2,189 Vulnerability Management jobs in India

Immediate joiners only
Exp - 5+ Years
Location: Bangalore / Chennai / Gurgaon / Hyderabad

Job Description
Perform Vulnerability assessment & Policy Compliance using leading Vulnerability Scanning solutions like Qualys etc.
Perform Vulnerability assessments & Policy Compliance on On-prem, Cloud hosted systems, container (like Docker & Kubernetes), databases, web services and other widely deployed infrastructure components.
Perform false positive validation and ensure delivery of quality reports.
Act as a technical SME to analyse the vulnerability results & detection logic.
Provide technical advice and support on remediation to infrastructure / application support teams.
Perform Vulnerability assessment & Policy Compliance using leading Vulnerability Scanning solutions like Qualys etc.
Perform Vulnerability assessments & Policy Compliance on On-prem, Cloud hosted systems, container (like Docker & Kubernetes), databases, web services and other widely deployed infrastructure components.
Perform false positive validation and ensure delivery of quality reports.
Act as a technical SME to analyse the vulnerability results & detection logic.
Provide technical advice and support on remediation to infrastructure / application support teams.
Review findings and identify root causes for common issues and provide recommendations for sustainable improvements.
Responsible to maintain vulnerability quality assurance by building VM team technical knowledge base.
Research and report on security vulnerabilities and latest advancements in the vulnerability management lifecycle.
Understand security policies, procedures and guidelines to all levels of management and staff.
Communicate effectively orally and in writing and establish cooperative working relationships.
Provide suggestion to improve vulnerability Management service based on current trends in information technology (Network, system security software and hardware).
Act as line manager in the absence of team lead.

Immediate joiners only

Exp - 5+ Years

Location: Bangalore / Chennai / Gurgaon / Hyderabad

Job Description

• Perform Vulnerability assessment & Policy Compliance using leading Vulnerability Scanning solutions like Qualys etc.
• Perform Vulnerability assessments & Policy Compliance on On-prem, Cloud hosted systems, container (like Docker & Kubernetes), databases, web services and other widely deployed infrastructure components.
• Perform false positive validation and ensure delivery of quality reports.
• Act as a technical SME to analyse the vulnerability results & detection logic.
• Provide technical advice and support on remediation to infrastructure / application support teams.
• Perform Vulnerability assessment & Policy Compliance using leading Vulnerability Scanning solutions like Qualys etc.
• Perform Vulnerability assessments & Policy Compliance on On-prem, Cloud hosted systems, container (like Docker & Kubernetes), databases, web services and other widely deployed infrastructure components.
• Perform false positive validation and ensure delivery of quality reports.
• Act as a technical SME to analyse the vulnerability results & detection logic.
• Provide technical advice and support on remediation to infrastructure / application support teams.
• Review findings and identify root causes for common issues and provide recommendations for sustainable improvements.
• Responsible to maintain vulnerability quality assurance by building VM team technical knowledge base.
• Research and report on security vulnerabilities and latest advancements in the vulnerability management lifecycle.
• Understand security policies, procedures and guidelines to all levels of management and staff.
• Communicate effectively orally and in writing and establish cooperative working relationships.
• Provide suggestion to improve vulnerability Management service based on current trends in information technology (Network, system security software and hardware).
• Act as line manager in the absence of team lead.

Experience:  2 to 5 Years

Location:  Navi Mumbai

Job Type:  FTC

Interview Type: F2F

Job Description:

Professional Qualification

Minimum 2 years of relevant experience in SOC/Incident Management/Incident Response /Threat Detection Engineering/ Vulnerability Management/ SOC platform management/ Automation/Asset Integration/ Threat Intel Management /Threat Hunting

Required Certification Mandatory (Any-one): -

Mandatory (Any-one): - Certified SOC Analyst (ECCouncil), Computer Hacking Forensic Investigator (ECCouncil), Certified Ethical Hacker (EC-Council), CompTIA Security+, CompTIA CySA+ (Cybersecurity Analyst), GIAC Certified Incident Handler (GCIH) or equivalent. Product Certifications (Preferred): - Product Certifications on SOC Security Tools such as SIEM/Vulnerability Management/ DAM/UBA/ SOAR/NBA etc.

 Key Roles & Responsibilities

• Vulnerability assessment & Penetration testing (VAPT) as per the bank's regulatory and operational requirements.

• External Penetration Testing of Bank's internet facing Web, Mobile, Web services, Network and Infrastructure on periodic basis as per Bank's provided schedules.

• Maintain an up-to-date inventory of IT assets.

