Information Security Specialist

We are seeking an experienced Vulnerability Management Specialist to join our Security Operations team. The ideal candidate will lead, implement, identify, assess, and mitigate security vulnerabilities across our infrastructure, including cloud environments. This role requires hands-on experience with vulnerability management tools, container security, and cloud security posture management, as well as a basic understanding of Generative AI technology

• Implementing Vulnerability Management Solutions like Rapid7, Tenable, etc.
• Conduct regular vulnerability scans using tools such as Wiz, Rapid7, and CrowdStrike Exposure Management, Microsoft Defender etc.
• Analyze scan results, prioritize vulnerabilities, and collaborate with stakeholders to implement remediation plans.
• Manage and govern patch deployment processes to ensure timely remediation of vulnerabilities.
• Perform risk and vulnerability assessments, documenting findings and engaging with stakeholders to address risks.
• Oversee the risk acceptance and exclusion processes, ensuring appropriate documentation and approvals.
• Monitor container security and cloud security posture, recommending improvements and best practices.
• Provide threat management support and respond to identified threats effectively.
• Maintain comprehensive reports on vulnerability findings, trends, and remediation progress.
• Support security audits and compliance requirements related to vulnerability management.
• Has been involved into reviewing threat intelligence advisories for Zero day and critical vulnerabilities.
• Very good with documenting and tracking threat advisories
• Lead and mentor a team of vulnerability analysts

Required Skills and Experience:

6-9 years of experience in vulnerability management and threat management.
Hands-on experience with vulnerability scanning tools (Wiz, Rapid7, Nessus , CrowdStrike , MDE, Axonius etc).
Proficient in container security, On-prem and Cloud Vulnerability Management
Proficient in cloud platforms (AWS, Azure, or GCP).
Experience in patch governance and stakeholder engagement for vulnerability remediation.
Familiarity with risk acceptance and exclusion processes.
Basic understanding of Generative AI (GenAI) concepts and experience handling co-pilot tool.
Strong analytical skills and attention to detail.
Excellent communication and stakeholder management skills.
Good understanding of Security Frameworks and Standards (NIST , CIS , PCI-DSS etc. )
Leading a team of Vulnerability Analysts.

Preferred Qualifications:

Experience with other security tools and frameworks.
Experience with data visualization tools like Power BI, AWS Quicksight, etc.
Scripting and Automation Experience (Python , Go, etc)
Security Certifications ( CISSP or CISM or CEH)

• You will have the opportunity to work with the industry most advanced technologies and experts in a global company
• You will have opportunities to evolve yourself in the future of all cutting-edge technologies and business trends.
• You will be working with a great team