Urgent! Technical Lead - Application Security Job Opening In Mumbai – Now Hiring HDFC Bank
Technical Lead – Application Security
Location: Mumbai, India (Onsite)
Experience Required: 20+ years (Application security + AI/ML security)
Compensation: As per industry benchmarks
Employment Type: Full-Time | Permanent
Role Overview
We are hiring a Techno Managerial Lead – Application Security to join our CISO team in
Mumbai.
This is a critical, hands-on leadership role that blends strategic oversight with deep
technical expertise in application security.
The ideal candidate will spearhead security testing
of applications, evangelize secure software development practices, lead secure code reviews,
and collaborate across teams to embed security into the software development lifecycle (SDLC).
Key Responsibilities
• Strategic Leadership:
✓ Define and evolve the bank’s application security strategy and roadmap including
AI/ML and LLM security testing.
✓ Align security initiatives with business goals and regulatory requirements.
• Technical Execution:
✓ Lead secure SDLC integration across development teams(including DevSecOps) of
security testing tools.
✓ Oversee application security tools & processes for SAST, SCA DAST, Code Review
across diverse technologies such as Web, Mobile, API etc.
✓ Participate and provide expert opinion in secure architecture design reviews for
critical applications.
✓ Ensure periodic refresh of test cases catalogue against bank specific use-cases,
emerging threats & global frameworks.
✓ Define, publish, and govern policies, secure coding standards, and open-source usage
guidelines.
✓ Leverage AI security tools for scanning, fuzzing, and penetration testing of AI models.
✓ Apply best practices from OWASP Top 10 for ML/LLMs, MITRE ATLAS, NIST AI RMF,
and ISO/IEC 42001 to test AI/ML assets.
✓ Stay informed about emerging threats and security trends in AI/ML technologies, and
provide recommendations for enhancing security posture.
✓ Ensure AI model security testing framework aligns with internal policy, national
regulatory requirements, and global best practices.
Classification - Internal
Classification - Internal
✓ Plan and execute security tests for AI/LLM systems, including jailbreaking, RAG
hardening,
• Program Management:
✓ Build and lead a high-performing AppSec team for pre-golive security testing as well as
post-go live testing of scoped applications through structured calendar program.
✓ Develop and track KPIs and metrics to measure program effectiveness.
✓ Manage vendor relationships and maintain centralized governance across application
security, source code review, open source, and AI Security programs.
✓ Drive compliance with internal and regulatory requirements through periodic security
testing and reporting.
• Stakeholder Engagement:
✓ Collaborate with engineering, risk, development, DevOps, risk, and compliance teams.
✓ Provide executive-level reporting and risk insights.
✓ Build and expand a security-first development culture through continuous secure
coding training, workshops, and security champion’s programme to promote security
awareness and advocacy within development teams
Required Skills & Experience
• 20 years of experience in cybersecurity, with at least 15 years in application security
program management, development & testing (SAST/DAST/SCA) and minimum 5 years in
leadership roles.
• Proven track record of managing large-scale AppSec programs in BFSI or regulated
environments.
• Experience in dealing with regulatory bodies and response.
• Hands-on experience with secure coding, manual application penetration testing, and
DevSecOps practices.
• Experience working with cloud-native applications and microservices architectures.
• Deep understanding of OWASP Top 10 for Web, Mobile and API and their corresponding
OWASP Testing guides, CWE and OWASP developer guide and other secure coding
standards.
• Proficiency in security tools: Fortify, Checkmarx, Veracode, MobSF, Frida, Xposed
Framework, Cydia, JDgui, Burp Suite, etc.
• Strong programming background (Java, .NET, Python, etc.) would be an added advantage.
• Familiarity with CI/CD pipelines and integrating security into DevOps.
• Hands-on experience with AI/ML security or secure MLOps/LLMOps
• Proficient in Python, TensorFlow/PyTorch, HuggingFace, LangChain, and common data
science libraries
• Strong understanding of AI-specific threat models (MITRE ATLAS) and security
benchmarks (OWASP Top 10 for ML/LLMs)
• Excellent communication, leadership, and stakeholder management skills.
• Ability to translate technical risks into business impact clearly to non-technical
stakeholders
Classification - Internal
Classification - Internal
Qualifications and Certifications
• Bachelor’s or Master’s degree in Computer Science, Information Security, or related field.
