isecjobs.com

Consultant, Surface Area Management - Vulnerability Management

Bangalore, Karnataka, IN India, 560087

Full Time Mid-level / Intermediate USD 46K - 87K * est.
Company logo

Cargill

View all jobs at Cargill

Apply now Apply later

Job Purpose and Impact

  • The Professional, Surface Area Management job safeguards the organization's digital assets by identifying and mitigating security vulnerabilities. With limited supervision, this job maintains vulnerability management systems' effectiveness and improves the organization's overall cybersecurity posture.

Key Accountabilities

The Professional Vulnerability Analyst job safeguards the organization’s digital assets by identifying, assessing, and helping remediate vulnerabilities across the global enterprise. With limited supervision, this job maintains vulnerability management systems' effectiveness and improves the organization’s overall cybersecurity posture through close coordination with stakeholders such as IT, security engineering, and application owners. This includes the following:

  • Analyzing vulnerability data from tools such as Tenable, Qualys, or Rapid7.
  • Prioritizing vulnerabilities based on risk context.
  • Tracking remediation process and driving accountability with system owners through ticketing systems like Jira or ServiceNow.
  • Strong communication and collaboration skills to work effectively across IT and security teams.
  • Generate and present reports on vulnerability trends, SLA compliance, and risk posture.
  • Support vulnerability scanning operations and troubleshoot scan coverage issues.
  • Collaborate with other cyber security teams like Threat Intelligence to validate and enrich findings.
  • Assist in patch validation and change coordination for remediation activities.
  • Contribute to the tuning of scanning tools and development of custom dashboards.
  • Stay informed on emerging threats, CVEs, zero-days, and best practices in vulnerability management.
  • Solid understanding of CVSS, MITRE ATT&CK, and modern threat landscapes.
  • Familiarity with remediation strategies on Windows, Linux, networking equipment, and cloud services (AWS, Azure, GCP, and/or OCI) - focused specialty in cloud services is a plus.

Qualifications

  • Minimum requirement of 2 years of relevant work experience. Typically reflects 3 years or more of relevant experience.
Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  0  0  0
Category: Consulting Jobs

Tags: AWS Azure Cloud Compliance CVSS GCP Jira Linux MITRE ATT&CK Qualys Threat intelligence Vulnerabilities Vulnerability management Windows

Region: Asia/Pacific
Country: India

More jobs like this

« Back to job search To the top ↑

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.

Information System Security Officer jobsSenior Security Analyst jobsSystems Administrator jobsSenior Cybersecurity Engineer jobsSecurity Operations Engineer jobsSenior Cloud Security Engineer jobsSenior Information Security Analyst jobsCyber Security Specialist jobsInformation Security Manager jobsSenior Product Security Engineer jobsSecurity Consultant jobsSenior Network Security Engineer jobsInformation System Security Officer (ISSO) jobsSenior Cyber Security Engineer jobsSenior Information Security Engineer jobsChief Information Security Officer jobsSecurity Specialist jobsInformation Systems Security Engineer jobsCyber Threat Intelligence Analyst jobsIT Security Engineer jobsNetwork Engineer jobsSenior Software Engineer jobsSecurity Operations Analyst jobsCybersecurity Specialist jobsSenior IT Auditor jobs
Security assessment jobsGDPR jobsEDR jobsTS/SCI jobsEncryption jobsSDLC jobsThreat detection jobsSplunk jobsRMF jobsTerraform jobsMalware jobsCompTIA jobsIDS jobsSQL jobsITIL jobsIPS jobsFinance jobsOWASP jobsTop Secret jobsActive Directory jobsSOC 2 jobsDocker jobsForensics jobsGIAC jobsClearance Required jobs
OSCP jobsMITRE ATT&CK jobsDoDD 8570 jobsCRISC jobsHIPAA jobsIntrusion detection jobsTCP/IP jobsAnsible jobsVPN jobsZero Trust jobsSOAR jobsJavaScript jobsIT infrastructure jobsCCSP jobsData Analytics jobsUNIX jobsJira jobsDNS jobsIndustrial jobsBanking jobsNIST 800-53 jobsKPIs jobsSOX jobsSANS jobsCISO jobs