Manage timelines / scope / cost / risks for the assigned projects and escalate issues, as necessary.
Liaise with all stakeholders / teams like Risk, IT, Business, Operations etc. and manage reporting to the respective project steering committees.
Working Knowledge of Risk Assessment, Vulnerability Assessment, Penetration Testing, Application Security, Baseline Review, Business Continuity Planning (BCP) and Disaster Recovery (DR).
To translate information security requirements into business needs and vice versa.
Explain the VAPT findings to technical and non-technical teams.
Track and coordinate with different teams to close the risks identified during VA/PT exercise.
Understanding of Information Security Standards and Frameworks like ISO 27001, PCI DSS, OWASP, NIST, SANS and CIS.
Experience in drafting RFP’s and vendor selection process for IS products/services.
Working knowledge / experience of Banking activities, services and products.
Prepare project status update presentations and present to senior management and project stakeholders.
Draft Information Security Awareness Newsletters and training materials.