CrawlJobs Logo
NTT DATA Logo NTT DATA · IT - Administration

Associate Vulnerability Assessment Specialist

India, Hyderabad · Job Posted March 25, 2026
Apply Position
Job Link Share

Job Description

The Associate Vulnerability Assessment Specialist is an entry level role, responsible for assisting in identifying, assessing, and mitigating vulnerabilities within the company's systems and infrastructure. This role works closely with more senior team members within the vulnerability management team to conduct assessments, analyze findings, and recommend remediation actions.

Job Responsibility

  • Conducts vulnerability scans using automated tools and assist in manual assessments to identify vulnerabilities in systems, networks, applications, and infrastructure components
  • Analyzes scan results and determine the severity and potential impact of identified vulnerabilities
  • Assists in evaluating the potential risks associated with identified vulnerabilities
  • Analyzes the context, potential attack vectors, and business impact to prioritize vulnerabilities based on risk severity and exploitability
  • Collaborates with system owners, administrators, and IT teams to provide guidance on vulnerability remediation
  • Recommends mitigation measures, configuration changes, and patches to address identified vulnerabilities
  • Tracks and verifies the closure of remediation actions
  • Assists in preparing vulnerability assessment reports, documenting assessment findings, and recommending risk mitigation strategies
  • Maintains accurate records of vulnerability assessments, tracking progress, and maintaining vulnerability databases
  • Utilizes vulnerability assessment tools and technologies to conduct scans, analyze results, and assist in identifying emerging threats
  • Stays updated with the latest vulnerabilities, exploits, and security trends to enhance assessment methodologies
  • Works closely with cross-functional teams, including IT operations, development teams, and security stakeholders, to communicate vulnerability findings, mitigation strategies, and remediation progress
  • Provides guidance and assistance to ensure a coordinated response to vulnerabilities
  • Participates in security awareness programs and provide training to end-users and stakeholders on vulnerability management best practices, secure coding, and security hygiene to promote a culture of security awareness
  • Contributes to the enhancement of vulnerability assessment processes, methodologies, and tools
  • Identifies areas for improvement and recommend solutions to enhance efficiency and effectiveness in vulnerability management practices
  • Performs any other task as required

Requirements

  • Bachelor's degree or equivalent in Computer Science, Information Security, or a related field
  • Entry level of relevant experience in information security or related roles, with a focus on conducting vulnerability assessments and driving remediation efforts
  • Entry level of demonstrated experience in conducting advanced vulnerability assessments, including application security assessments, penetration testing, or code review
  • Familiarity with vulnerability assessment methodologies, tools, and industry best practices
  • Basic understanding of networking concepts, operating systems, and common software vulnerabilities
  • Knowledge of vulnerability scanning tools such as Nessus, OpenVAS, Qualys, or similar tools
  • Understanding of risk analysis principles and the ability to assess the business impact of vulnerabilities
  • Familiarity with vulnerability management frameworks, such as CVE, CVSS, and common vulnerability databases
  • Good analytical and problem-solving skills to analyze scan results, prioritize vulnerabilities, and recommend remediation actions
  • Good communication skills, both written and verbal, to effectively communicate technical concepts to non-technical stakeholders
  • Ability to collaborate and work effectively in cross-functional teams
  • Familiarity with security frameworks and standards, such as NIST, ISO 27001, or CIS Controls, is advantageous

Nice to have

Relevant certifications, such as Certified Ethical Hacker (CEH), CompTIA Security+, or GIAC Certified Penetration Tester (GPEN), are beneficial but not required

NTT DATA - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Associate Vulnerability Assessment Specialist

