Introduction
At IBM, work is more than a job – it’s a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you’ve never thought possible. Are you ready to lead in this new era of technology and solve some of the world’s most challenging problems? If so, lets talk.

Your Role and Responsibilities

• Conduct comprehensive vulnerability assessments and penetration testing on applications and systems to identify potential security risks.
• Provide expert guidance on application security best practices, standards, and frameworks.
• Develop and execute application security testing strategies, including static, dynamic, and interactive testing methodologies.
• Analyse security vulnerabilities, assess their impact, and provide actionable recommendations for remediation.
• Collaborate with development and IT teams to implement security controls and improve the overall security posture.
• Create detailed and informative reports on security findings, including risk assessments and remediation plans.
• Develop and maintain security dashboards and metrics to monitor and report on the security status of applications.
• Stay up-to-date with emerging security threats and trends to ensure the organization is protected.
• Manage and mentor junior security team members.
• Build strong relationships with clients and stakeholders, providing exceptional customer service.
• Contribute to the development and implementation of security policies and procedures.
• Participate in internal and external audits and compliance initiatives.

Required Technical and Professional Expertise

• Minimum seven years of experience in application security, vulnerability assessment, and penetration testing.
• Hands-on experience with Qualys Vulnerability Assessment and penetration testing tools.
• In-depth knowledge of application security principles, methodologies, and frameworks.
• Proven experience in securing applications in a complex, regulated environment, in the domestic banking industry.
• Strong understanding of security adversaries and threat intelligence.
• Experience in developing and implementing security automation solutions around VAPT.
• Excellent analytical and problem-solving skills.
• Strong written and verbal communication skills.
• Ability to work independently and a to lead as part of a team.
• Strong attention to detail and organizational skills.
• Experience of domestic banking experience

Preferred Technical and Professional Expertise

• CISSP / Security + / OSCE / OSCP Certified
• Certification in Qualys.
• SSCP, CEH, CASP