Skip to main content
Posted 25 June, 2026

Associate Consultant - Technology Infrastructure Compliance

ExlService Holdings, Inc.
Noida, Uttar Pradesh, India Full Time
Reference: 218_689623_15988

Infrastructure Engineer responsible for end-to-end vulnerability management across business solutions infrastructure, ensuring accurate asset inventory (CMDB), proper reporting, vulnerability assignment, timely remediation, and measurable risk reduction

EXL (NASDAQ: EXLS) is a leading data analytics and digital operations and solutions company. We partner with clients using a data and AI-led approach to reinvent business models, drive better business outcomes and unlock growth with speed. EXL harnesses the power of data, analytics, AI, and deep industry knowledge to transform operations for the world's leading corporations in industries including insurance, healthcare, banking and financial services, media and retail, among others. EXL was founded in 1999 with the core values of innovation, collaboration, excellence, integrity and respect. We are headquartered in New York and have more than 54,000 employees spanning six continents. For more information, visit www.exlservice.com.


EXL never requires or asks for fees/payments or credit card or bank details during any phase of the recruitment or hiring process and has not authorized any agencies or partners to collect any fee or payment from prospective candidates. EXL will only extend a job offer after a candidate has gone through a formal interview process with members of EXL's Human Resources team, as well as our hiring managers.
EXL is the indispensable partner for leading businesses in data-led industries such as insurance, banking and financial services, healthcare, retail and logistics. We bring a unique combination of data, advanced analytics, digital technology and industry expertise to help our clients turn data into insights, streamline operations, improve customer experience, and transform their business. Our partnerships with clients are built on a foundation of collaboration - and we've been chosen as a partner by nine of the top ten leading US insurance companies, nine of the top 20 global banks, and six of the top ten US health care payers. We function as one team to make your goals our goals, whether that's unlocking the value of generative AI or embedding analytics into workflows that reduce risk or power your growth. Clients choose EXL as their transformation partner for many reasons. Our geographic diversity make talent all over the world instantly accessible. Digital accelerators enable unmatched speed-to-value, letting you realize results fast. It's our people that truly set us apart, though, including the 1,500 data scientists we have dedicated to our generative AI practice. And our more than twenty years of experience in delivering business services, garnering stellar client references, and maintaining a solid balance sheet are reassuring to our C-suite clients. Find out for yourself why clients, employees, and analysts think we're some of the best in the business. Contact us to see how we can help you achieve your goals.

Qualifications

- 3-5+ years experience in vulnerability management or infrastructure engineering

- Experience with tools like Qualys,

- Strong understanding of OS patching, cloud infrastructure, and application vulnerabilities

- Experience with CMDB systems and ticketing tools (ServiceNow/Jira)

- Knowledge of CVE, CVSS scoring and prioritization

Nice to Have

- Scripting (Python, PowerShell)

- SOAR/automation tools

- Familiarity with compliance frameworks (HITRUST, NIST, SOC2)

Key Success Metrics

- SLA compliance for remediation

- Reduction in aged vulnerabilities

- CMDB accuracy

- MTTR improvement

Vulnerability Management Operations

- Own lifecycle of vulnerabilities from detection through remediation and validation

- Analyze vulnerability scan outputs and prioritize remediation

- Ensure vulnerabilities are assigned and tracked to closure

- Drive SLA adherence across severity levels

- Coordinate remediation with InfraSec and asset owners

- enhance and improve current process

- work with application owners to help them remediate application related vulnerabilities

CMDB & Asset Inventory Management

- Maintain accurate CMDB and asset inventory (servers, cloud, application ownership)``

- Validate scan coverage against CMDB and identify gaps

- Improve asset-to-owner mapping for accountability

Remediation Tracking & Coordination

- Drive weekly/monthly remediation tracking cycles

- Coordinate between application owners, infra teams, and security

- Escalate overdue vulnerabilities and track progress

Ticketing & Workflow Management

- Create and manage remediation tickets (ServiceNow/Jira)

- Ensure proper categorization, SLA tracking, and audit trail

- Automate routing and assignment where possible

Rescanning & Validation

- Execute post-remediation rescans to validate closure

- Track false positives and exceptions with approvals

- Maintain audit-ready evidence

Reporting & Metrics

- Produce dashboards: open vulnerabilities, SLA compliance, MTTR, aged findings

- Publish executive summaries and operational reports

- Identify trends and systemic issues

Process & Automation Improvement

- Identify opportunities to automate remediation workflows

- Support patch automation and standardized remediation patterns

Sign up for Job Alerts