Senior Vulnerability Management Analyst
India - Bengaluru
Applications have closed
Guidewire Software
Elevate your P&C insurance with Guidewire's industry-leading software! Streamline workflows, enhance customer experience, and drive growth. Learn more today!
Description:
We are looking for an experienced, Senior Vulnerability Management Analyst who can navigate complex threat scenarios and remain committed to decreasing the overall attack surface of the company. Enterprise Vulnerability Management remains a top priority at Guidewire and you will be responsible for implementing and managing enterprise vulnerability tools and processes in a cloud environment, to reduce technical risks due to vulnerabilities. This includes identifying and evaluating vulnerabilities and supporting remediation activities.
Responsibilities:
· Managing the end-to-end infrastructure vulnerability management life-cycle from discovery to closure.· 5 years + experience.· Prepare vulnerability data and develop comprehensive, accurate reports to both technical and executive audiences. · Producing vulnerability, configuration, and coverage reporting to demonstrate assessment coverage and remediation effectiveness· Review all applicable threats, discover vulnerabilities and collaborate with remediation treatment owners to prioritize, provide context and remediate identified vulnerabilities. · Serving as an escalation point on issues, dependencies, and risks related to infrastructure vulnerability scanning · Ensure knowledge creation around vulnerability management process, common vulnerabilities within the landscape and corresponding remediation practices. · Research the latest security best practices and technologies, staying on top of new threats and vulnerabilities to create threat briefs and provide timely assessment reports to key stakeholders.· Supporting compliance and risk management activities, recommending security controls and corrective actions to mitigate vulnerability risks.
Requirements:
· Prior experience with managing and configuring any vulnerability management tool such as Rapid 7, Tenable, Qualys, etc.· Persuasive mindset with strong relationship management skills to work with various stakeholders proactively on vulnerability assessment and remediation · Self-starter with ability to drive an initiative from concept to full implementation with minimal guidance· Thorough understanding of enterprise security controls, network protocols and operating system (Windows/Linux environments)· Hands on experience handling vulnerability management operations for cloud workloads at scale in AWS/Azure· Ability to conduct thorough analysis and recommend data driven actions· Results-oriented, high energy, self-motivated and love for a team environment.
Good to have:
· Ability to automate solutions to repetitive problems/tasks using scripting languages such as Perl, Python, PowerShell or Bash.· Certifications from SANS, Offensive Security, ISC2, AWS is a plus.About Guidewire
Guidewire is the platform P&C insurers trust to engage, innovate, and grow efficiently.
Guidewire combines core, data, digital, analytics, and AI to deliver our platform as a cloud service. More than 400 insurers, including the largest and most complex in the world, run on Guidewire.
As a partner to our customers, we continually evolve to enable their success. We are proud of our unparalleled implementation track record with 1000+ successful projects, supported by the largest R&D team and partner ecosystem in the industry. Our Marketplace provides hundreds of add-ons that accelerate integration, localization, and innovation.
Guidewire Software Inc. provides equal employment opportunities to all applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. All offers are contingent upon passing a criminal history and other background checks where it's applicable to the position.
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.
We are looking for an experienced, Senior Vulnerability Management Analyst who can navigate complex threat scenarios and remain committed to decreasing the overall attack surface of the company. Enterprise Vulnerability Management remains a top priority at Guidewire and you will be responsible for implementing and managing enterprise vulnerability tools and processes in a cloud environment, to reduce technical risks due to vulnerabilities. This includes identifying and evaluating vulnerabilities and supporting remediation activities.
Responsibilities:
· Managing the end-to-end infrastructure vulnerability management life-cycle from discovery to closure.· 5 years + experience.· Prepare vulnerability data and develop comprehensive, accurate reports to both technical and executive audiences. · Producing vulnerability, configuration, and coverage reporting to demonstrate assessment coverage and remediation effectiveness· Review all applicable threats, discover vulnerabilities and collaborate with remediation treatment owners to prioritize, provide context and remediate identified vulnerabilities. · Serving as an escalation point on issues, dependencies, and risks related to infrastructure vulnerability scanning · Ensure knowledge creation around vulnerability management process, common vulnerabilities within the landscape and corresponding remediation practices. · Research the latest security best practices and technologies, staying on top of new threats and vulnerabilities to create threat briefs and provide timely assessment reports to key stakeholders.· Supporting compliance and risk management activities, recommending security controls and corrective actions to mitigate vulnerability risks.
Requirements:
· Prior experience with managing and configuring any vulnerability management tool such as Rapid 7, Tenable, Qualys, etc.· Persuasive mindset with strong relationship management skills to work with various stakeholders proactively on vulnerability assessment and remediation · Self-starter with ability to drive an initiative from concept to full implementation with minimal guidance· Thorough understanding of enterprise security controls, network protocols and operating system (Windows/Linux environments)· Hands on experience handling vulnerability management operations for cloud workloads at scale in AWS/Azure· Ability to conduct thorough analysis and recommend data driven actions· Results-oriented, high energy, self-motivated and love for a team environment.
Good to have:
· Ability to automate solutions to repetitive problems/tasks using scripting languages such as Perl, Python, PowerShell or Bash.· Certifications from SANS, Offensive Security, ISC2, AWS is a plus.About Guidewire
Guidewire is the platform P&C insurers trust to engage, innovate, and grow efficiently.
Guidewire combines core, data, digital, analytics, and AI to deliver our platform as a cloud service. More than 400 insurers, including the largest and most complex in the world, run on Guidewire.
As a partner to our customers, we continually evolve to enable their success. We are proud of our unparalleled implementation track record with 1000+ successful projects, supported by the largest R&D team and partner ecosystem in the industry. Our Marketplace provides hundreds of add-ons that accelerate integration, localization, and innovation.
Guidewire Software Inc. provides equal employment opportunities to all applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. All offers are contingent upon passing a criminal history and other background checks where it's applicable to the position.
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.
Tags: Analytics AWS Azure Bash C Cloud Compliance Linux Offensive security Perl PowerShell Python Qualys R&D Risk management SANS Scripting Vulnerabilities Vulnerability management Windows
Region:
Asia/Pacific
Country:
India
Job stats:
3
1
0
Category:
Analyst Jobs
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open IT Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open DevOps-related jobs
- Open Security assessment-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open DevSecOps-related jobs
- Open CEH-related jobs