8 matching positions

Senior Associate Vulnerability Assessment Specialist

The Senior Associate Vulnerability Assessment Specialist is a developing subject...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree or equivalent in Computer Science, Information Security, or a related field
  • Relevant certifications such as Certified Ethical Hacker (CEH), Certified Information Systems Security Professional (CISSP), or GIAC Certified Web Application Penetration Tester (GWAPT) are beneficial
  • Moderate level of relevant experience in information security or related roles, with a focus on conducting vulnerability assessments and driving remediation efforts
  • Moderate level of demonstrated experience in conducting advanced vulnerability assessments, including application security assessments, penetration testing, or code review
  • Understanding of vulnerability assessment methodologies, tools, and industry best practices
  • Good understanding of networking concepts, operating systems, and common software vulnerabilities
  • Proficiency in using vulnerability assessment tools such as Nessus, OpenVAS, Qualys, or similar tools
  • Knowledge of risk analysis principles and the ability to assess the business impact of vulnerabilities
  • Strong knowledge of vulnerability management frameworks, such as CVE, CVSS, and common vulnerability databases
  • Strong analytical and problem-solving skills to analyze scan results, prioritize vulnerabilities, and recommend effective remediation actions
Job Responsibility
Job Responsibility
  • Conducts vulnerability scans using automated tools and manual techniques to identify vulnerabilities in systems, networks, applications, and infrastructure components
  • Analyzes scan results and determine the severity, exploitability, and potential impact of identified vulnerabilities
  • Assesses the potential risks associated with identified vulnerabilities
  • Collaborates with system owners, administrators, and IT teams to develop practical mitigation strategies, configuration changes, and patch management processes to address identified vulnerabilities
  • Conducts advanced vulnerability assessments, including application security assessments, penetration testing, and code review, to identify complex vulnerabilities and security weaknesses
  • Utilizes manual testing techniques and industry-standard methodologies
  • Utilizes and manages vulnerability assessment tools such as Nessus, OpenVAS, Qualys, or similar tools
  • Configures and fine-tunes scan policies and parameters to enhance assessment accuracy and coverage
  • Prepares comprehensive vulnerability assessment reports, documenting assessment findings, risk analysis, and recommended actions
  • Communicates assessment results to stakeholders, including technical and non-technical audiences, in a clear and concise manner
  • Fulltime
Read More
Arrow Right

Vulnerability Assessment Specialist

The Vulnerability Assessment Specialist is responsible for conducting advanced v...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Seasoned understanding of vulnerability assessment methodologies, tools, and industry best practices
  • Seasoned understanding of networking concepts, operating systems, and common software vulnerabilities
  • Solid proficiency in using vulnerability assessment tools such as Nessus, OpenVAS, Qualys, or similar tools
  • Seasoned knowledge of risk analysis principles and the ability to assess the business impact of vulnerabilities
  • Solid knowledge of vulnerability management frameworks, such as CVE, CVSS, and common vulnerability databases
  • Strong analytical and problem-solving skills to analyze scan results, prioritize vulnerabilities, and recommend effective remediation actions
  • Excellent written and verbal communication skills to prepare vulnerability assessment reports and effectively communicate technical information to diverse stakeholders
  • Excellent collaboration and teamwork skills to work effectively with cross-functional teams and stakeholders
  • Seasoned familiarity with security frameworks, standards, and regulatory compliance requirements
  • Bachelor's degree or equivalent in Computer Science, Information Security, or a related field
Job Responsibility
Job Responsibility
  • Conducts vulnerability assessments using automated scanning tools and manual techniques to identify security vulnerabilities in systems, networks, applications, and infrastructure components
  • Analyzes scan results and prioritizes vulnerabilities based on severity, impact, and exploitability
  • Assesses the potential risks associated with identified vulnerabilities
  • Analyzes the business impact, likelihood of exploitation, and potential attack vectors to prioritize remediation efforts based on risk severity
  • Provides detailed remediation recommendations to system owners, administrators, and IT teams
  • Collaborates to develop practical mitigation strategies, configuration changes, and patch management processes to address identified vulnerabilities
  • Utilizes vulnerability scanning tools such as Nessus, OpenVAS, Qualys, or similar tools to conduct scans, configure scan policies, and fine-tune scan parameters for accurate and comprehensive assessments
  • Prepares vulnerability assessment reports, documenting assessment findings, risk analysis, and recommended actions
  • Communicates assessment results to stakeholders, including technical and non-technical audiences, in a clear and concise manner
  • Collaborates with cross-functional teams, including IT operations, development teams, and security stakeholders, to ensure effective communication, coordination, and alignment on vulnerability management efforts
  • Fulltime
Read More
Arrow Right

