Manager, Application Security and SOC
Bengaluru, Karnataka, India
About Toast
Toast is driven by building the restaurant platform that helps restaurants adapt, take control, and get back to what they do best: building the businesses they love. Because our technology is purpose-built for restaurants, our customers trust that we will deliver on their needs today while investing in innovative experiences that will power the future of the industry.
About this roll*:
We are looking for a dynamic individual to join our team as the Manager of Application Security and Security Operations Center (SOC). This role will oversee both the Application Security team and the SOC team in India, ensuring the security of our systems and applications. The selected individual will spearhead the establishment of our security team in India. We're seeking a visionary leader who will serve as the cornerstone in shaping and fortifying our presence in the region. The ideal candidate will have extensive experience in application security, incident response, and team management. If you have a passion for cybersecurity and want to make a significant impact, we encourage you to apply.
What you will do?
Application Security:
- Develop and implement robust application security policies, standards, and procedures to safeguard our systems and applications.
- Conduct regular security assessments, code reviews, and penetration testing to identify and address vulnerabilities.
- Collaborate closely with development teams to integrate security best practices throughout the software development lifecycle (SDLC).
- Stay updated on emerging threats and vulnerabilities in application security and provide guidance on mitigation strategies.
- Lead incident response efforts for application security incidents and coordinate with cross-functional teams to resolve issues promptly.
Security Operations Center (SOC) Management:
- Manage the day-to-day operations of the SOC, including monitoring, detection, and response to security incidents.
- Develop and maintain SOC policies, procedures, and playbooks to ensure effective incident response and threat detection.
- Lead a team of analysts responsible for monitoring security alerts, analyzing threats, and responding to incidents.
- Implement and maintain security monitoring tools, SIEM solutions, and threat intelligence feeds to enhance SOC capabilities.
- Collaborate with internal teams and external partners to investigate and mitigate security incidents.
Team Leadership and Development:
- Provide leadership and mentorship to the Application Security and SOC teams in India, fostering a collaborative and innovative work environment.
- Recruit, train, and develop security professionals to build a high-performing and resilient security organization.
- Conduct performance evaluations, set goals, and provide feedback to team members to support their professional growth.
Compliance and Reporting:
- Ensure compliance with relevant regulations, standards, and frameworks, such as PCI DSS, related to application security and SOC operations.
- Prepare and present reports on security incidents, trends, and metrics to senior management and stakeholders.
- Coordinate with internal audit teams and external auditors to facilitate security assessments and audits.
Do you have the right ingredients*?
- Bachelor's degree in Computer Science, Information Security, or a related field; Master's degree preferred.
- Industry certifications such as CISSP, CISM, or CEH are highly desirable.
- Extensive experience (5+ years) in application security, including vulnerability management and secure coding practices.
- Strong understanding of security operations, incident response procedures, and SOC operations.
- Hands-on experience with security tools such as SIEM, IDS/IPS, and web application firewalls (WAF).
- Excellent leadership, communication, and interpersonal skills, with the ability to collaborate effectively with diverse teams.
- Proven track record of managing and leading security teams in a fast-paced environment.
- Knowledge of regulatory requirements and compliance frameworks relevant to information security.
We are Toasters
Diversity, Equity, and Inclusion is Baked into our Recipe for Success.
At Toast our employees are our secret ingredient. When they are powered to succeed, Toast succeeds.
The restaurant industry is one of the most diverse industries. We embrace and are excited by this diversity, believing that only through authenticity, inclusivity, high standards of respect and trust, and leading with humility will we be able to achieve our goals.
Baking inclusive principles into our company and diversity into our design provides equitable opportunities for all and enhances our ability to be first in class in all aspects of our industry.
Bready* to make a change? Apply today!
Toast is committed to creating an accessible and inclusive hiring process. As part of this commitment, we strive to provide reasonable accommodations for persons with disabilities to enable them to access the hiring process. If you need an accommodation to access the job application or interview process, please contact candidateaccommodations@toasttab.com.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Audits CEH CISM CISSP Compliance Computer Science Firewalls IDS Incident response IPS Monitoring PCI DSS Pentesting SDLC Security assessment SIEM SOC Threat detection Threat intelligence Vulnerabilities Vulnerability management
Perks/benefits: Career development Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs