Skip to main content
Posted 03 July, 2026

Vulnerability_CYBERSEC_Associate Consultant

Diverse Lynx
Bengaluru,,560063 Full Time
Reference: 365_569689_26-00931

Description:

Mandatory skills* - Vulnerability Monitoring & Remediation
•  Continuously track vulnerabilities (CVEs) across endpoints and prioritize remediation efforts.
•  Handle:
   - Multiple vulnerabilities on single hosts
   - Exception management for non-remediable vulnerabilities
   - Suppression of inactive/quarantined/retired assets
•  Raise and manage tickets, incidents, and change requests related to vulnerability remediation

Vulnerability Analysis

  • Identify top vulnerable software and exposure trends across workstation fleet
  • Correlate vulnerabilities with installed applications, patch status
  • Track remediation progress to closure and validate fixes using MDE
  • Perform root cause analysis for recurring vulnerabilities and missed patching cycles

Remediation of Application Software specific vulnerabilities
•  Coordinate application upgrades and deployments through structured change management processes.
•  Oversee patching and vulnerability remediation for enterprise applications for ex (not limited to) - Microsoft Office, Python, QGIS, Miniconda, Java (JRE/JDK), Adobe Acrobat, Notepad++, NodeJS, Browsers (Chrome, Edge, Firefox) etc.
•  Work with packaging teams to:
   - Raise deployment requests
   - Validate packaging and testing
•  Monitor installation success via endpoint detection tools (e.g., MDE) and track reduction of vulnerable versions

Patch Compliance Monitoring
•  Monitor Windows patching cycles (QA, Pilot, Production) across laptops, VDIs, cloud systems, and executive machines.
•  Track patch compliance metrics, coordinate with remediation teams for improvements or issues.

Stakeholder Coordination
•  Collaborate with:
   - Desktop/Workplace Computing team
   - End users and application owners
•  Conduct regular follow-ups for remediation activities and ensure closure of pending vulnerabilities.
•  Drive communication with users for software upgrades, uninstallations, and compliance actions.

Reporting Activities and their frequency
•  Daily: Vulnerability monitoring, suppression handling, browser CVE tracking, status reporting
•  Weekly: Patch compliance reporting, remediation follow-ups, WSR
•  Monthly: Consolidated reporting and dashboard preparation
•  Ad-hoc: Ticket handling, exception management, user coordination

Sign up for Job Alerts