471 Vulnerability Management Jobs - Page 13

Hi All, We are hiring for our MNC client for Pune for Sr. Information Security Analyst / Specialist role. Requirement : The responsibilities include ensuring application security, implementing secure coding practices, and managing vulnerabilities. Additionally, tasks involve conducting vulnerability scans and overseeing cloud security measures. Having wide ranging experience in Application Security, Secure Coding, Vulnerability Management, Vulnerability Scanning. Skills / Knowledge - Having wide-ranging experience in DevOps + cloud security also uses professional concepts and company objectives to resolve complex issues in creative and effective ways. Experience with AWS or GCP is must.

Sapiens is on the lookout for a Senior Security Operations Administrator to become a key player in our Bangalore team. If you're a seasoned Security Operations Admin and ready to take your career to new heights with an established, globally successful company, this role could be the perfect fit. Location: Bangalore Working Model: Our flexible work arrangement combines both remote and in-office work, optimizing flexibility and productivity. What youll do: Security Operations Management: Manage and support large-scale systems, complex cloud environments, and mission-critical business applications, ensuring secure and efficient operations. Security Solution Implementation: Implement and manage at least four security solutions, including but not limited to EDR, DLP, DNS, Email Protection (Mail Relay), MDM, Identity Protection, Firewall, Cloud Security, and OCR technologies. Security Monitoring & Analysis: Interpret alert logs and network traffic to identify attack patterns, recognizing typical attack scenarios to prevent or mitigate potential threats. Vulnerability Management: Lead vulnerability management efforts, create comprehensive dashboards and reports, present findings to stakeholders, and validate remediation strategies. Interpret vulnerabilities/CVEs. Conduct vulnerability assessments and provide actionable insights for remediation Platform Security Expertise: Apply in-depth knowledge of security vulnerabilities and mitigation strategies across Windows, Mac, and Linux platforms. Security Solutions Expertise: Leverage experience with tools like CrowdStrike, Cisco Umbrella, Palo Alto & Fortinet Firewalls, Forcepoint, Trend Micro, and other leading security technologies. Cloud Security: Demonstrate expertise in cloud security posture management (CSPM) and applying security best practices in cloud environments (Azure, AWS, GCP). Office 365 & Identity Security: Manage and secure Office 365 environments, ensuring effective security controls are implemented. Implement modern authentication mechanisms, such as cloud IDP, SSO, and MFA. Security Compliance & Hardening: Oversee security compliance and system hardening processes, particularly within Azure, based on known security standards (e.g., CIS, NIST). What to Have for this position: Must have Skills: - Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience). Minimum of 6-8 years of experience in cybersecurity or IT security operations. Experience: Proven track record of managing large-scale systems and complex cloud environments in a security operations context. Security Solutions Expertise: Deep understanding and hands-on experience with a variety of security technologies, including EDR, DLP, DNS protection, firewalls (Palo Alto, Fortinet), cloud security tools, and more. Alert & Traffic Analysis: Ability to interpret security alerts, network traffic logs, and identify attack vectors and patterns effectively. Vulnerability Management: Proficiency in managing vulnerability scanning and remediation workflows, with experience in dashboard creation and report generation. The ability to assess CVEs, vulnerabilities, and gaps in security controls. Platform Security: Strong knowledge of security across Windows, Mac, and Linux platforms, including server/laptop administration, and resolving platform-specific vulnerabilities. Cloud Security: Expertise in cloud security posture management (CSPM) and securing cloud environments with an emphasis on compliance and security best practices. Authentication & Identity Management: Expertise in implementing modern authentication technologies, including cloud-based Identity Providers (IDPs), Single Sign-On (SSO), and Multi-Factor Authentication (MFA). Compliance & Hardening: Experience with security compliance, hardening systems, and working with Azure security standards. Toolset Proficiency: Hands-on experience with security tools like CrowdStrike, Cisco Umbrella, Palo Alto & Fortinet firewalls, Forcepoint, Trend Micro, and Office 365 security products. Personal Traits:- Independent & Self-Managed: Strong time management skills with the ability to work independently and manage competing priorities. Proactive & Solution-Oriented: A proactive, "can-do" attitude, contributing effectively to team goals and overall organizational security. Communication Skills: Excellent verbal, written, and interpersonal communication skills with the ability to work across departments and with distributed global teams. Customer-Centric: Outstanding customer service mindset with the ability to interact with stakeholders and address security concerns in a collaborative manner. Multitasking & Stress Management: Ability to juggle multiple tasks, maintain organization, and perform effectively under pressure in a fast-paced environment. Team Player: A collaborative approach with the ability to work independently or as part of a highly proactive security team. Fluent English: Strong proficiency in both written and spoken English is a must. Security Certifications: Security-related certifications (CISSP, CISM, CEH, etc.) or specialized training is highly desirable. Networking Knowledge: Familiarity with networking and protocols (Layer 2-7, Switching, Routing) is an advantage.