Senior Privacy Impact Assessment Specialist

We are seeking a highly accomplished and authoritative Senior Privacy Impact Ass...
Location
Location
Canada , Toronto
Salary
Salary:
Not provided
https://www.randstad.com Logo
Randstad
Expiration Date
August 03, 2026
Flip Icon
Requirements
Requirements
  • Statutory Framework Mastery: Deep operational knowledge and hands-on experience interpreting and applying privacy legislation, specifically including FIPPA, PHIPA, and PIPEDA, alongside related jurisprudence
  • Privacy Assessment Depth: Extensive track record leading complex Privacy Impact Assessments (PIAs) within the public sector or large, highly regulated multi-stakeholder corporate settings
  • Digital Identity Frameworks: Practical experience evaluating or developing digital identity trust frameworks (such as PCTF, eIDAS) and standard protocols (NIST, FIDO, OpenID Connect, SAML)
  • Healthcare & Third-Party Domain Insight: Direct experience managing assessments that involve personal health information handled by third-party vendor applications or service integration providers
  • Architecture Interrogation: Strong ability to analyze technical system diagrams, database interfaces, data transfer methodologies, and information security encryption standards
  • Mobile & Cloud Platform Savvy: Deep understanding of the unique security and privacy constraints associated with mobile applications, cloud infrastructures, and native or third-party digital wallet technologies
  • Records Management: Solid understanding of institutional records management practices, including information classification, retention rules, and digital accessibility compliance standards (AODA)
  • Workshop Facilitation: Elite communication skills with a proven ability to lead multidisciplinary teams through complex technical discovery sessions
  • Analytical Problem Solving: Superior critical thinking skills to interpret intricate technical setups and translate them into simplified, fact-based risk summaries for non-privacy experts
  • Desirable Credentials: Active professional certifications in related disciplines (e.g., IAPP CIPP/C, technical architecture, or information security designations) are highly valued
Job Responsibility
Job Responsibility
  • PIA Technical Leadership: Lead and manage the end-to-end development of comprehensive Privacy Impact Assessments (PIAs) to evaluate whether new software, platforms, programs, or corporate policies meet absolute statutory privacy requirements
  • Risk Mitigation Engineering: Analyze current and future privacy implications for business designs, systematically identifying operational data risks, vulnerabilities, and authoring formal risk countermeasure playbooks
  • Legislative Compliance Guarding: Ensure all technical platforms and programs comply with provincial, municipal, federal, and private-sector privacy laws, relevant regulations, and internationally accepted Fair Information Practices
  • Digital Solution Assessment: Lead privacy reviews for modern online, cloud-hosted, and mobile application solutions, focusing heavily on security approaches, data encryption, and local protection frameworks
  • Integration & Architecture Review: Assess privacy risks associated with data synchronization and backend integrations via APIs connecting legacy environments to third-party or private-sector applications
  • Data Flow & Blueprint Analysis: Interpret both technical and non-technical documentation, including architectural design documents, state transition diagrams, system interfaces, and data flow models
  • Stakeholder Engagement & Discovery: Lead cross-functional discovery workshops with technical architects, developers, legal analysts, and business teams to elicit precise technical configurations and operational workflows
  • Executive Presentation & Reporting: Document clear assessment findings and present strategic compliance recommendations to executive leadership to inform high-level corporate decision-making
  • Records Governance Lifecycle: Align system designs with strict records management policies, ensuring proper data classification, retention schedules, and secure disposition parameters
Read More
Arrow Right

