Opening for Vulnerability Management @ Mumbai

Hi,

Role & Responsibilities:

We are looking for Individual contributor (Technical) role having ability to perform,

• Vulnerability assessments for,
• Servers Middleware.
• Network Devices/Appliances.
• Applications.
• Endpoint systems.
• Ensure compliance to Minimum Baseline Security Standards for servers, applications, databases, endpoints, and networks.
• Assist in reviewing vulnerability data from multiple sources (i.e., vulnerability scanning, external / internal penetration testing, etc.) across multiple technologies and a changing environment including infrastructure and applications to determine risk rating of vulnerabilities to business assets.
• Perform Risk Assessment and recommend appropriate controls.
• Perform Penetration testing for the servers and network on a periodic/need basis.
• Understanding of overall cloud security posture management (Microsoft Azure & GCP).

Skills:

• Experience in one or more vulnerability scanning tools (Tenable Security center, Nessus, Qualys, Rapid7 Nexpose).
• Excellent knowledge in Security Operations/Information Security Process, techniques, and technologies.
• Deeper understanding of Patching, Prioritization, vulnerabilities, zeroday & Remediation.
• Knowledge on Minimum Baseline Security Standards and Industry best practices including NIST.
• Knowledge of vulnerability scoring systems (CVSS/CVE)
• Knowledge of Governance tools as well as automated and manual VAPT tools such as Nmap, Nessus, Kali, Burp suite etc.
• Certifications like CEH or other information security or IT platform certifications.
• Basic understanding of Python.

Key Attributes:

• Should be open to work in shifts, willing to learn new technologies cross skilling, upskilling Good Communication presentation skills.
• Strong Verbal and written communication skills.

Minimum 2 years of experience in Vulnerability Assessment of Servers and Network Devices.

If interested please share resume at