Manager, Application Security

The Application Security Manager is an enterprise-wide role responsible for overseeing and executing the Vulnerability Management (VPAT) Program, Penetration Testing, Red Teaming, Application Security, and Development initiatives. This role ensures that all technology environments including infrastructure, applications, cloud platforms, network systems, and security tools are continuously assessed for security vulnerabilities, threats, and risks.

Responsibilities

• Lead and manage the enterprise-wide Vulnerability Management (VPAT) Program, ensuring all IT assets undergo continuous security assessments and timely remediation.
• Conduct penetration testing and red teaming exercises for internal and external-facing systems, and utilize industry threat intelligence to simulate real-world attack scenarios.
• Ensure all security testing and vulnerability management activities comply with ISO 27001, NIST, PCI DSS, CIS benchmarks, and approved MAF policies and standards.

Requirements

• 5 – 7 years of experience in penetration testing, vulnerability management, and security assessments.
• Bachelor’s degree in Cybersecurity, Computer Science, or Engineering.
• Relevant certifications in penetration testing, vulnerability assessment, and application security.

Preferred Qualifications

• OSCP (Offensive Security Certified Professional)
• OSCE (Offensive Security Certified Expert)
• GPEN (GIAC Penetration Tester)
• GWAPT (GIAC Web Application Penetration Tester)
• CRTSA (CREST Registered Technical Security Architect)

Location
Dubai