Vulnerability Management and Configuration Assessment

2 days ago

Mumbai, Maharashtra, India Yes Bank Full time

An L2 Vulnerability Management and Configuration Assessment role involves leading vulnerability assessments, analyzing scan results, prioritizing vulnerabilities, and driving remediation efforts. This position requires technical skills, understanding of information security principles, and the ability to collaborate with various teams to improve overall security posture. This role also involves advanced troubleshooting, configuration management, and problem resolution for complex IT systems, often involving escalations from L1 support and working with various stakeholders.

Key Responsibilities:

  • Vulnerability Assessment and Analysis:
  • Performing vulnerability scans across various environments (e.g., cloud, on-premises) using tools like Tenable and Qualys as per defined schedule.
  • Analyzing scan results to identify security weaknesses and misconfigurations.
  • Risk Prioritization and Remediation:
  • Work with IT and DevOps teams to develop and implement remediation plans.
  • Tracking remediation progress and ensuring timely closure of vulnerabilities.
  • Threat Intelligence and Monitoring:
  • Monitoring threat intelligence feeds and security advisories for emerging threats and vulnerabilities.
  • Assessing the potential impact of new threats and vulnerabilities on the organization's infrastructure.
  • Refining vulnerability prioritization and remediation strategies based on threat intelligence.
  • Documentation and Reporting:
  • Creating and maintaining vulnerability management documentation, including policies, procedures, and reports.
  • Developing and maintaining vulnerability dashboards and metrics to track the effectiveness of vulnerability management activities.
  • Collaboration and Communication:
  • Collaborating with various teams, including security architecture, application development, and risk management, to address vulnerabilities and improve security posture.

Skills and Experience:

  • Understanding of information security principles and practices.
  • Proficiency in vulnerability scanning tools and techniques.
  • Knowledge of Cloud Security concepts and best practices.
  • Excellent communication, collaboration, and problem-solving skills.
  • Understanding of ITIL principles with respect to Asset and Configuration Management.
  • Ability to communicate technical information to both technical and non-technical audiences.

Key Responsibilities relates to Configuration Assessment :

  • Tackling technical issues related to configurations, system deployments, and software/hardware interactions, often involving in-depth analysis and root cause identification.
  • Managing and maintaining the CMS and CMDB, well verse with CIS fundamentals and their relations while creating / maintaining existing hardening documents.
  • Receiving and resolving escalated issues from L1 support, providing guidance and support to junior team members.
  • Creating and maintaining comprehensive documentation of configurations, procedures, and troubleshooting steps, as well as sharing knowledge with the team.
  • Working closely with other IT teams, including network, security, and development teams, to ensure seamless system operation and efficient problem resolution.
  • Participating in the change management process, ensuring changes are properly assessed, documented, and implemented.
  • Providing configuration and implementation support for new customer projects and system upgrades.
  • Identifying opportunities to improve system efficiency, automate tasks, and enhance overall configuration management processes.

Experience : 2-4 years

  • vulnerability assessments Analyst

    13 hours ago

    Navi Mumbai, Maharashtra, India Kaivale Technologies Full time ₹ 9,00,000 - ₹ 12,00,000 per year

    Position :--VAPT Junior Security AnalystLocation - Navi Mumbai WFORoles and Responsibilities:-1.     Conduct vulnerability assessments using industry-leading tools (e.g., Nessus, Tenable, Qualys).2.     Analyse vulnerability assessment results to identify and prioritize risks.3.     Develop and maintain vulnerability management processes and...

  • Vulnerability Intelligence

    6 days ago

    Mumbai, Maharashtra, India NMS Consultant Full time ₹ 20,00,000 - ₹ 25,00,000 per year

    Vulnerability Intelligence (VI):Drive the qualification and risk analysis of newly disclosed vulnerabilitiePerform exploit PoC validation when needed to assess practical riskMaintain and enhance the central VI database, enriched with (EPSS, CVSS, QVS, SG-specificscoring models, and EUVD)Define and automate workflows for:Vulnerability qualification, exposure...

