Security Specialist/Senior Security Specialist

About Exela Technologies(SourceHOV)

Exela Technologies, Inc. (“Exela”) is a global business process automation ("BPA"​) leader combining industry-leading enterprise software and services with decades of experience. Our BPA suite of solutions are deployed across banking, healthcare, insurance and other industries to support mission critical environments. Exela is a leader in workflow automation, attended and un-attended cognitive automation, digital mail rooms, print communications, and payment processing with deployments across the globe. Exela partners with customers to improve user experience and quality through operational efficiency. Exela serves over 3,700 customers across more than 50 countries, through a secure, cloud-enabled global delivery model. We are 18,000 employees strong across the Americas, Europe and Asia. Our client list includes 60% of the Fortune® 100, along with many of the world’s largest retail chains, banks, law firms, healthcare insurance payers and providers and telecom companies.

Job Description

• Bachelor's Degree (or equivalent) or advanced degree highly desired.
• 5- 7 years of Security Testing, Team Management and Project Management Experience
• In-depth knowledge of network & application security vulnerabilities
• In-depth knowledge and experience with OWASP, SANS, CERT, WASC standards/frameworks for security testing and security code reviews. OSSTMM for network penetration testing
• Experience in manual and automation penetration testing tools and techniques. Should have experience in using tools like Burp, ZAP, Veracode, Fortify, WebInspect, NMap etc.
• Experience in performing threat modelling and identify attack vectors. Must be familiarity with STRIDE and DREAD concepts.
• Must be able to handle tasks/activities with competing priorities
• Must be able to work independently & guide team
• Ability to handle multiple customers simultaneously from different industry verticals
• Ability to manage a diverse team and getting them to deliver as expected
• Ability to handle team challenges and resolve conflicts
• Good verbal and written communication skills with the ability to talk to both business teams and technical teams
• Security certifications such as OSCP, CEH, ECSA, GPEN

Location: Chennai, India

Responsibilities:

• Work closely with Application Development & IT team and serve as a single point of contact for all security testing related activities
• Executing manual network, application penetration tests and security code reviews
• Analyse application security architecture and understand security threats
• Draw Data Flow Diagrams (DFD), prepare threat models, identify threats and suggest mitigation steps
• Design and execute security test cases
• Create and review security test reports and evidences
• Provide recommendations to clients in fixing vulnerabilities
• Develop frameworks and methodologies to evaluate security in new and emerging technologies including mobile application such as IOS, Android etc.
• Assist in building security testing competency
• Mentor and provide technical guidance to team members in executing test cases
• To define testing criteria for systems and applications.
• Write SOPs, SOW’s
• Technical and Process reviews of the team output – represent the team reports to all stakeholders.
• To work with end clients to develop strategies and plans to enforce security requirements, and remediate identified risks / vulnerabilities.
• Assist in building security testing competency

Preferred Immediate or 1Month Notice Period. Interested candidates can share your resume at