Job Description:The Team Lead Security Testing profile is a pivotal role of the Security Testing Services Team. It includes managing and executing complex security testing projects, leading a team of security analysts and ensuring high level of quality in service delivery. It involves enhancing the team’s skill sets and providing high quality deliverables while improving the efficiency of the testing.Job Responsibilities:The candidate is expected to execute complex and enterprise application and infrastructure security testing projectsThe candidate is expected to ensure completion of project on time, co-ordination for pre-requisites, tracking delays, etc.The candidate is expected to gain in-depth knowledge and understanding of enterprise networks, web & mobile applications developed in various languages (i.e. Java, ASP, .NET, C++, C#, etc.)The candidate will be involved in application architecture understanding, threat identification, vulnerability identification and control analysisThe candidate is expected to do likelihood determination, impact analysis and risk determinationThe candidate is expected to showcase prioritization of risks including solution recommendation and documentationThe candidate is expected to identify and infer the business risk posed by the weaknesses identified during the assessmentsThe candidate would have to manage multiple complex projects simultaneously, when requiredThe candidate is expected to engage with both business and technical teams within and outside the organization from a project scope definition, project execution, project closure and post project support perspectivesThe candidate is expected to mentor and train junior resources with focus on enhancing their skill setsThe candidate is expected to monitor their team members’ adherence to established security testing processes and organization’s policies and proceduresThe candidate is expected to conduct project reviews to ensure a thorough testing is conducted by the teamThe candidate is expected to perform technical reviews to identify errors and suggest changes to ensure highest quality of the deliverablesThe candidate is expected to execute complex test cases and develop proof of concept for showcasing the vulnerabilities to the clientThe candidate is expected to track errors made by the analysts and develop an improvement plan for themThe candidate should be open for onsite deployments anywhere across the world as business demandsRequired skill set: 4+ years of Application Security Testing ExperienceExpertise in web application security testingExpertise in mobile application security testingExpertise in API testingExpertise in Network infrastructure security testingAbility to handle difficult situations and to provide alternative solutions or workaroundsExperience in training and mentoring other team membersGood verbal and written communication skills with the ability to talk to both business teams and technical teamsPreferred skill set:•Experience in Application Architecture Review will be a plus.•Security certifications such as OSCP, CEH, etc.•Knowledge of Cryptography (symmetric and asymmetric encryption, PKI, etc.)•Flexible and creative in helping to find acceptable solutions for customers•Ability to work on multiple complex assignments simultaneously•Ability to work independently with minimal oversight or in teams•Experience with leading and guiding a team of security analysts•Additional knowledge of risk assessment methodologies and frameworks and how to apply them to diverse applications.•Knowledge of different standards such as PCI DSS, HIPAA, ISO, etc.