About the Role :We are seeking a highly motivated and skilled Security Firmware Engineer to join our team and contribute to the development of cutting-edge security solutions. In this role, you will be responsible for designing, developing, and maintaining firmware for our security subsystems, ensuring the highest levels of security and reliability.Key Responsibilities :Design, develop, and maintain firmware for security subsystems, including but not limited to : - Root of Trust - Trusted Platform Module (TPM/fTPM) - Widevine DRM - Develop and implement secure boot and attestation mechanisms. - Integrate security features into existing firmware and hardware platforms. - Perform thorough code reviews and unit testing to ensure code quality and security. - Troubleshoot and debug firmware issues. - Collaborate with cross-functional teams (hardware, software, security) to ensure seamless integration and system-level security. - Stay abreast of the latest security threats and vulnerabilities, and implement mitigation strategies. - Contribute to the development and maintenance of security policies and procedures.Required Skills : Mandatory : - Very strong in C language programming and debugging - Working knowledge of git/gerritKey Skillsets : - Good knowledge about silicon security subsystem / policy, root of trust, TPM/fTPM, Widevine - Good knowledge of trusted applications and handshake - Experience with embedded systems development and debugging. - Strong understanding of security principles and best practices. - Experience with security protocols (e.g., TLS, SSL, IPsec). - Excellent problem-solving and analytical skills. - Strong communication and collaboration skills.

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Saviynt Identity Platform Good to have skills : Security Architecture Design Minimum 5 year(s) of experience is required Educational Qualification : At minimum B Tech /MCA from any recognized University Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will also document the implementation of the cloud security controls and transition to cloud security-managed operations. Roles & Responsibilities: Expected to be an SME Collaborate and manage the team to perform Responsible for team decisions Engage with multiple teams and contribute on key decisions Provide solutions to problems for their immediate team and across multiple teams Develop security architecture design Conduct security assessments and audits Implement security best practices Professional & Technical Skills: Must To Have Skills: Proficiency in Saviynt Identity Platform Good To Have Skills: Security Architecture Design Experience in cloud security Knowledge of security protocols and standards Strong analytical and problem-solving skills Excellent communication and interpersonal abilities Additional Information: The candidate should have a minimum of 5 years of experience in Saviynt Identity Platform This position is based at our Hyderabad office A minimum of B Tech /MCA from any recognized University is required Qualifications At minimum B Tech /MCA from any recognized University

