Engineer Vulnerability Management (VAPT)

Skills:

Vulnerability, Linux, Infrastructure Vulnerability Management, Penetration Testing, Vulnerability Assessment, OWASP Top 10,

Company Overview

Jio has been a transformative force in India's telecommunications landscape, boasting over 400 million customers. As a pivotal player, we offer extensive digital apps and services catering to both B2C and B2B customers. With a comprehensive 5G solution suite, including AI/ML platforms, orchestration tools, and cloud-native infrastructure, Jio leads innovation in the industry. Our platform extends to in-house cloud-native probing solutions, enhancing network debugging efficiency.

Job Overview

We are seeking a Junior VAPT Engineer specializing in Vulnerability Management to join our dynamic team in Guwahati. As a full-time team member, you will play a critical role in identifying and mitigating vulnerabilities across our platforms. You will work closely with various departments to ensure network security and conduct proactive measures to protect our advanced digital infrastructure.

Qualifications And Skills

Qualification: B.E/ B.Tech and MCA

Perform Vulnerability Assessment & Base Assessment on Jio InfrastructureEnsure entire Jio Infrastructure are free from vulnerabilities.Ensure all AWS, GCP, Azure Cloud Infrastructure are free from Vulnerabilities.Ensure all Hardening and Patching activities are conducted and tracked as per defined policies.Create/Update hardening documents and build audit file for automated testing.Creating and updating reports from automated and manually gathered dataPreparing scorecards and key messages for senior management updatesOrganizing documentation related various remediation effortsWork with firm wide technology teams to remediate vulnerabilities and security hygiene issues by providing focused, concise, and actionable guidanceProduce reports and recommendations for detailed vulnerability findings.

Roles And Responsibilities

Candidate should have experience in Infrastructure Vulnerability ManagementPractical experience with Linux and Windows operating systemsWorking knowledge of ORACLE DB, MS SQL DB, MYSQL DB & Network DevicesKnowledge of secure configuration and hardening of systemsKnowledge of patching programs of major hardware/software manufacturersAbility to analyse vulnerabilities to appropriately characterize threats and provide remediation advice. Familiarity with classes of vulnerabilities, appropriate remediation, and industry-standard classification schemes (CVE, CVSS, CPE).Preferred: Script writing (Nessus Audit Policy / Python/Ruby)Preferred: Security solutions technologies such as IPS, firewalls, endpoint protection, web/email filtering, DLP, Digital rights management, encryption, SEIM, and virtualization platformsPreferred: Security related professional certification (e.g. CISSP, CISA, CISM, CRISC, CEH, LPT)

Competencies /Expertise Required (Functional & Behavioral)

• Systematic problem-solving skills, with the ability to think.
• Excellent in analytical thinking for translating data into informative visuals and reports.
• Adaptable to change.
• Quick Learner Open learn and work on new technologies and products