About the Role:
We are seeking a highly experienced and motivated Practitioner to spearhead our Security Assurance offerings that includes Vulnerability Management, Penetration Testing & Red Teaming Activities. In this role, you will be responsible for defining the strategic direction of the practice, driving growth, and ensuring the delivery of high-quality security services to our clients.
Responsibilities:
Practice Leadership:
- Define and execute the overall strategy for the Vulnerability Management practice.
- Identify and develop new service offerings to meet evolving client needs.
- Establish and maintain strong relationships with key technology partners.
- Stay abreast of industry trends and emerging security threats.
Solution Development & Delivery:
- Lead the development of comprehensive Vulnerability Management, Application Security, Penetration Testing and Red Teaming solutions tailored to client requirements.
- Oversee the implementation and management of security services, including Vulnerability Management, Application Security, Penetration Testing and Red Teaming solutions and security awareness training.
- Familiarity with compliance & security standards across the enterprise IT landscape. Knowledge of compliances (PCI DSS, SOX etc.) and IS standards (ISO 27001, BS25999, ISO 2700X, OWASP, CIS, etc).
- Develop and maintain comprehensive service documentation and operational procedures.
RFP Response & Pre-Sales:
- Lead the technical response to RFPs and RFIs, crafting compelling solutions that address client security challenges.
- Collaborate with sales teams to develop winning proposals and presentations.
- Provide expert security guidance during client meetings and presentations.
Client Relationship Management:
- Build and maintain strong relationships with clients.
- Conduct regular service reviews and provide proactive security recommendations.
- Act as a trusted advisor to clients on security matters.
Qualifications:
- 8+ years of experience in information security, with a focus on Red Teaming & Vulnerability Management services.
- Deep understanding of security technologies and methodologies that includes but not limited to Nessus, Qualys, Rapid7, Checkmarx, Burpsuite and Security Awareness.
- Experience in managing and delivering security services to enterprise clients.
- Proven ability to lead and mentor technical teams.
- Excellent communication, presentation, and interpersonal skills.
- Strong analytical and problem-solving abilities.
- Bachelor’s degree in computer science or a related field.
- Relevant industry certifications (CEH, OSCP) are highly desirable.