Vulnerability Management Analyst

We are currently seeking a dedicated and analytical Vulnerability Management Analyst to join our Cyber Resilience Fusion Center team. This role is essential for protecting our Information Technology (IT) and Operational Technology (OT) environments from potential threats and vulnerabilities. The ideal candidate will be responsible for identifying, evaluating, and reporting on security vulnerabilities within our systems and networks. Working in the Attack Surface Management (ASM) area, the Vulnerability Management Analyst plays a crucial role in maintaining the integrity, confidentiality, and availability of our IT and OT infrastructures by ensuring our systems are safeguarded against the latest threats.

Hapag-Lloyd is one of the world's leading liner shipping companies, connecting businesses and people across more than 600 ports worldwide. With a fleet of over 300 modern container ships and a vessel capacity of 2.5 million TEU, we keep global trade moving reliably every day.
Our global network spans 140 countries, 400 offices, and a growing portfolio of terminal and infrastructure investments. This scale enables us to deliver consistent, highquality service across continents and to support our customers in even the most complex supply chains.
When you join us, you become part of more than 18,000 colleagues working across borders, functions, and cultures, to not only to deliver quality for our customers, but to create innovation and opportunities across roles, regions, and perspectives.
We believe that every exploration is a chance to grow, and every port is a place to belong.
Technology center in Chennai
Welcome to Hapag-Lloyd Technology Center Chennai: Where Innovation Thrives

Hapag-Lloyd Technology Center Chennai, located in the Chennai World Trade Center, is more than just a captive center; it's a beacon of technological innovation. Hand in hand, with two other Hapag-Lloyd IT Hubs in Hamburg (Germany) and Gdansk (Poland), we are ushering in a new era of IT excellence.

Hapag Lloyd Technology Center was opened on June 1st, 2023, with a goal to rapidly expand, envisioning a team of 400+ experts in the coming years.

HLTC Leaders of Innovation
Leading HLTC Chennai are Balamurugan Palanivelu (CEO), Balaji Ramamoorthy (CTO), Vaishali Shetty (CHRO), and Sameer Saxena (CFO).

At Hapag-Lloyd Technology Center, our team is in constant expansion mode. Join us as we continue to grow and innovate! Your expertise can play a vital role in our dynamic and evolving environment.

Global Excellence in IT - Trusted Partner to Grow Your Career
Our Global ONE IT operates across three strategic hubs worldwide: Germany, Poland, and India. Together, we are dedicated to perfecting Hapag-Lloyd's IT solutions. With nearly 200 years in the business, innovation has always been in our DNA.

Our enduring presence makes us a reliable employer for those seeking a workplace that successfully adapts to a changing world, embracing ecological trends and innovation. At Hapag-Lloyd, your work is not only engaging but also has a real impact on our reality.

As we continue to evolve and enhance our market position, we are actively seeking the best IT experts to bring their diverse perspectives to our team.

Join us and be part of a team that is driving innovation, ecological responsibility, and excellence in IT. Your career will thrive with us!
https://www.hapag-lloyd.com/en/company/career/working-in-tech/our-offices/office-chen.html

Perks and Benefits at HLTC :

• Recreation: Play area with PS5, Table Tennis, Foosball, Carrom, and Chess
• Financial & Health: Provident Fund, Gratuity, Performance Bonus, Medical Insurance, Leave Travel Allowance
• Work-Life Balance: Hybrid model after 3 months based on Manager's approval (3 days in office, 2 days WFH), Generous Leave Policies
• Facilities: Car/Bike Parking, Food Court, Modern Office Environment
• Professional Development: HL Academy - Training Programs, Career Growth Opportunities, Employee Referral Policy,IJP.

• Master's or bachelor's degree or equivalent technical training in Information Technology, Information Systems Security, Cybersecurity, or related field.
• Minimum of 3 years of experience in Cybersecurity, specifically in Vulnerability Management, risk assessment, or a similar role.
• Strong understanding of both Information Technology (IT) and Operational Technology (OT) systems and their unique security challenges.
• Proficiency with vulnerability scanning tools (e.g., Nessus, Qualys, Rapid7) and familiarity with security frameworks (e.g., NIST, ISO 27001).
• Ability to analyze vulnerability data, assess risks, and prioritize responses based on potential impact.
• Excellent written and verbal communication skills, with the ability to explain technical details to non-technical stakeholders.
• Relevant certifications such as CEH, Security+, PenTest+, GSEC are desired.
• Good understanding of Windows, UNIX and Linux operating systems functions and security.
• Ability to clearly convey results in formal technical reports and deliver briefings to senior staff, technical specialists, and management, including CISO and C-Suite.
• Excellent soft skills - team building, conflict resolution, empathy, motivation, creativity, flexibility.
• Experience working in Supply Chain, Logistics, Shipping/Transport sectors is a plus.
• Creative and flexible mindset.
• Responsive and able to take responsibility for actions & deliverables.
• Stick to commitments and hold each other accountable.
• Ability to work collaboratively in a team environment and with employees from various departments.
• Excellent oral and written English communication skills.

• Conduct regular scans of IT and OT systems to identify vulnerabilities and assess their potential impact.
• Perform thorough risk assessments on identified vulnerabilities, considering both the technical aspects and the business context.
• Collaborate with IT and OT teams to prioritize and facilitate the timely patching of vulnerabilities.
• Prepare detailed reports on vulnerability findings, including risk assessments, recommended actions, and patch management status.
• Develop and maintain Vulnerability Management policies, procedures, and related documentation to ensure consistent and effective practices.
• Stay abreast of the latest cybersecurity threats and vulnerabilities, incorporating this intelligence into Vulnerability Management processes.
• Communicate effectively with various stakeholders, including IT and OT teams, management, and external partners, to ensure a comprehensive understanding of vulnerabilities, impacts, and mitigation strategies.
• Provide expertise and support during cybersecurity incidents related to vulnerabilities.
• Assist in compliance efforts and audits, ensuring that Vulnerability Management practices meet industry standards and regulatory requirements.
• Regularly review and recommend improvements to the Vulnerability Management program to enhance security posture.