• Regularly scan and assess systems for vulnerabilities. •Vulnerabilities prioritization based on the risk and potential impact. • Continuous breach attack simulations

• SCD (Secure Configuration Document) verifications

• Anti-Malware & Malicious Content Scan

• Near real time detection and monitoring of emerging vulnerabilities

• Define and measure metrics to track effectiveness of VM program.

**In This Role, Your Responsibilities Will Be:**
+ Emerson Product Vulnerability Tracking:
+ Coordinate with Enterprise Vulnerability Manager for tracking Emerson product vulnerabilities in centralized secure database.
+ Monitor Emerson product vulnerability lifecycle and keep relative databases up to date.
+ 3 rd Party Vulnerability Tracking:
+ Track active vulnerability reported with commonly used 3rd party components
+ Periodically update Enterprise Vulnerability Manager with reports and escalations related to 3rd party component
+ PSIRT Membership:
+ Work closely with PSIRT Manager to provide details related to incident response cases.
+ Assist Governance Leader regarding PSIRT handling
**Who You Are:**
+ You take initiatives and doesn't wait for instructions and proactively seek opportunities to contribute. You adapt quickly to new situations and apply knowledge effectively. Clearly convey ideas and actively listen to others to complete assigned task as planned.
**For This Role, You Will Need:**
+ Compliance Reporting:
+ Generate detailed compliance reports on vulnerabilities. Ensure reports meet international standards and regulatory requirements.
+ Maintain vulnerability dashboard and metrics to share with management on periodic basis.
+ Documentation: Coordinate with Product Security Analyst to develop and maintain vulnerability management documentation, including policies, procedures, and playbooks as designated by Governance Leader.
+ Continuous Improvement: Engage in vulnerability management program reviews and continuous improvement initiatives.
+ Training and Support: Provide guidance and training to Product teams on best practices for vulnerability management and compliance reporting.
**Preferred Qualifications That Set You Apart:**
+ Education: Bachelor's degree in Computer Science, Information Security or a related field.
+ Skills: Experience with vulnerability management programs and tools (SBOM, Asset Management, Reporting)
+ Experience: 4+ years of experience in product development, vulnerability management, information security, or a related role
+ Communication: Excellent verbal and written communication skills.
+ Personality Attributes: Strong analytical thinking, collaborative and proactive approach.
**Our Culture & Commitment to You:**
At Emerson, we prioritize a workplace where every employee is valued, respected, and empowered to grow. We foster an environment that encourages innovation, collaboration, and diverse perspectives-because we know that great ideas come from great teams. Our commitment to ongoing career development and growing an inclusive culture ensures you have the support to thrive. Whether through mentorship, training, or leadership opportunities, we invest in your success so you can make a lasting impact. We believe diverse teams, working together are key to driving growth and delivering business results.
We recognize the importance of employee wellbeing. We prioritize providing competitive benefits plans, a variety of medical insurance plans, Employee Assistance Program, employee resource groups, recognition, and much more. Our culture offers flexible time off plans, including paid parental leave (maternal and paternal), vacation and holiday leave.
**Requisition ID** : 25022063
Emerson is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to sex, race, color, religion, national origin, age, marital status, political affiliation, sexual orientation, gender identity, genetic information, disability or protected veteran status. We are committed to providing a workplace free of any discrimination or harassment.

