Lead

Job Title: L2 Sr.Analyst - Vulnerability Assessment & Penetration Testing JobLocation: Hyderabad RoleOverview: The L2 Sr.Analyst for Vulnerability Assessment and Penetration Testing (VA/PT) will beresponsible for conducting in-depth vulnerability scans, analyzing results, andassisting in securing enterprise systems, applications, and networks. The rolerequires expertise in tools like Nessus, Tenable SC, and HCL AppScan, alongwith a strong understanding of VA/PT methodologies. KeyResponsibilities: Perform scheduled and ad-hoc vulnerability assessments using tools like Nessus and Tenable.sc. Conduct application security testing using HCL AppScan for web and mobile applications. Configure and optimize scanning tools for efficient and accurate results. Analyze scan results to identify vulnerabilities and their impact on business systems. Prioritize vulnerabilities based on criticality and risk to the organization. Generate detailed VA/PT reports and dashboards for stakeholders. Perform manual and automated penetration testing on applications, networks, and systems. Simulate real-world attacks to identify security gaps and potential exploits. Document findings with proof-of-concept (PoC) evidence. Work with development, infrastructure, and security teams to validate and remediate identified vulnerabilities. Provide technical guidance and recommendations to mitigate security risks. Ensure assessments comply with industry standards (OWASP, NIST, ISO 27001) and regulatory requirements. Support audits and security assessments for internal and external stakeholders. Assist in developing VA/PT procedures, guidelines, and best practices. Keep tool configurations and asset inventories up-to-date. RequiredSkills & Qualifications: Hands-on experience with Nessus, Tenable SC, and HCL AppScan. Strong understanding of network and application security principles. Familiarity with vulnerability scoring systems (CVSS) and risk assessment frameworks. Knowledge of scripting and automation (Python, PowerShell) is a plus. Proven track record of identifying and mitigating vulnerabilities in enterprise environments. Certifications (Preferred): CEH, OSCP, GPEN, CISSP, or relevant certifications. Experience: 5+ years ofexperience in VA/PT or a similar cybersecurity role. SoftSkills: Strong analytical and problem-solving skills. Excellent communication and documentation abilities. Ability to work independently and as part of a team in a fast-paced environment.