  • Patch & Vulnerability Management Engineer

    2 days ago

    Mumbai, Maharashtra, India Team1 Consulting Full time ₹ 9,00,000 - ₹ 12,00,000 per year

    About Company:Team1 Consulting is a leading System Integrator specializing in IT infrastructure, software, cyber security, cloud solutions, and generative AI domains. We deliver cutting-edge IT solutions tailored to drive innovation and accelerate business growth. Our expertise empowers organizations across industries to thrive in the digital era with...

  • Information Security Lead-8 to 1 0yrs

    1 week ago

    Mumbai, Maharashtra, India Semperfi Solutions and Services Full time ₹ 1,20,00,000 - ₹ 1,80,00,000 per year

    Information Security Lead ( 8 – 10 Year Experience) Governance Risk and Compliance Project Implementation: Oversee the implementation of information security projects, ensuring alignment with organizational goals and compliance requirements. Policy Development and Maintenance: Develop, maintain, and update information security policies to align with best...

  • VOC - VI (Vulnerability Intelligence) & ASM (Attack Surface Management) Analyst

    2 weeks ago

    Mumbai, Maharashtra, India Talentmatics Full time ₹ 15,00,000 - ₹ 25,00,000 per year

    We are seeking a skilled and proactiveVOC - VI (Vulnerability Intelligence) & ASM (Attack Surface Management) Analystto join our Cybersecurity team.The role involves identifying, analyzing, and prioritizing vulnerabilities and external threats, ensuring comprehensive protection of enterprise systems and data.You will be responsible for vulnerability...

  • Manager - Product Configuration

    2 days ago

    Navi Mumbai, Maharashtra, India John Cockerill Full time ₹ 15,00,000 - ₹ 25,00,000 per year

    Location: Ghansoli, Navi MumbaiRole & responsibilitiesTo understand and analyze complete life cycle / Value chain of our products and services (Design, development, engineering, manufacturing, Installation, commissioning and startup)To analyze and understand technical data to extract relevant needed configuration ones and considered as configuration data.To...

  • Configuration Manager

    1 week ago

    Mumbai, Maharashtra, India Growel Softech Pvt. Ltd. Full time ₹ 12,00,000 - ₹ 36,00,000 per year

    - Generic JD General Responsibilities Transformation Support At the start of a transformation effort the Service Asset Discovery Consultant will lead SACM transformation, working closely with the customer, key delivery stakeholders, procurement / finance, delivery teams and Capgemini tool(s) teams to consolidate and produce the production record of truth...

  • VAPT Manager/ Senior Manager

    1 week ago

    Mumbai, Maharashtra, India Cubical Operations LLP Full time ₹ 20,00,000 - ₹ 25,00,000 per year

    Job Title:Manager / Senior Manager – VAPT with SonarQube ExpertiseJob Type:Full-TimeLocations:Mumbai, Bangalore, GurgaonExperience Required:5+ YearsRole Overview:We are seeking an experienced professional inVulnerability Assessment & Penetration Testing (VAPT)with proven expertise inSonarQube integration and implementation. The ideal candidate will be...

  • Environment & Configuration Manager

    1 week ago

    Mumbai, Maharashtra, India Luxoft Full time ₹ 15,00,000 - ₹ 25,00,000 per year

    Project description We are building the APAC Competency Centre for a leading European Asset Manager who has developed a state-of-the-art trading and risk management platform, used both internally and by external clients. This center will play a critical role in onboarding new investment managers end-to-endfrom data migration and system setup to reporting,...

  • Information Security

    6 hours ago

    Mumbai, Maharashtra, India Topgear Consultants Full time ₹ 15,00,000 - ₹ 25,00,000 per year

    Role & responsibilities -Conduct regular vulnerability assessments, penetration testing, application security, source code review, threat modelling to identify weaknesses in systems, applications, APIs and network infrastructure.Conduct secure configuration review via tools to identify weakness at configuration level in respective systems based on CIS /NIST...