Security Vulnerability Engineer

Security Vulnerability Engineer

What You Will Do: Key Responsibilities

• Perform daily operations and maintenance of vulnerability scanning tools

  and their supporting infrastructure.

• Register assets in the scanning tool and execute scans

  according to the agreed schedule.
• Conduct comprehensive

  Vulnerability Management

  , including supporting scan tools, executing vulnerability scans, performing analysis, and recommending/tracking mitigations.

• Perform periodic validation of assets

  through the Central Depository.

• Register assets in scanning tool and perform periodic scans

  to ensure continuous coverage.

• Perform, review, and analyze security vulnerability data & CIS Hardening data

  to identify applicability and false positives, recommending corrective actions for mitigation.

• Publish reports

  on identified security vulnerabilities & CIS Hardening, as well as control gaps identified during security control reviews, as per the defined schedule.
• Overall responsibility for

  governance and tracking of the Vulnerability Remediation action plan

  .

• Maintain a risk register for exploitable vulnerabilities

  and discuss remediation strategies with stakeholders.

• Act on after-hours (on-call support)

  for IT security incidents as required.

• Analyze results of Web application assessments

  and provide executive reports with recommendations for mitigation.

• Manage tracking and remediation of vulnerabilities

  by leveraging agreed-upon action plans and timelines with responsible technology developers and support teams.

• Assist in metrics development and reporting

  for vulnerability management activities.

• Devise methods to automate testing activities and streamline testing processes.

• Provide oral briefings to leadership and technical staff

  , as necessary.

• Support and run vulnerability management scans of customer systems

  (using tools like Tenable Nessus, Qualys, etc.).

• Plan and coordinate vulnerability scanning schedules

  with customers and stakeholders.

Required Qualifications

• Education:

  Bachelor's Degree (B.E./B.Tech) in Computer Science or a related field.

• Experience:

  8-10 years in a relevant security role.

• Solid understanding of security controls

  (e.g., Access Control, auditing, authentication, encryption, integrity, physical security, and application security).

• Working knowledge of scanning tools

  such as Nessus, Qualys, Netsparker, Fortify, etc.

• Strong understanding of enterprise, network, system, and application-level security issues.

• Understanding of

  enterprise computing environments, distributed applications

  , and a

  strong understanding of TCP/IP networks

  , including available security controls (technical & process controls) for respective layers.

• Experience writing technical reports and executive summaries.

• The ability to

  provide support after normal business hours

  .
• The ability to

  work constructively under pressure

  .
• Ability to

  work both in a team as well as individually

  .

• Participate in the out-of-hours on-call rotation

  , providing technical support to the business for major and critical incidents.
• Strong

  Knowledge Sharing and Collaboration skills

  .
• Ability to

  deliver results and meet customer expectations

  .

• Excellent communication skills; English is a must.