OT Vulnerability Management Engineer

4 weeks ago

bangalore, India Haleon Full time

Hello. Were Haleon. A new world-leading consumer health company. Shaped by all who join us. Together, were improving everyday health for billions of people. By growing and innovating our global portfolio of category-leading brands including Sensodyne, Panadol, Advil, Voltaren, Theraflu, Otrivin, and Centrum through a unique combination of deep human understanding and trusted science. Whats more, were achieving it in a company that were in control of. In an environment that we’re co-creating. And a culture that’s uniquely ours. Care to join us. It isn’t a question.

With category leading brands such as Sensodyne, Voltaren and Centrum, built on trusted science and human understanding, and combined with our passion, knowledge and expertise, we’re uniquely placed to do this and to grow a strong, successful business.

This is an exciting time to join us and help shape the future. It’s an opportunity to be part of something special.

About Role:

This role will provide technical support to setup and run OT Vulnerability Management Program by implementing, and using Vulnerability Management technologies, tools, and processes. The candidate should be knowledgeable of supporting OT vulnerability lifecycle (from detection to closure), keeping a risk-based approach throughout the lifecycle.

The best candidate will have the security-by-design mindset and yet understand the importance of building relationships with the other IT teams to convince them to patch the vulnerabilities for reducing cyber risk to the Company. The chosen candidate will analyze the vulnerabilities identified by the OT VM tool, create customer friendly reports and present them with the OT Business and Technology asset owners and remediators, track remediation progress and publish metrics to leadership identifying the risk due to vulnerabilities that are not remediated in timely manager.

Key responsibilities

Support building OT Vulnerability Management Strategic Roadmap and Plan Execute OT VM Processes Develop OT VM processes, guidelines, standards, and metrics Implement OT vulnerability prioritization frameworks Lead remediation tracking meetings to explain vulnerabilities and possible remediation/mitigation solution. Also motivate remediators to commit a remediation plans at the same time ensure their remediation is not impacting the business negatively. Lead zero-day/emergency-vulnerability evaluation and resolution to ensure if a particular zero-day or emergency vulnerability is impacting Haleon OT devices, is there a remediation or mitigation possible etc. Also support incident response team (as needed). Support OT-VM vendor to provide day-to-day support to the customer, by following defined processes and procedures to detect, triage, prioritize, report the vulnerabilities to the customer and providing accurate remediation/mitigation advice.

Minimum Experience

10 years - 7 years of Information Security plus 3 years of OT experience (including 2 years of OT VM tool like Claroty etc)

Strong technical knowledge regarding OT technologies, to evaluate and prioritize security vulnerabilities that can impact the OT technologies and to provide appropriate remediation/mitigation recommendations.  Experience in executing OT VM program, processes, procedures, standards, metrics. Great written and verbal communication (in English) to engage customer in remediation/mitigation activities. Conflict resolution capabilities to finding a middle ground in the case where customer is yet convinced to remediate/mitigate. Analyzing security vulnerabilities and deciding if this impacts Haleon and what should be done to remediate or mitigate it.  Convincing customer to remediate/mitigate at the same time making sure it is not impacting the business. Finding a balance between Security and Business objectives, by creating a culture where security is major consideration. Should be capable of raising risk/escalations if a zero-day or critical-vulnerability can have a big impact on the organization but customer can’t remediate or mitigate. Attending incident meetings that can happen any hour of the day, if incident response team needs VM team’s support

This role impacts business by ensuring a particular security vulnerability has an impact on the business, convincing business to remediate/mitigate. The candidate will interact with various levels within Business, IT and Security so should have great communication skills.

Conflict resolution when interacting with the customer to motivate them to remediate/mitigate a security vulnerability. Great Written and verbal communication to deliver complex technical message in simple English. Understanding and enjoying cultural diversity as Haleon is truly a global organization.  Open to multi task and think on the feet.

Preferred Experience:

12 years (8 years of Information Security plus 4 years of OT experience(3 years of OT VM tool like Claroty etc.)

Minimum Education:

University degree/Masters or equivalent

Diversity, Equity and Inclusion 

At Haleon we embrace our diverse workforce by creating an inclusive environment that celebrates our unique perspectives, generates curiosity to create unmatched understanding of each other, and promotes fair and equitable outcomes for everyone.

We’re striving to create a climate where we celebrate our diversity in all forms by treating each other with respect, listening to different viewpoints, supporting our communities, and creating a workplace where your authentic self belongs and thrives.

We believe in an agile working culture for all our roles. If flexibility is important to you, we encourage you to explore with our hiring team what the opportunities are.

