Job Description

Calling all innovators - find your future at Fiserv. We\'re Fiserv, a global leader in Fintech and payments, and we move money and information in a way that moves the world. We connect financial institutions, corporations, merchants, and consumers to one another millions of times a day - quickly, reliably, and securely. Any time you swipe your credit card, pay through a mobile app, or withdraw money from the bank, we\'re involved. If you want to make an impact on a global scale, come make a difference at Fiserv. Job Title Manager, Cyber Security What does Cyber Security Professional do at Fiserv As an experienced member of our Cyber Security Group you will be responsible for performing security assessments on Fiserv products and Guiding the Application teams on remediating the issues. Along with this you\'ll be providing technical guidance, support, and training to enhance team members\' skills and knowledge. What You Will Do Team Leadership: Lead, mentor, and manage a team of application-level penetration testers, fostering a collaborative and innovative team culture. Provide technical guidance, support, and training to enhance team members\' skills and knowledge. Penetration Testing Strategy: Develop and execute a comprehensive application-level penetration testing strategy aligned with organizational security goals. Coordinate with stakeholders to identify testing requirements and prioritize assessments. Continuously improve testing methodologies and tools. Project Management: Plan, schedule, and track penetration testing projects, defining scopes and objectives. Manage resources effectively and identify potential risks, developing contingency plans as needed. Technical Execution: Conduct advanced application-level penetration tests, vulnerability assessments, code reviews, and security architecture reviews. Identify and exploit security weaknesses, presenting findings to relevant stakeholders. Reporting and Documentation: Prepare detailed penetration testing reports, including identified vulnerabilities, recommended mitigations, and risk assessments. Collaborate with teams to ensure timely remediation of identified vulnerabilities. Maintain accurate and up-to-date documentation. Compliance and Standards: Ensure penetration testing practices align with industry standards and regulations. Stay informed about changes in cybersecurity compliance frameworks and integrate them into the testing process. Web-Based Red Team Activities: Advanced Web Application Testing: Perform thorough assessments of web applications, identifying vulnerabilities like SQL injection, XSS, CSRF, etc. Scenario-Based Attack Simulations: Design and implement complex attack scenarios to assess defense mechanisms and response protocols. API Security Testing: Evaluate the security of web application APIs, identifying weaknesses and authentication/authorization flaws. Active Directory Assessment: Test the security of the Active Directory environment, identifying privilege escalation opportunities. Mobile Application Security: Collaborate with mobile app testers to evaluate the security of web-service interactions. What You Will Need To Have Bachelor\'s degree in computer science, Information Security, or related field. 6+ years of experience in cybersecurity, with a strong focus on web application security and penetration testing. Previous experience in managing penetration testing teams and project management. Strong process & tools knowledge to integrate security tools into development, CI/CD pipeline Certifications: CISSP (Certified Information Systems Security Professional), OSCP (Offensive Security Certified Professional), GWAPT (GIAC Web Application Penetration Tester), CPENT (Certified Penetration Tester) or equivalent certifications are highly desirable. Proficient in web application vulnerabilities, testing tools, and methodologies. Knowledge of security standards, compliance frameworks, and industry best practices. Strong communication, problem-solving, and leadership skills. What Would Be Great To Have knowledge of various open security tools such as proxies, fuzzers. prove ability to mobilize & motivate teams, set direction & approach , resolve conflicts , deliver tough msg with grace Thank You For Considering Employment With Fiserv. Please Apply using your legal name Complete the step-by-step profile and attach your resume (either is acceptable, both are preferable). What You Should Know About Us Fiserv is a global fintech leader with 40,000-plus (and growing) associates proudly serving clients in more than 100 countries. As a FORTUNE 500 company, one of Fast Company\'s Most Innovative Companies, and a top scorer on Bloomberg\'s Gender-Equality Index, we are committed to excellence and purposeful innovation. Our Commitment To Diversity And Inclusion We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation. Warning About Fake Job Posts Please be aware of fraudulent job postings that are not affiliated with Fiserv. Fraudulent job postings may be used by cyber criminals to target your personally identifiable information and/or to steal money or financial information. Any communications from a Fiserv representative will come from a legitimate business email address. We will not hire through text message, social media, or email alone, and any interviews will be conducted in person or through a secure video call. We won\'t ask you for sensitive information nor will we ask you to pay anything during the hiring process. We also won\'t send you a check to cash on Fiserv\'s behalf. If you see suspicious activity or believe that you have been the victim of a job posting scam, you should report it to your local law enforcement.

foundit