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Okta Identity Management Good to have skills : NA Minimum 12 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will be responsible for defining the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will document the implementation of the cloud security controls and transition to cloud security-managed operations. Your role will play a crucial part in safeguarding the organization's data and infrastructure in the cloud environment. Roles & Responsibilities: Expected to be an SME in Okta Identity Management Collaborate and manage the team to perform effectively Responsible for team decisions and ensuring adherence to security best practices Engage with multiple teams and contribute to key decisions Expected to provide solutions to problems that apply across multiple teams Ensure the implementation of cloud security controls align with the defined framework Document the cloud security architecture and ensure it meets business requirements Transition to cloud security-managed operations Professional & Technical Skills: Must To Have Skills:Proficiency in Okta Identity Management Strong understanding of cloud security frameworks and best practices Experience in designing and implementing secure cloud architectures Knowledge of identity and access management principles Experience with cloud security tools and technologies Additional Information: The candidate should have a minimum of 12 years of experience in Okta Identity Management This position is based in Noida A 15 years full-time education is required Qualifications 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Architecture Design Good to have skills : NA Minimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will also document the implementation of the cloud security controls and transition to cloud security-managed operations. Roles & Responsibilities: Expected to be an SME Collaborate and manage the team to perform Responsible for team decisions Engage with multiple teams and contribute on key decisions Provide solutions to problems for their immediate team and across multiple teams Lead security architecture design discussions Develop security architecture solutions Conduct security assessments and provide recommendations Professional & Technical Skills: Must To Have Skills:Proficiency in Security Architecture Design Strong understanding of cloud security principles Experience with security tools and technologies Knowledge of security compliance standards Hands-on experience in implementing security controls Additional Information: The candidate should have a minimum of 5 years of experience in Security Architecture Design This position is based at our Noida office A 15 years full time education is required Qualifications 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : ServiceNow Governance, Risk, and Compliance (GRC) Good to have skills : Security Architecture Design Minimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will document the implementation of the cloud security controls and transition to cloud security-managed operations. Your typical day will involve designing and implementing security solutions, collaborating with cross-functional teams, and ensuring compliance with governance and risk management policies. Roles & Responsibilities: Expected to be an SME, collaborate and manage the team to perform. Responsible for team decisions. Engage with multiple teams and contribute on key decisions. Provide solutions to problems for their immediate team and across multiple teams. Design and implement security solutions to protect the organization's cloud infrastructure. Collaborate with cross-functional teams to ensure the security architecture meets business requirements. Ensure compliance with governance and risk management policies. Conduct risk assessments and develop mitigation strategies. Stay up-to-date with the latest security trends and technologies. Professional & Technical Skills: Must To Have Skills:Proficiency in ServiceNow Governance, Risk, and Compliance (GRC). Good To Have Skills:Experience with Security Architecture Design. Strong understanding of cloud security principles and best practices. Experience in designing and implementing security controls for cloud environments. Knowledge of industry standards and regulations related to cloud security. Familiarity with security frameworks such as ISO 27001 and NIST. Excellent problem-solving and analytical skills. Strong communication and collaboration abilities. Additional Information: The candidate should have a minimum of 5 years of experience in ServiceNow Governance, Risk, and Compliance (GRC). This position is based at our Hyderabad office. A 15 years full time education is required. Qualifications 15 years full time education

Project Role : Security Advisor Project Role Description : Provide enterprise-level advice to make organizations cyber resilient. Assist in navigating the complex landscape of cyber threats, ensuring robust digital asset protection while maintaining trust with stakeholders. Must have skills : One Identity Manager Good to have skills : NA Minimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Consulting Lead, you will lead the effort and teams to enable development and implementation of proprietary and innovative security solutions. Assess, manage and ensure compliance to risk reducing behaviors and processes. Show creativity in problem-solving and decision-making to drive security initiatives forward. Roles & Responsibilities: Expected to be an SME Collaborate and manage the team to perform Responsible for team decisions Engage with multiple teams and contribute on key decisions Provide solutions to problems for their immediate team and across multiple teams Lead security assessments and audits Develop security policies and procedures Implement security controls and measures Professional & Technical Skills: Must To Have Skills:Proficiency in One Identity Manager Strong understanding of security frameworks and standards Experience in security risk management Knowledge of identity and access management Hands-on experience in security solution implementation Additional Information: The candidate should have a minimum of 5 years of experience in One Identity Manager This position is based at our Gurugram office A 15 years full time education is required Qualifications 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : SailPoint IdentityNow Good to have skills : NA Minimum 12 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will also document the implementation of the cloud security controls and transition to cloud security-managed operations. Roles & Responsibilities: Expected to be an SME Collaborate and manage the team to perform Responsible for team decisions Engage with multiple teams and contribute on key decisions Expected to provide solutions to problems that apply across multiple teams Develop and implement security architecture solutions Conduct security assessments and provide recommendations Stay updated on the latest security trends and technologies Professional & Technical Skills: Must To Have Skills:Proficiency in SailPoint IdentityNow Strong understanding of cloud security principles Experience in implementing security controls in cloud environments Knowledge of industry-standard security frameworks Excellent communication and presentation skills Additional Information: The candidate should have a minimum of 12 years of experience in SailPoint IdentityNow This position is based at our Gurugram office A 15 years full time education is required Qualifications 15 years full time education

Provide advanced incident response and threat analysis in a Security Operations Center (SOC). Lead investigations, conduct forensics, and manage escalated security incidents to minimize risks and ensure data protection.