Care to join us. Find out what life at Haleon is really like At Haleon we embrace our diverse workforce by creating an inclusive environment that celebrates our unique perspectives, generates curiosity to create unmatched understanding of each other, and promotes fair and equitable outcomes for everyone. We're striving to create a climate where we celebrate our diversity in all forms by treating each other with respect, listening to different viewpoints, supporting our communities, and creating a workplace where your authentic self belongs and thrives. We believe in an agile working culture for all our roles. If flexibility is important to you, we encourage you to explore with our hiring team what the opportunities are.
As you apply, we will ask you to share some personal information, which is entirely voluntary. We want to have an opportunity to consider a diverse pool of qualified candidates and this information will assist us in meeting that objective and in understanding how well we are doing against our inclusion and diversity ambitions. We would really appreciate it if you could take a few moments to complete it. Rest assured, Hiring Managers do not have access to this information and we will treat your information confidentially.
Haleon is an Equal Opportunity Employer. All qualified applicants will receive equal consideration for employment without regard to race, color, national origin, religion, sex, pregnancy, marital status, sexual orientation, gender identity/expression, age, disability, genetic information, military service, covered/protected veteran status or any other federal, state or local protected class.
Please note that if you are a US Licensed Healthcare Professional or Healthcare Professional as defined by the laws of the state issuing your license, Haleon may be required to capture and report expenses Haleon incurs, on your behalf, in the event you are afforded an interview for employment. This capture of applicable transfers of value is necessary to ensure Haleon’s compliance to all federal and state US Transparency requirements.

  • OT Cybersecurity Engineer

    2 months ago

    bangalore, India SBM Offshore Full time

    RESPONSIBILITIES for Cybersecurity• Understands standards with respect to Operational Technology (OT) cyber security – not simply Information Technology (IT) Cyber Security. • Conversant with IEC 62443, ISA 99 and NIST 800-53 and their applications within an OT network. • Understands the requirements for Cyber security performance, KPIs and...

  • OT Cybersecurity Engineer

    3 weeks ago

    bangalore, India SBM Offshore Full time

    RESPONSIBILITIES for Cybersecurity• Understands standards with respect to Operational Technology (OT) cyber security – not simply Information Technology (IT) Cyber Security. • Conversant with IEC 62443, ISA 99 and NIST 800-53 and their applications within an OT network. • Understands the requirements for Cyber security performance, KPIs and...

  • Factory (ICS/ OT) Security Engineer

    2 months ago

    bangalore, India Mindsprint Full time

    Job SummaryThe Factory (ICS/ OT ) Security specialist will be responsible for the implementation of Factory Security Program and Practices for Mindsprint Customers. This position requires a strong understanding of both IT and OT systems, as well as expertise in cybersecurity practices specific to Factory Systems.Job Description:Design, configure, assess,...

  • Factory (ICS/ OT) Security Engineer

    2 months ago

    bangalore, India Mindsprint Full time

    Job Summary The Factory (ICS/ OT ) Security specialist will be responsible for the implementation of Factory Security Program and Practices for Mindsprint Customers. This position requires a strong understanding of both IT and OT systems, as well as expertise in cybersecurity practices specific to Factory Systems. Job Description: Design, configure,...

  • OT Security

    2 months ago

    bangalore, India Deloitte Full time

    Your potential, unleashed.India’s impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realise your potential amongst cutting edge leaders, and organisations shaping the future of the region, and indeed, the world beyond.At Deloitte, your whole self to work, every day. Combine that with our...

  • OT Security

    3 weeks ago

    bangalore, India Deloitte Full time

    Your potential, unleashed.India’s impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realise your potential amongst cutting edge leaders, and organisations shaping the future of the region, and indeed, the world beyond.At Deloitte, your whole self to work, every day. Combine that with our...

  • Factory (ICS/ OT) Security Engineer

    2 months ago

    Bangalore Urban, India Mindsprint Full time

    Job SummaryThe Factory (ICS/ OT ) Security specialist will be responsible for the implementation of Factory Security Program and Practices for Mindsprint Customers. This position requires a strong understanding of both IT and OT systems, as well as expertise in cybersecurity practices specific to Factory Systems.Job Description:Design, configure, assess,...

  • Security Analyst, Vulnerability Management Operations

    3 weeks ago

    bangalore, India Illumina Full time

    What if the work you did every day could impact the lives of people you know? Or all of humanity?At Illumina, we are expanding access to genomic technology to realize health equity for billions of people around the world. Our efforts enable life-changing discoveries that are transforming human health through the early detection and diagnosis of diseases and...

