Roles and Responsibilities
Experience: 6 Yrs to 10 yrs
Notice Period: 0 to 30 days
Working Hours: Willingness to work till midnight IST
- Identify and Monitor Customers Corporate Networks to determine if there have been any attacks. Analyze network traffic to identify anomalies and test information security controls for weaknesses.
- Understanding of Rapid 7 InsightVM Vulnerability Management custom reporting, template-based scanning, credential/agent based scanning
- Excellent skills in vulnerability analytics, objective will be to reduce critical and eminent vulnerabilities, by addressing the vulnerabilities that have wider impact on assets. Currently they have 15,000+ critical vulnerabilities that need to get addressed in 30 days
- Providing patch references and remediation guidelines to IT teams
- Good understanding of MAC OSX vulnerabilities, Linux, Ubuntu 18.04, Windows domain controllers, Firewalls and Member servers
- Prioritization of vulnerabilities based on exposure, RCE, Remote execution, Low Auth, Exploited in wild, CVSS 3.0 scores
- Validation of all the resolved/remediated/patched vulnerabilities on target IT Assets
- Risk Exception/Acceptance process management - granted, tracked, and reviewed
- Providing Metrics for Vulnerability Management in PowerBI
- Application Vulnerability Management - Approved software baseline - Native vs non-native. Ensure that all the third-party applications are patched/updated
- Good understanding of Vulnerability Intelligence CISA, Vendor advisories, 0-days, APTs, etc
- Excellent communication skills
Desired Candidate Profile
Perks and Benefits