$ads={1}
Must have Requirements:
1. Well versed with development of vulnerability management tool architecture, deployment, and configuration of vulnerability tools like Qualys.
2. Extensive experience in Qualys modules like VM, PC and WAS
3. Experience in vulnerability management tool integration with CMDB and ITSM tools
4. Extensive experience to automate the operational tasks in Qualys like Asset inventory/ Asset group updates, automate password change across authentication records etc. (using bash/python or other programming / scripting languages)
5. Vulnerability Management engineering to discover vulnerabilities, script and automate data ingestion, control and remediate platform or accounts issues, outline processes and scripts for operation on how to clean input data, perform imports in the tool, instruct operations etc.
6. Having a good knowledge on the vulnerability management lifecycle
7. Analyze the current state of the tasks and propose and implement solution for automation opportunities
8. Experience in Network security domain for understanding and creation of tool deployment architecture.
9. Performing evaluation of the vulnerability scanning tools deployed in the environment and provide recommendations
10. Able to identify and suggest vulnerability management tool related architectural best practices
11. Working experience on configuring the vulnerability management tool including scanner, cloud agents, scanning profiles, policy compliance templates, scanning schedules etc.
12. Creation and deployment of vulnerability management related process
13. Review process definition and technical operational run books.
14. Analyze, Interpret, and prioritize vulnerability scan results into remediation actions
15. Improve and mature the vulnerability management process
16. Govern end to end vulnerability management lifecycle
17. Provide recommendations on the emerging security threats to client
18. Provide recommendations on emerging tools complimenting the vulnerability management landscape
Should have Requirements:
1. Good understanding of information security related fields, including security implementation, security operations, and security policy and technology administration
2. Should possess good understanding of assets, threats and vulnerabilities and their correlation in an organization
3. Should have leadership qualities to handle a team of 25+professionals
4. Experience in governance of vulnerability backlog remediation
5. Knowledge of SANS Top 20 Critical Security Controls and NIST Vulnerability Database (CVE)
6. Should be able to collect feedback and analyze weak areas and present the same to management
7. Should be able to collect gaps in vulnerability management processes and provide optimization recommendations to customer
Good to Have Requirements:
1. Experience on vulnerability prioritization platforms like RiskSense, Kenna, Lumin, VMDR would be a plus
2. Good Understanding of ServiceNow Vulnerability Response module
3. Experience on tools like StealthAudit
4. Hands on experience in vulnerability patching for Wintel/Linux etc.
5. Hand on experience in tools like SCCM/ BigFix etc.
Qualification: Candidate should be graduate preferably B. E/ B. Tech/ M. Tech/ MCA
Certification:
- Qualys Certified Specialist for VM, PC, WAS is must
- Certifications like CCNA, CISA, IS0 27001, or CEH
Experience: Candidate should have overall experience of 10+ years on Vulnerability Management
- Excellent communication and customer handling skills
- Must be from global support/ practice background
- Motivated to complete tasks and projects
- Strong MS Office, documentation, communication, and presentation skills