  • Security Analyst, Vulnerability Management Operations

    1 month ago

    bangalore, India Illumina Full time

    What if the work you did every day could impact the lives of people you know? Or all of humanity?At Illumina, we are expanding access to genomic technology to realize health equity for billions of people around the world. Our efforts enable life-changing discoveries that are transforming human health through the early detection and diagnosis of diseases and...

  • Principal OT Security Architect

    2 months ago

    Bangalore, Karnataka, India GLAXOSMITHKLINE ASIA PVT. LTD Full time

    Job Description :Hello. We're Haleon. A new world-leading consumer health company. Shaped by all who join us. Together, we're improving everyday health for billions of people. By growing and innovating our global portfolio of category-leading brands - including Sensodyne, Panadol, Advil, Voltaren, Theraflu, Otrivin, and Centrum - through a unique...

  • Principal OT Security Architect

    2 months ago

    bangalore, India GLAXOSMITHKLINE ASIA PVT. LTD Full time

    Job Description : Hello. We're Haleon. A new world-leading consumer health company. Shaped by all who join us. Together, we're improving everyday health for billions of people. By growing and innovating our global portfolio of category-leading brands - including Sensodyne, Panadol, Advil, Voltaren, Theraflu, Otrivin, and Centrum - through a unique...

  • Principal OT Security Architect

    2 months ago

    Bangalore, India GLAXOSMITHKLINE ASIA PVT. LTD Full time

    Job Description : Hello. We're Haleon. A new world-leading consumer health company. Shaped by all who join us. Together, we're improving everyday health for billions of people. By growing and innovating our global portfolio of category-leading brands - including Sensodyne, Panadol, Advil, Voltaren, Theraflu, Otrivin, and Centrum - through a unique...

  • RA- D&R- Associate Director- OT Security

    2 months ago

    bangalore, India Deloitte Full time

    What impact will you make? Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy...

  • RA- D&R- Associate Director- OT Security

    3 weeks ago

    bangalore, India Deloitte Full time

    What impact will you make? Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy...

  • Vulnerability Management Engineer

    2 months ago

    Chennai/Bangalore, Tamil Nadu, India Mobile Programming Full time

    Salary : 12 - 24 LPAJob Description : Vulnerability management Engineer : - Emphasis on the importance of being able to assess the risk of these CVEs contextualized for your environment being able to prioritize these CVEs. Triage Vulnerability mgmt life cycle. - Responsible for the Application Security and Vulnerability Management Product (SAST, DAST,...

  • Vulnerability Management Engineer

    3 weeks ago

    Chennai/Bangalore, India Mobile Programming Full time

    Salary : 12 - 24 LPA Job Description : Vulnerability management Engineer : - Emphasis on the importance of being able to assess the risk of these CVEs contextualized for your environment being able to prioritize these CVEs. Triage Vulnerability mgmt life cycle. - Responsible for the Application Security and Vulnerability Management Product (SAST, DAST,...

  • Vulnerability Management Engineer

    2 months ago

    Chennai/Bangalore, India Mobile Programming Full time

    Salary : 12 - 24 LPA Job Description : Vulnerability management Engineer : - Emphasis on the importance of being able to assess the risk of these CVEs contextualized for your environment being able to prioritize these CVEs. Triage Vulnerability mgmt life cycle. - Responsible for the Application Security and Vulnerability Management Product (SAST, DAST,...

  • Vulnerability Management Engineer

    3 weeks ago

    Chennai/Bangalore, Tamil Nadu, India Mobile Programming Full time

    Salary : 12 - 24 LPAJob Description : Vulnerability management Engineer : - Emphasis on the importance of being able to assess the risk of these CVEs contextualized for your environment being able to prioritize these CVEs. Triage Vulnerability mgmt life cycle. - Responsible for the Application Security and Vulnerability Management Product (SAST, DAST,...

  • Vulnerability Management Engineer | Bangalore

    2 months ago

    bangalore, India Michael Page Full time

    Solid understanding of Networks, IP, Telnets and end user compute Must have hands on in Vulnerability management About Our Client Our client is one of the largest manufacturers of semiconductor equipment globally with a revenue of $17Bn. Job Description Oversee the internal cybersecurity vulnerability management service, providing...

  • Vulnerability Management Engineer | Bangalore

    3 weeks ago

    bangalore, India Michael Page Full time

    Solid understanding of Networks, IP, Telnets and end user compute Must have hands on in Vulnerability management About Our Client Our client is one of the largest manufacturers of semiconductor equipment globally with a revenue of $17Bn. Job Description Oversee the internal cybersecurity vulnerability management service, providing...