Vulnerability Management Engineer
3 weeks ago
How You'll Make An Impact :
- Serve as a subject matter expert in vulnerability management, contributing in the design and execution of scanning, analysis, and remediation workflows across hybrid environments.
- Collaborate with senior engineers, architects, and client stakeholders to deliver tailored vulnerability management solutions aligned with business and compliance requirements.
- Drive risk-based vulnerability prioritization, leveraging threat intelligence, asset criticality, and exploitability data.
- Lead enterprise-wide scanning initiatives, including authenticated scans across Windows, Linux, network devices, containers, and cloud platforms (AWS, Azure, GCP).
- Administer and optimize tools such as Qualys, Tenable, Rapid7, Prisma Cloud, Wiz and Tanium to support continuous monitoring and patch management.
- Utilize Tanium or other patch management tools to deploy patches, automate updates, and enforce configuration baselines across diverse endpoints.
- Develop and maintain dashboards and reporting using tools like Power BI to track KPIs, remediation progress, and risk trends.
- Define and implement vulnerability management KPIs, SLAs, and strategic goals in collaboration with leadership and clients.
- Produce detailed documentation of assessments, threat analysis, and remediation plans.
- Validate and track remediation efforts, ensuring closure of vulnerabilities and alignment with security policies.
- Provide expert guidance on threat modeling, external attack surface management, and exposure analysis.
- Act as a primary escalation point for zero-day vulnerabilities, patch-related incidents, coordinating with IT and engineering teams to resolve issues efficiently.
What We're Looking For :
- 6+ years of experience in vulnerability management, including hands-on administration of platforms like Qualys, Tenable, Rapid7, Prisma Cloud, Contrast, and Tanium.
- Strong understanding of the vulnerability management lifecycle, including discovery, validation, prioritization, and remediation.
- Experience with cloud-native scanning and container security in AWS, Azure, and GCP environments.
- Proficiency in log analysis, TCP/IP networking, and endpoint telemetry to support threat investigations.
- Demonstrated ability to automate workflows and integrate vulnerability data into enterprise data lakes and CMDBs.
- Experience with external asset discovery, continuous monitoring, and attack surface management (ASM) tools.
- Strong analytical and problem-solving skills, with the ability to translate technical findings into business risk.
- Excellent communication skills and the ability to collaborate across technical and non-technical teams.
- Experience building and maintaining dashboards and metrics in Power BI or similar tools.
- Familiarity with security frameworks such as NIST, CIS, and MITRE ATT&CK is a plus.
Preferred Certifications :
- CISSP, CISM, CISA, or equivalent.
- Vendor-specific certifications (e.g., Qualys, Tanium, Tenable, Wiz, CSPM etc.
What You Can Expect From Optiv :
- A company committed to championing Diversity, Equality, and Inclusion through our Employee Resource Groups.
- Work/life balance.
- Professional training resources.
- Creative problem-solving and the ability to tackle unique, complex projects.
- Volunteer Opportunities.
- Optiv Chips In encourages employees to volunteer and engage with their teams and communities.
- The ability and technology necessary to productively work remotely/from home (where applicable).
(ref:hirist.tech)
-
Vulnerability Manager
2 weeks ago
Bengaluru, India Eagleview Full timeJob Description The Vulnerability Manager position is responsible for managing the identification of vulnerabilities in EagleView's on-premise and cloud environment and working with systems owners to remediate findings. The Vulnerability Manager will convert raw vulnerability reports to actionable and prioritized information to enable engineers to focus on...
-
Infrastructure Vulnerability Management Engineer
3 weeks ago
Bengaluru, India Acesoft Labs Full timeRole & responsibilities Description: Infrastructure Vulnerability Management Engineer: Job Description: 3 to 6 years technical expert in c. Extensive experience in managing and mitigating infrastructure vulnerabilities, with a strong background in using Microsoft Defender for Endpoint and ServiceNow tools. Expertise: Good technical understanding of...
-
Infrastructure Vulnerability Management Engineer
2 weeks ago
Bengaluru, Karnataka, India Acesoft Labs Full time ₹ 9,00,000 - ₹ 12,00,000 per yearRole & responsibilitiesDescription: Infrastructure Vulnerability Management Engineer:Job Description:3 to 6 years technical expert in c. Extensive experience in managing and mitigating infrastructure vulnerabilities, with a strong background in using Microsoft Defender for Endpoint and ServiceNow tools.Expertise:Good technical understanding of infrastructure...
-
Vulnerability Management Analyst
4 weeks ago
Bengaluru, India Sampoorna Consultants Pvt. Ltd Full timeRole :The role involves supporting the end to end vulnerability management (VM) service. The vulnerability management service helps defend KPMG and its clients by ensuring scans of KPMG information assets are performed and pro-actively managing vulnerabilities in conjunction with Enterprise wide and Technology engineering teams, in alignment with KPMG risk...
-
Vulnerability Management
4 weeks ago
Bengaluru, Karnataka, India ITC Infotech Full timeVulnerability Management - L3Location : BangaloreMode : Hybrid- On the portal where vulnerabilities are listed, each vulnerability must be analyzed;- Within each record of each vulnerability, analyze the required fixes and the vendor involved- Contact the vendor to discuss the vulnerability fix (usually the vendor applies the fix in a test environment)- If...
-
Threat and Vulnerability Engineer
6 days ago
Bengaluru, Karnataka, India Commvault Full time ₹ 9,00,000 - ₹ 12,00,000 per yearThreat and Vulnerability Engineer: The Opportunity: We are seeking a highly motivated Threat and Vulnerability Engineer to join our Information Security team. This individual will be part of the people, processes and technologies involved in aiding the Global Security program's efforts to further the company's strategic positioning with regards to...
-
Vulnerability Management
4 weeks ago
Bengaluru, Karnataka, India ITC Infotech Full timeVulnerability Management - L3 Location : Bangalore Mode : Hybrid On the portal where vulnerabilities are listed, each vulnerability must be analyzed; Within each record of each vulnerability, analyze the required fixes and the vendor involved Contact the vendor to discuss the vulnerability fix (usually the vendor applies the fix in a test environment) If...
-
Vulnerability Management Analyst
3 days ago
Bengaluru, India Sampoorna Consultants Full timeJob Description Role The role involves supporting the end to end vulnerability management (VM) service. The vulnerability management service helps defend KPMG and its clients by ensuring scans of KPMG information assets are performed and pro-actively managing vulnerabilities in conjunction with Enterprise wide and Technology engineering teams, in alignment...
-
Vulnerability Management Specialist
3 hours ago
Bengaluru, Karnataka, India Norwin Technologies Full time ₹ 15,00,000 - ₹ 25,00,000 per yearPosition OverviewWe are seeking a skilled Vulnerability Management Specialist with hands-on experience in AWS environments and Wiz (cloud security posture management).The ideal candidate will be responsible for identifying, assessing, and remediating vulnerabilities across our cloud infrastructure, ensuring compliance with security best practices, and...
-
Vulnerability Manager
2 weeks ago
Bengaluru, India SAP Fioneer Full timeInnovation is and will always be the core of SAP Fioneer, and it is the promise of why we were spun out of SAP: agility, innovation, and delivery. SAP Fioneer builds on a heritage of outstanding technology and a deep understanding of corporate and consumer demands. At the heart of it all it is simple: We bring financial services to the next level with...