Join Amgen's Mission of Serving Patients
At Amgen, if you feel like you're part of something bigger, it's because you are. Our shared mission-to serve patients living with serious illnesses-drives all that we do.
Since 1980, we've helped pioneer the world of biotech in our fight against the world's toughest diseases. With our focus on four therapeutic areas -Oncology, Inflammation, General Medicine, and Rare Disease- we reach millions of patients each year. As a member of the Amgen team, you'll help make a lasting impact on the lives of patients as we research, manufacture, and deliver innovative medicines to help people live longer, fuller happier lives.
Our award-winning culture is collaborative, innovative, and science based. If you have a passion for challenges and the opportunities that lay within them, you'll thrive as part of the Amgen team. Join us and transform the lives of patients while transforming your career.
Information Security Engineer - Vulnerability Management Analyst
**What you will do**
Let's do this. Let's change the world. In this vital role is focused on identifying, assessing, prioritizing, and tracking the remediation of vulnerabilities across the organization's technology stack. The Vulnerability Management Analyst plays a key role in the security operations team by ensuring known vulnerabilities are managed through their lifecycle using structured processes and tools. The individual will analyze vulnerability scan data, correlate threat intelligence (e.g., KEV, EPSS), and work closely with infrastructure, application, and business teams to drive risk-based remediation.
**Roles & Responsibilities:**
+ Analyze vulnerability scan results from tools like Tenable, Qualys, or Rapid7 to identify security weaknesses across infrastructure and applications.
+ Prioritize vulnerabilities using multiple criteria, including CVSS, KEV (Known Exploited Vulnerabilities), EPSS (Exploit Prediction Scoring System), asset criticality, and business context.
+ Partner with IT and DevOps teams to track remediation progress and provide technical guidance on mitigation strategies.
+ Monitor threat intelligence feeds to correlate vulnerabilities with current exploit activity.
+ Create and maintain vulnerability metrics, dashboards, and reports for leadership and compliance teams.
+ Support vulnerability assessment activities in cloud environments (AWS, Azure, etc.).
+ Maintain documentation related to the vulnerability management lifecycle.
+ Assist in policy and process development related to vulnerability and patch management.
+ Participate in audits and compliance efforts (e.g., SOX, ISO, NIST, PCI).
**What we expect of you**
We are all different, yet we all use our unique contributions to serve patients.
Master's degree and 1 to 3 years of experience in Cybersecurity, vulnerability management or information security operations OR
Bachelor's degree and 3 to 5 years of experience in Cybersecurity, vulnerability management or information security operations OR
Diploma and 7 to 9 years of experience in Cybersecurity, vulnerability management or information security operations
**Must-Have Skills:**
+ Familiarity with vulnerability management tools (e.g., Tenable, Qualys, Rapid7).
+ Understanding of CVSS scoring, vulnerability lifecycle, and remediation workflows.
+ Basic knowledge of threat intelligence and how it applies to vulnerability prioritization.
+ Working knowledge of network, operating system, and application-level security.
+ Ability to analyze scan data and correlate it with business context and threat intelligence.
**Preferred Qualifications:**
**Good-to-Have Skills:**
+ Experience with KEV, EPSS, and other threat-based scoring systems.
+ Familiarity with patch management processes and tools.
+ Exposure to cloud security and related scanning tools (e.g., Prisma Cloud, AWS Inspector).
+ CompTIA Security+ GIAC GSEC / GCIH
+ Qualys Vulnerability Management Specialist (QVMS)
+ Tenable Certified Nessus Auditor (TCNA)
**Soft Skills:**
+ **Analytical Thinking** - Ability to interpret complex data sets and assess risk effectively
+ **Attention to Detail** - Precision in identifying and tracking vulnerabilities and remediation status
+ **Communication Skills** - Ability to communicate technical findings to both technical and non-technical audiences
+ **Collaboration & Teamwork** - Able to work across IT, DevOps, and security teams to drive resolution
+ **Curiosity & Continuous Learning** - Willingness to know the latest with evolving threats and technologies
+ **Problem-Solving Approach** - Capability to identify solutions to security weaknesses in diverse environments
**What you can expect of us**
As we work to develop treatments that take care of others, we also work to care for your professional and personal growth and well-being. From our competitive benefits to our collaborative culture, we'll support your journey every step of the way.
In addition to the base salary, Amgen offers competitive and comprehensive Total Rewards Plans that are aligned with local industry standards.
**Apply now and make a lasting impact with the Amgen team.**
**careers.amgen.com**
As an organization dedicated to improving the quality of life for people around the world, Amgen fosters an inclusive environment of diverse, ethical, committed and highly accomplished people who respect each other and live the Amgen values to continue advancing science to serve patients. Together, we compete in the fight against serious disease.
Amgen is an Equal Opportunity employer and will consider all qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability status, or any other basis protected by applicable law.
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

We are seeking a skilled and experienced Vulnerability Management process to join our dynamic

team.

Location: Bangalore & Pune (Hybrid Model)

