Sr Vulnerability Analyst
Bengaluru, Karnataka, IN
Applications have closed
Novo Nordisk
Novo Nordisk is a leading global healthcare company, founded in 1923 and headquartered in Denmark. Our purpose is to drive change to defeat diabetes and other serious chronic diseases.JL: 7
Are you passionate about identifying and mitigating security risks? Do you have experience in vulnerability assessments and developing mitigation strategies? We are looking for a skilled Sr Vulnerability Analyst to join our Global Information Security Advisory team in Novo Nordisk. If you are ready to make a difference in protecting sensitive information and systems, read on and apply today for a life-changing career.
The Position
As a Sr Vulnerability Analyst at Novo Nordisk, you will:
- Identify vulnerabilities and develop mitigation strategies. Conduct vulnerability assessments using various tools and techniques. Identify potential vulnerabilities within a system or network, such as using vulnerability scanners, penetration testing, or manual testing.
- Analyze and prioritize risks based on potential impact, likelihood of exploitation, and ease of mitigation.
- Work with stakeholders to implement strategies and ensure the system or network remains secure. Develop and implement strategies to mitigate the identified vulnerabilities, such as applying patches, implementing security controls, or updating policies and procedures.
- Monitor for new vulnerabilities and evaluate the effectiveness of existing mitigation strategies. Identify, assess, and mitigate security risks to help prevent cyberattacks and protect the confidentiality, integrity, and availability of sensitive information and systems.
- Communicate findings to technical and non-technical stakeholders through clear and concise reports.
Qualifications
To be successful in this role, we are looking for a candidate with the following qualifications:
- Master’s or bachelor’s degree in IT, data science, information security, or another relevant field.
- Overall 8+ years of experience in IT within the field of information security and vulnerability management.
- 6+years of experience in information security with expertise in vulnerability management and risk mitigation. Experience in performing risk assessments on different applications and technology and experience using vulnerability assessment tools.
- Good understanding of CVE score.
- Knowledge of various tools and techniques used in vulnerability analysis, such as vulnerability scanners, penetration testing, and manual testing.
- Familiarity with risk analysis and prioritization methodologies. Knowledge of how traffic flows across the network (e.g., Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]).
- Knowledge of system administration, network, and operating system hardening techniques.
- Excellent communication skills, with the ability to effectively communicate technical information to both technical and non-technical stakeholders.
- Strong problem-solving and analytical skills.
- Knowledge of security standards and regulations.
- Relevant certifications, such as Certified Ethical Hacker (CEH) or Certified Information Systems Security Professional (CISSP), preferred.
About the Department
The Global Information Security Advisory department is based in Digital, Data and IT (DD&IT) in Denmark. You will be part of a global information security community with colleagues located primarily in India, Denmark, and USA. Our team consists of leading experts in various areas ranging from network security, white hat hacking, cloud security, cryptography, security operations, Acquisitions & Integrations, to manufacturing security and security risk management and governance. We partner with the line of business across the value chain to build security into the business processes, collaborating with specialists in other areas including Enterprise Architects and Data Specialists. As security partners, we engage with stakeholders to understand their priorities and identify and manage risks.
Working at Novo Nordisk
Novo Nordisk is a leading global healthcare company with a 100-year legacy of driving change to defeat serious chronic diseases. Building on our strong legacy within diabetes, we are growing massively and expanding our commitment, reaching millions around the world, and impacting more than forty million patient lives daily. All of this has made us one of the twenty most valuable companies in the world by market cap. Our success relies on the joint potential and collaboration of our more than 61,000 employees around the world. We recognize the importance of the unique skills and perspectives our people bring to the table, and we work continuously to bring out the best in them. Working at Novo Nordisk, we’re working toward something bigger than ourselves, and it’s a collective effort. Join us! Together, we go further.
Contact
To submit your application, please upload your CV online (click on Apply and follow the instructions).
Deadline
19th March 2024
We commit to an inclusive recruitment process and equality of opportunity for all our job applicants.
At Novo Nordisk we recognize that it is no longer good enough to aspire to be the best company in the world. We need to aspire to be the best company for the world and we know that this is only possible with talented employees with diverse perspectives, backgrounds and cultures. We are therefore committed to creating an inclusive culture that celebrates the diversity of our employees, the patients we serve and communities we operate in. Together, we’re life changing.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: CEH CISSP Cloud Cryptography Governance ITIL Network security Pentesting Risk analysis Risk assessment Risk management Vulnerabilities Vulnerability management
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open IAM-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs