities across security controls (e.
g., Firewall, EDR, AV, DLP, Sandbox, etc.
). Ensure findings are remediated and closed within agreed SLAs and security baselines.
Supervise POC activities for security tools and controls.
Support requirement validation, testing, and evaluation during information security initiatives.
Bachelor’s degree in computer science, Information Systems, or equivalent education +6 years of experience in the InfoSec.
Proven hands-on experience in vulnerability management and penetration testing coordination .
Strong understanding of security controls, system hardening, and risk assessment .
Experience working closely with IT, Infrastructure, and Application teams .
Ability to translate technical findings into clear, actionable remediation steps .
Prior experience in a regulated environment (FinTech, banking is preferred) is a strong plus.
Security certifications such as CISSP, CISM, CRISC, CEH, or equivalent are an advantage.