Experience: 5 - 8 Years

NP: Immediate joiners only

Interested candidates can fill the below google form

• Perform Vulnerability assessment & Policy Compliance using leading Vulnerability Scanning solutions like Qualys etc.
• Perform Vulnerability assessments & Policy Compliance on On-prem, Cloud hosted systems, container (like Docker & Kubernetes), databases, web services and other widely deployed infrastructure components.
• Perform false positive validation and ensure delivery of quality reports.
• Act as a technical SME to analyse the vulnerability results & detection logic.
• Provide technical advice and support on remediation to infrastructure / application support teams.
• Perform Vulnerability assessment & Policy Compliance using leading Vulnerability Scanning solutions like Qualys etc.
• Perform Vulnerability assessments & Policy Compliance on On-prem, Cloud hosted systems, container (like Docker & Kubernetes), databases, web services and other widely deployed infrastructure components.
• Perform false positive validation and ensure delivery of quality reports.
• Act as a technical SME to analyse the vulnerability results & detection logic.
• Provide technical advice and support on remediation to infrastructure / application support teams.
• Review findings and identify root causes for common issues and provide recommendations for sustainable improvements.
• Responsible to maintain vulnerability quality assurance by building VM team technical knowledge base.
• Research and report on security vulnerabilities and latest advancements in the vulnerability management lifecycle.
• Understand security policies, procedures and guidelines to all levels of management and staff.
• Communicate effectively orally and in writing and establish cooperative working relationships.
• Provide suggestion to improve vulnerability Management service based on current trends in information technology (Network, system security software and hardware).
• Act as line manager in the absence of team lead.
• People and Talent
• Minimum 6 years of experience in Information security and preferably in Banking and Financial services sector
• In-depth working experience on Cloud technologies, routers, switches, firewalls, load balancers and proxy will be added advantage for the role.
• Bachelor Degree in Engineering, Computer Science/Information Technology or its equivalent.
• Industry certifications will be a plus e.g. CISSP, CCNA Security, CCIE, CCNP Security, CISA, CRISC and CISM.
• Strong knowledge and subject matter expertise in multiple areas within Information Security.
• Hands on skill and expertise in performing risk / threat assessments/risk consulting.
• Excellent written, oral communication and reporting skills.
• Provides technical leadership, expertise and direction working with district and college technical staff for design and implementation of information technology security systems.
• Develops strategy for propagating, maintaining, and measuring compliance against security policies, standards, and guidelines district-wide.
• Time management and organizational skills
• Ability and desire to learn new skills quickly

• Skills:- vulnerability management, information security, or a related discipline, Qualys, Tenable, or Rapid7, Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO 27001, CIS Controls), Experience with ITSM tools and ticketing systems for remediation tracking.
• Experience:- 3-5 Years
• Location:- Hyderabad
• Shift Timing:- 11.00 am - 8.00 pm

Analyst, Vulnerability Management

Omnicom Global Solutions, Hyderabad IN

About Omnicom Global Solutions

Omnicom Global Solutions is an integral part of Omnicom Group, a leading global marketing and corporate communications company. Omnicom’s branded networks and numerous specialty firms provide advertising, strategic media planning and buying, digital and interactive marketing, direct and promotional marketing, public relations, and other specialty communications services to over 5,000 clients in more than 70 countries.

OGS India plays a critical role for our group companies and global agencies by providing stellar products, solutions, and services across Creative Services, Technology, Marketing Science (Data & Analytics), Advanced Analytics, Market Research, Business Support Services, Media Services, and Project Management.

With over 4000 talented colleagues in India, we are growing rapidly and are looking for professionals like you to help build the next chapter of our journey.

Role Overview

We have an exciting opportunity for an Analyst, Vulnerability Management at our Hyderabad office. This role is central to maintaining and enhancing Omnicom’s cybersecurity framework by overseeing vulnerability assessments, remediation guidance, and program governance.

As a Vulnerability Management Specialist, you will drive day-to-day scanning operations, review security exposures, and ensure that the organization’s attack surface is minimized through proactive analysis and mitigation. You’ll also collaborate on vendor assessments and support strategic improvements to our enterprise vulnerability management program.

Key Responsibilities

• Maintain and operate vulnerability scanning tools and associated processes.
• Conduct regular scans and assessments of enterprise environments to detect security vulnerabilities.
• Review findings, prioritize risks, and recommend remediations or security patches in coordination with IT and security teams.
• Develop and present exception and management reports; track remediation status and escalate unresolved risks.
• Assist in creating and maintaining quality metrics and dashboards for vulnerability program performance.
• Monitor vendor and third-party security postures; support governance and compliance protocols.
• Collaborate with cross-functional teams to support risk mitigation strategies and secure configuration management.
• Contribute to the evolution of Omnicom’s next-generation vulnerability management and threat detection frameworks.

Required Qualifications

• 3–5 years of experience in vulnerability management, information security, or a related discipline.
• Proficiency with vulnerability scanning tools such as Qualys, Tenable, or Rapid7.
• Familiarity with patch management workflows and remediation lifecycle practices.
• Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO 27001, CIS Controls).
• Ability to analyze technical findings, assess business impact, and provide actionable remediation guidance.
• Effective communication skills with experience in stakeholder engagement and reporting.
• Detail-oriented with strong problem-solving skills and the ability to work independently or in a team setting.

Preferred Qualifications

• Security certifications such as CompTIA Security+, CEH, or equivalent.
• Exposure to vendor risk management and third-party security assessment.
• Experience with ITSM tools and ticketing systems for remediation tracking.