• Certifications: CISA, CISM, CISSP, CSSLP, OSCP, OSWA, OSWE, SANS WAPT SEC542, Cloud
Security, ML Security, or relevant AI/ML certificates
• Why Join Us?
✓ Work on mission-critical security initiatives in a high-impact role.
✓ Be part of a forward-thinking cybersecurity team in a leading financial institution.
✓ Opportunity to shape the future of secure banking applications.
✨ Smart • Intelligent • Private • Secure
Practice for Any Interview Q&A (AI Enabled)
Predict interview Q&A (AI Supported)
Mock interview trainer (AI Supported)
Ace behavioral interviews (AI Powered)
Record interview questions (Confidential)
Master your interviews
Track your answers (Confidential)
Schedule your applications (Confidential)
Create perfect cover letters (AI Supported)
Analyze your resume (NLP Supported)
ATS compatibility check (AI Supported)
Optimize your applications (AI Supported)
O*NET Supported
O*NET Supported
O*NET Supported
O*NET Supported
O*NET Supported
European Union Recommended
Institution Recommended
Institution Recommended
Researcher Recommended
IT Savvy Recommended
Trades Recommended
O*NET Supported
Artist Recommended
Researchers Recommended
Create your account
Access your account
Create your professional profile
Preview your profile
Your saved opportunities
Reviews you've given
Companies you follow
Discover employers
O*NET Supported
Common questions answered
Help for job seekers
How matching works
Customized job suggestions
Fast application process
Manage alert settings
Understanding alerts
How we match resumes
Professional branding guide
Increase your visibility
Get verified status
Learn about our AI
How ATS ranks you
AI-powered matching
Join thousands of professionals who've advanced their careers with our platform
Unlock Your Technical Lead Potential: Insight & Career Growth Guide
Real-time Technical Lead Jobs Trends in Mumbai, India (Graphical Representation)
Explore profound insights with Expertini's real-time, in-depth analysis, showcased through the graph below. This graph displays the job market trends for Technical Lead in Mumbai, India using a bar chart to represent the number of jobs available and a trend line to illustrate the trend over time. Specifically, the graph shows 258206 jobs in India and 7706 jobs in Mumbai. This comprehensive analysis highlights market share and opportunities for professionals in Technical Lead roles. These dynamic trends provide a better understanding of the job market landscape in these regions.
Great news! HDFC Bank is currently hiring and seeking a Technical Lead Application Security to join their team. Feel free to download the job details.
Wait no longer! Are you also interested in exploring similar jobs? Search now: Technical Lead Application Security Jobs Mumbai.
An organization's rules and standards set how people should be treated in the office and how different situations should be handled. The work culture at HDFC Bank adheres to the cultural norms as outlined by Expertini.
The fundamental ethical values are:The average salary range for a Technical Lead Application Security Jobs India varies, but the pay scale is rated "Standard" in Mumbai. Salary levels may vary depending on your industry, experience, and skills. It's essential to research and negotiate effectively. We advise reading the full job specification before proceeding with the application to understand the salary package.
Key qualifications for Technical Lead Application Security typically include Banking and a list of qualifications and expertise as mentioned in the job specification. Be sure to check the specific job listing for detailed requirements and qualifications.
To improve your chances of getting hired for Technical Lead Application Security, consider enhancing your skills. Check your CV/Résumé Score with our free Resume Scoring Tool. We have an in-built Resume Scoring tool that gives you the matching score for each job based on your CV/Résumé once it is uploaded. This can help you align your CV/Résumé according to the job requirements and enhance your skills if needed.
Here are some tips to help you prepare for and ace your job interview:
Before the Interview:To prepare for your Technical Lead Application Security interview at HDFC Bank, research the company, understand the job requirements, and practice common interview questions.
Highlight your leadership skills, achievements, and strategic thinking abilities. Be prepared to discuss your experience with HR, including your approach to meeting targets as a team player. Additionally, review the HDFC Bank's products or services and be prepared to discuss how you can contribute to their success.
By following these tips, you can increase your chances of making a positive impression and landing the job!
Setting up job alerts for Technical Lead Application Security is easy with India Jobs Expertini. Simply visit our job alerts page here, enter your preferred job title and location, and choose how often you want to receive notifications. You'll get the latest job openings sent directly to your email for FREE!