Implement and manage security protocols in Operational Technology (OT) environments, ensuring the protection of industrial control systems, SCADA, and other critical infrastructure from cyber threats.

Implement and manage privileged access management solutions to secure and monitor access to critical systems. You will oversee user access controls, audit logs, and risk mitigation for privileged accounts. Expertise in PAM solutions, security protocols, and compliance requirements is required for this role.

Security Engineer Hyderabad, Telangana IT Description Why youll want to work at nimble! This is a great opportunity to join a well-established and market-leading brand serving a high-growth end market while gaining valuable experience and visibility to Executive leadership. As an organization, we are in considerable growth mode through acquisition and with a laser focus on positive culture building. The Information Security Engineer is responsible for safeguarding the organization's systems and data assets. This critical role focuses on preventing and mitigating unauthorized access, modification, or destruction of sensitive information. The Engineer actively participates in the development and implementation of robust IT security policies and standards. Through close collaboration with end-users across various departments, this position ensures the alignment of security measures with individual business needs while maintaining strict adherence to company-wide security policies and procedures. The Information Security Engineer reports directly to the Director of Information Security and maintains an indirect reporting line to the Chief Information Technology Officer. Threat Detection & Response: Monitor the organization's servers and networks for security breaches using tools such as Windows Defender, Windows Purview, Crowdstrike, Rapid7 Investigate and respond to security incidents promptly. Utilize Windows Defender , Rapid7 and Wiz for vulnerability scanning and threat intelligence gathering. Implement and enforce security policies through Intune . Security Architecture & Engineering: Design, implement, and maintain security controls, including firewalls, intrusion detection/prevention systems (IDPS), and data encryption. Conduct security assessments and penetration testing. Develop and maintain security standards and best practices. Endpoint Security Management: Manage endpoint security solutions, including Windows Defender and Crowdstrike Vulnerability Management: Identify, assess, and prioritize vulnerabilities using Windows Defender, Wiz and Rapid7 . Develop and implement remediation plans. Compliance & Reporting: Prepare reports that document security metrics, attempted attacks, and security breaches. Ensure compliance with relevant security standards and regulations. Security Awareness & Training: Educate and train employees on IT security best practices and awareness. Collaborate with IT teams, business units, and other stakeholders to ensure effective security implementation. Clearly communicate security risks and recommendations to management. Requirements 5+ years of experience in systems or network administration/engineering 1+ years of experience in information security roles Strong understanding of security principles and best practices (e.g., NIST) Proficient with Windows Server administration and management Proficient with network protocols and topologies Experience with security information and event management (SIEM) systems Experience with scripting languages (e.g., Python, PowerShell) Strong analytical and problem-solving skills Excellent written and verbal communication skills Ability to work independently and as part of a team Experience with cloud security (e.g. Azure, Defender) Experience with security orchestration and automation platforms (SOAR). Experience with container security and microservices. This job description is intended to provide a general overview of the position. Responsibilities and qualifications may vary depending on the specific needs of the organization. This revised job description incorporates the specified security software suites and provides a more comprehensive overview of the role. Intersted candidates drop your resumes to 8179814131 - Navya (WhatsApp) or apply through below link https://recruiting.paylocity.com/recruiting/jobs/All/3cb31b47-df35-44a0-9592-a322ad0b2915/nimble-international

The Cyber Threat Detection and Development role involves working with relevant technologies, ensuring smooth operations, and contributing to business objectives. Responsibilities include analysis, development, implementation, and troubleshooting within the Cyber Threat Detection and Development domain.

The Cyber Security role involves working with relevant technologies, ensuring smooth operations, and contributing to business objectives. Responsibilities include analysis, development, implementation, and troubleshooting within the Cyber Security domain.