Senior Privacy Impact Assessment PIA Specialist

We are seeking an expert Senior Privacy Impact Assessment (PIA) Specialist to le...
Location
Location
Canada , Toronto
Salary
Salary:
Not provided
https://www.randstad.com Logo
Randstad
Expiration Date
July 27, 2026
Flip Icon
Requirements
Requirements
  • Legislative Mastery: Comprehensive, professional-level knowledge of Canadian privacy frameworks, including FIPPA (and MFIPPA), PHIPA, and federal PIPEDA mandates, regulations, and associated jurisprudence
  • Digital Solution Assessment: Proven experience leading and conducting formal PIAs specifically tailored to online ecosystems, cloud configurations, and complex digital platforms
  • Health Information Expertise: Direct, hands-on experience managing assessments that involve Personal Health Information (PHI) crossing boundaries into third-party vendor applications or external systems
  • Modeling Capability: Demonstrated ability to read, interpret, and validate high-level data flow diagrams (DFDs) and business process models to identify privacy vulnerabilities
  • Interpersonal Skills: Elite consultation, negotiation, and report-writing capabilities, with a track record of driving cross-functional project teams toward a privacy consensus
  • Compliance Framework Knowledge: Strong familiarity with internationally accepted Fair Information Practices and the operational rulings of the Information and Privacy Commissioner of Ontario (IPC)
Job Responsibility
Job Responsibility
  • Privacy Impact Assessment Leadership: Lead the end-to-end development of PIAs to determine whether new technologies, cloud configurations, or business policies meet complex legal compliance requirements
  • Risk Mitigation Engineering: Evaluate information architectures and digital solutions to identify privacy threat vectors, design security countermeasures, and author formal privacy risk registries
  • Third-Party & Vendor Validation: Conduct rigorous privacy reviews on third-party application solutions, non-profit sector software providers, and external data service integration partners handling personal health information
  • Data Flow & Systems Auditing: Analyze complex systemic data flows, information architectures, and identity verification mechanisms to assess the current and future privacy implications of system designs
  • Policy Collaboration: Partner with policy development teams to review, compare, and draft privacy-enhancing guidelines, standard operating procedures, and governance baselines
  • Records Governance Oversight: Ensure compliance with information management directories, including strict data classification, secure retention schedules, and legal data disposition procedures
  • Cross-Functional Communication: Serve as a core advisor, translating dense legislative mandates and technical security patterns into plain language for executive sponsors, project managers, and business BAs
  • Fulltime
Read More
Arrow Right

Cyber Threat Intelligence Specialist

Join our mission to fight cybercrime and become a key member of our Threat Intel...
Location
Location
North Macedonia , Skopje
Salary
Salary:
Not provided
hornetsecurity.com Logo
Hornetsecurity
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong understanding of fundamental cybersecurity concepts, including the CIA triad (Confidentiality, Integrity, Availability), vulnerability management, Advanced Persistent Threats (APT), as well as security frameworks and standards such as NIST, ISO 27001 and MITRE ATT&CK
  • Advanced understanding of tools, tactics, techniques and Procedures (TTPs) utilized by threat actors and ability to identify behavioural or recurrent patterns
  • Proficiency with threat intelligence platforms such as OpenCTI, MISP or ThreatConnect
  • Familiarity with programming and scripting languages (e.g., Python, PowerShell)
  • Proficiency in network protocols and packet analysis, with a deep understanding of TCP/IP, DNS, HTTP/HTTPS, and other relevant protocols
  • Proficiency in using SIEM solutions (e.g., Splunk, QRadar), and other security tools
  • Strong analytical and problem-solving skills to assess complex threat information
  • Excellent written and verbal communication skills to effectively convey threat intelligence to both technical and non-technical audiences
  • Ability to work collaboratively in a team environment and build strong relationships with stakeholders
  • Strong attention to detail to identify subtle indicators of compromise and emerging threats
Job Responsibility
Job Responsibility
  • Lead the management of Threat Intelligence within our CTI platform. Verify and ensure the accuracy and reliability of data within the platform
  • Develop and maintain threat intelligence processes and procedures
  • Continuously monitor and analyze Cyber Threat Intelligence from various sources including open-source intelligence, commercial feeds and internal data
  • Identify and assess potential threats and vulnerabilities to our clients
  • Provide actionable intelligence insights to support relevant teams for incident response
  • Evaluate and recommend new tools and technologies to improve threat intelligence capabilities
  • Produce detailed reports and briefings on cyber threats, trends and incidents for technical and non-technical stakeholders
  • Collaborate with internal and external cybersecurity associations on behalf of Hornetsecurity, representing the company at industry events and conferences
What we offer
What we offer
  • Room for innovation and autonomy in a fast-growing international company
  • Temporary Employee Exchange Program – we provide the ability for you to work at our global office locations and explore the world (e.g. Berlin, Madrid, Malta, Montréal, Washington D.C.)
  • Flexible working hours and the option to work from home
  • Permanent contracts – we’re in it for the long haul and hope you are too!
  • Team events like Laser Tag, Office Movie Nights, Foodie Fridays and much more – let yourself be surprised!
  • FitKit subscription and private insurance for your health!
  • Referral Bonus: we pay 1500€ for each referral who is successfully hired by us!
  • Fulltime
Read More
Arrow Right

Critical Environment Operations Specialist

Microsoft’s Cloud Operations & Innovation (CO+I) is the engine that powers our c...
Location
Location
United States , Boydton
Salary
Salary:
84400.00 - 168800.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • High School Qualification or equivalent AND 2+ years experience supporting IT equipment or related technology or delivering server and network deployment projects in large-scale environments OR equivalent experience
Job Responsibility
Job Responsibility
  • Follows and adheres to processes and policy(ies) provided by security and safety governing partners
  • Reports immediately any safety or security issues or concerns
  • Participates in safety and security related Root Cause Analysis (RCA) processes as appropriate
  • Makes recommendations for improvements to safety and security processes or procedures
  • Fosters and exhibits a culture of safety
  • Ensures no unauthorized or unescorted personnel access in secured production environments, ensuring alignment with security practices and standards
  • Manages and regularly audits physical access lists for personnel accessing secured production environments and related systems
  • Conducts security risk assessments of data center operations and assesses the design, build, and delivery of technology, tools, data, and processes to meet high security standards with minimal guidance
  • Documents and tracks security Key Performance Indicators (KPIs) and identifies and escalates action items
  • Demonstrates conscientiousness on cost and adheres to budget requirements
  • Fulltime
Read More
Arrow Right

Care Management Specialist II (RN or LCSW)