The Cyber Security E2 role involves working with relevant technologies, ensuring smooth operations, and contributing to business objectives. Responsibilities include analysis, development, implementation, and troubleshooting within the Cyber Security E2 domain.

Competencies: Strong knowledge of cloud platform security (AWS, Azure, GCP), including networking, Storage, Compute, IAM, data encryption, Identity management, Access management, AD, SSO, SAML and securing cloud-native services. Experience with security methodologies (e.g., SAST, SCA, DAST, penetration testing) and tools (Veracode, Qualys, Orca, Black Duck) Strong understanding of network security protocols (firewalls, intrusion detection/prevention systems) Experience automating and integrating security workflows using tools such as Terraform, Ansible, CloudFormation, Jenkins, or similar. Strong hands-on experience remediating code-based vulnerabilities and scripting/automating remediation scripts. Hands-on development experience in Java a strong plus. Experience configuring and using SIEM for security monitoring, log analysis, and threat detection. Strong communication and collaboration skills, especially in cross-functional teams. Ability to explain complex security concepts to technical and non-technical stakeholders. Strong analytical and problem-solving skills with the ability to act quickly in high-pressure situations. Leadership abilities to mentor junior engineers and advocate for security best practices. Requirements: Bachelors degree in computer science, Engineering, or a related field. 6+ years of experience in security engineering or a related field, with a focus on cloud security, vulnerability management, and automation. 4+ years of experience with public cloud platforms (AWS strongly preferred) and securing cloud-native and on-prem infrastructures. Minimum of 3 years of hands-on development experience in a common programming language. (Java strongly preferred). Flexibility to occasionally work US Pacific Standard Time (PST) hours as needed. Regards, Kajal Khatri Kajal@beanhr.com

The Cyber Security role involves working with relevant technologies, ensuring smooth operations, and contributing to business objectives. Responsibilities include analysis, development, implementation, and troubleshooting within the Cyber Security domain.

The Cyber Security role involves working with relevant technologies, ensuring smooth operations, and contributing to business objectives. Responsibilities include analysis, development, implementation, and troubleshooting within the Cyber Security domain.

The Pen Testers role involves working with relevant technologies, ensuring smooth operations, and contributing to business objectives. Responsibilities include analysis, development, implementation, and troubleshooting within the Pen Testers domain.

The Endpoint Security role involves working with relevant technologies, ensuring smooth operations, and contributing to business objectives. Responsibilities include analysis, development, implementation, and troubleshooting within the Endpoint Security domain.

The Network Security Architect role involves working with relevant technologies, ensuring smooth operations, and contributing to business objectives. Responsibilities include analysis, development, implementation, and troubleshooting within the Network Security Architect domain.

The Imperva DB security Engineer role involves working with relevant technologies, ensuring smooth operations, and contributing to business objectives. Responsibilities include analysis, development, implementation, and troubleshooting within the Imperva DB security Engineer domain.

The Penetration Testing role involves working with relevant technologies, ensuring smooth operations, and contributing to business objectives. Responsibilities include analysis, development, implementation, and troubleshooting within the Penetration Testing domain.

Project Role : Security Delivery Practitioner Project Role Description : Assist in defining requirements, designing and building security components, and testing efforts. Must have skills : Saviynt Identity Platform Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : Minimum 15 yrs of full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting the implementation of cloud security controls, and overseeing the transition to cloud security-managed operations. You will engage in strategic discussions to align security measures with organizational objectives, ensuring a robust security posture in the cloud environment. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate training sessions to enhance team knowledge and skills.- Monitor and evaluate the effectiveness of implemented security measures. Professional & Technical Skills: - Must To Have Skills: Proficiency in Saviynt Identity Platform.- Strong understanding of cloud security principles and frameworks.- Experience with identity and access management solutions.- Familiarity with compliance standards such as GDPR, HIPAA, and ISO 27001.- Ability to conduct risk assessments and vulnerability assessments. Additional Information:- The candidate should have a minimum of 8 years of experience in implementing security solutions and conducting security assessments related to the Saviynt Identity Platform.- A 15 year's full-time education is required & bachelors degree in computer science.- This position is based at our Bengaluru office. Qualification Minimum 15 yrs of full time education