The Care Management Specialist II utilizes clinical skills and training to perfo...
Location
Location
United States , Los Angeles
Salary
Salary:
88854.00 - 142166.00 USD / Year
lacare.org Logo
L.A. Care Health Plan
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 3 years of recent care management experience with responsibilities of managing complex acute or chronic conditions in collaboration with members and interdisciplinary care professionals in a hospital, medical group or managed care setting, such as a health insurance environment and/or experience as care manager in home health or hospice environments
  • Experience providing care management with complex/catastrophic conditions
  • Current knowledge of clinical standards of care and disease processes
  • Critical thinking skill
  • Excellent customer service skills
  • Ability to clinically analyze the most complex cases involving highly acute physical health, behavioral health, complex/catastrophic and/or psychosocial issues to determine and implement the most effective member-centered interventions
  • Ability to triage immediate member health and safety risks
  • Ability to sensitively manage member or family responses associated with high acuity cases and support effective coping
  • Strong verbal and written communications skills to consult effectively with interdisciplinary teams, coordinate care with members and their families, and other internal and external stakeholders
  • Ability to use a personal computer, and knowledge of medical information systems
Job Responsibility
Job Responsibility
  • Applies clinical knowledge and experience to evaluate information regarding prospective care management members referred by health risk assessment (HRA), risk stratification, predictive modeling, provider’s utilization review vendors, members, Call Center, claims staff, Health Homes Program (HHP) eligibility or other data sources to determine whether care management intervention is necessary to meet the member's needs
  • Conducts Care Management services for the most complex and vulnerable members including: engaging in member centric communication which includes the interdisciplinary team, providers and family or authorized representatives
  • reviewing member claims histories and identifies intervention opportunities through the professional standards of practice
  • contacting and interviewing members to conduct a baseline assessment, assess self-care ability, assess knowledge and adherence deficits
  • conducting comprehensive clinical assessments as indicated
  • developing a member centric plan of care
  • Maintains assigned care management caseload for with a focus on the most complex, highest-risk members particularly those with advanced chronic conditions, co-occurring mental and/or substance abuse and complex social issues (e.g. homelessness, domestic violence)
  • Collaborates with primary care physician and other treating professionals as appropriate
  • Authorizes initiation of care management services and specialized program services for members and specific populations, and develops interventions designed to meet member or population desired outcomes
  • Provides comprehensive education and resources to members about accessing services, in-network use, national guidelines for care, community resources, and self-management skills and strategies
What we offer
What we offer
  • Paid Time Off (PTO)
  • Tuition Reimbursement
  • Retirement Plans
  • Medical, Dental and Vision
  • Wellness Program
  • Volunteer Time Off (VTO)
  • Fulltime
Read More
Arrow Right

Personnel Security Specialist - Entry

The PSS provides support for security assessment investigations, including backg...
Location
Location
United States , Huntsville
Salary
Salary:
58000.00 - 65000.00 USD / Year
amentum.com Logo
Amentum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must have an Active Top Secret US Government Clearance. Note: US Citizenship is required to maintain a Top Secret Clearance.
  • Two (2) years of experience in the personnel security investigative or investigative analyst field.
  • Demonstrated analytical ability to critically review and analyze various types of incoming material and investigative reports to discern potential security vulnerabilities and to identify viable investigative leads
  • Experience conducting and interpreting database checks and credit reports.
  • Experience performing routine office administrative support functions.
  • Proficient computer skills to include: Working knowledge of Microsoft Office software applications (Word, Excel, Outlook, PowerPoint)
  • Use of the Internet to conduct research and / or open-source checks in aid of investigations
  • Experience performing database searches for information related to personnel security matters.
  • Responsibility for security of program data and materials.
  • Processing security clearance and BI documentation in preparation for adjudication.
Job Responsibility
Job Responsibility
  • The PSS provides support for security assessment investigations, including background investigations, periodic reinvestigations, security clearances, employment suitability determinations and continuous evaluation of employees to ensure eligibility for employment
  • Provides support and service to the administration of Security Programs by participating in the direction, from inception to completion of less complex security assessment investigations and rendering appropriate adjudication recommendations regarding the same.
  • Conducts, reviews, and analyzes a variety of interviews internal and external to the organization.
  • Provides support, analysis, and research into complex problems and processes relating to Personal Security.
  • Completes written reports and/or oral presentations utilizing critical thinking and analysis skills.
  • Contributes to development of new principles and concepts.
  • Advises supervisor of potentially controversial matters or those matters with far reaching implications.
  • Initiates or performs extensive FBI indices checks, arrest record checks, and the like to obtain pertinent and identifying information for the cases assigned.
  • Requests, receives, reviews, and analyzes various FBI Government files and related material for determination of an individual's potential security risk.
  • Summarizes data and composes necessary correspondence to appropriate Field Offices for initiation of investigation, outlining background of individual cases, advising information obtained from research and analysis and define security concerns.
What we offer
What we offer
  • Health, dental, and vision insurance
  • Paid time off and holidays
  • Retirement benefits (including 401(k) matching)
  • Educational reimbursement
  • Parental leave
  • Employee stock purchase plan
  • Tax-saving options
  • Disability and life insurance
  • Pet insurance
  • Fulltime
Read More
Arrow Right