CrawlJobs Logo
NTT DATA Logo NTT DATA · IT - Administration

Senior Associate Vulnerability Assessment Specialist

India, Hyderabad · Job Posted March 26, 2026
Apply Position
Job Link Share

Job Description

The Senior Associate Vulnerability Assessment Specialist is a developing subject matter expert, responsible for conducting vulnerability assessments, analyzing findings, and providing expert recommendations to mitigate security risks within the organization's systems and infrastructure. This role requires collaboration with cross-functional teams, and performs vulnerability assessments, analyzes findings, and provides recommendations to mitigate security risks.

Job Responsibility

  • Conducts vulnerability scans using automated tools and manual techniques to identify vulnerabilities in systems, networks, applications, and infrastructure components
  • Analyzes scan results and determine the severity, exploitability, and potential impact of identified vulnerabilities
  • Assesses the potential risks associated with identified vulnerabilities
  • Collaborates with system owners, administrators, and IT teams to develop practical mitigation strategies, configuration changes, and patch management processes to address identified vulnerabilities
  • Conducts advanced vulnerability assessments, including application security assessments, penetration testing, and code review, to identify complex vulnerabilities and security weaknesses
  • Utilizes manual testing techniques and industry-standard methodologies
  • Utilizes and manages vulnerability assessment tools such as Nessus, OpenVAS, Qualys, or similar tools
  • Configures and fine-tunes scan policies and parameters to enhance assessment accuracy and coverage
  • Prepares comprehensive vulnerability assessment reports, documenting assessment findings, risk analysis, and recommended actions
  • Communicates assessment results to stakeholders, including technical and non-technical audiences, in a clear and concise manner
  • Participates in security awareness programs and provide training to end-users and stakeholders on vulnerability management best practices, secure coding, and security hygiene
  • Participates in incident response efforts related to vulnerabilities, collaborate with cross-functional teams, and contribute to post-incident analysis
  • Identifies root causes, provide recommendations for improvement, and drive preventive measures
  • Collaborates with cross-functional teams, including IT operations, development teams, and security stakeholders
  • Contributes to the enhancement of vulnerability assessment processes, methodologies, and tools
  • Stays updated with the latest security trends, emerging vulnerabilities, and industry best practices

Requirements

  • Bachelor's degree or equivalent in Computer Science, Information Security, or a related field
  • Relevant certifications such as Certified Ethical Hacker (CEH), Certified Information Systems Security Professional (CISSP), or GIAC Certified Web Application Penetration Tester (GWAPT) are beneficial
  • Moderate level of relevant experience in information security or related roles, with a focus on conducting vulnerability assessments and driving remediation efforts
  • Moderate level of demonstrated experience in conducting advanced vulnerability assessments, including application security assessments, penetration testing, or code review
  • Understanding of vulnerability assessment methodologies, tools, and industry best practices
  • Good understanding of networking concepts, operating systems, and common software vulnerabilities
  • Proficiency in using vulnerability assessment tools such as Nessus, OpenVAS, Qualys, or similar tools
  • Knowledge of risk analysis principles and the ability to assess the business impact of vulnerabilities
  • Strong knowledge of vulnerability management frameworks, such as CVE, CVSS, and common vulnerability databases
  • Strong analytical and problem-solving skills to analyze scan results, prioritize vulnerabilities, and recommend effective remediation actions
  • Good written and verbal communication skills to prepare comprehensive reports and communicate technical information to diverse stakeholders
  • Familiarity with security frameworks, standards, and regulatory compliance requirements
  • Ability to collaborate and work effectively with stakeholders and cross-functional teams
NTT DATA - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Senior Associate Vulnerability Assessment Specialist

8 matching positions

Senior Privacy Impact Assessment Specialist

We are seeking a highly accomplished and authoritative Senior Privacy Impact Ass...
Location
Location
Canada , Toronto
Salary
Salary:
Not provided
https://www.randstad.com Logo
Randstad
Expiration Date
August 03, 2026
Flip Icon
Requirements
Requirements
  • Statutory Framework Mastery: Deep operational knowledge and hands-on experience interpreting and applying privacy legislation, specifically including FIPPA, PHIPA, and PIPEDA, alongside related jurisprudence
  • Privacy Assessment Depth: Extensive track record leading complex Privacy Impact Assessments (PIAs) within the public sector or large, highly regulated multi-stakeholder corporate settings
  • Digital Identity Frameworks: Practical experience evaluating or developing digital identity trust frameworks (such as PCTF, eIDAS) and standard protocols (NIST, FIDO, OpenID Connect, SAML)
  • Healthcare & Third-Party Domain Insight: Direct experience managing assessments that involve personal health information handled by third-party vendor applications or service integration providers
  • Architecture Interrogation: Strong ability to analyze technical system diagrams, database interfaces, data transfer methodologies, and information security encryption standards
  • Mobile & Cloud Platform Savvy: Deep understanding of the unique security and privacy constraints associated with mobile applications, cloud infrastructures, and native or third-party digital wallet technologies
  • Records Management: Solid understanding of institutional records management practices, including information classification, retention rules, and digital accessibility compliance standards (AODA)
  • Workshop Facilitation: Elite communication skills with a proven ability to lead multidisciplinary teams through complex technical discovery sessions
  • Analytical Problem Solving: Superior critical thinking skills to interpret intricate technical setups and translate them into simplified, fact-based risk summaries for non-privacy experts
  • Desirable Credentials: Active professional certifications in related disciplines (e.g., IAPP CIPP/C, technical architecture, or information security designations) are highly valued
Job Responsibility
Job Responsibility
  • PIA Technical Leadership: Lead and manage the end-to-end development of comprehensive Privacy Impact Assessments (PIAs) to evaluate whether new software, platforms, programs, or corporate policies meet absolute statutory privacy requirements
  • Risk Mitigation Engineering: Analyze current and future privacy implications for business designs, systematically identifying operational data risks, vulnerabilities, and authoring formal risk countermeasure playbooks
  • Legislative Compliance Guarding: Ensure all technical platforms and programs comply with provincial, municipal, federal, and private-sector privacy laws, relevant regulations, and internationally accepted Fair Information Practices
  • Digital Solution Assessment: Lead privacy reviews for modern online, cloud-hosted, and mobile application solutions, focusing heavily on security approaches, data encryption, and local protection frameworks
  • Integration & Architecture Review: Assess privacy risks associated with data synchronization and backend integrations via APIs connecting legacy environments to third-party or private-sector applications
  • Data Flow & Blueprint Analysis: Interpret both technical and non-technical documentation, including architectural design documents, state transition diagrams, system interfaces, and data flow models
  • Stakeholder Engagement & Discovery: Lead cross-functional discovery workshops with technical architects, developers, legal analysts, and business teams to elicit precise technical configurations and operational workflows
  • Executive Presentation & Reporting: Document clear assessment findings and present strategic compliance recommendations to executive leadership to inform high-level corporate decision-making
  • Records Governance Lifecycle: Align system designs with strict records management policies, ensuring proper data classification, retention schedules, and secure disposition parameters
Read More
Arrow Right

Senior Privacy Impact Assessment PIA Specialist

We are seeking an expert Senior Privacy Impact Assessment (PIA) Specialist to le...
Location
Location
Canada , Toronto
Salary
Salary:
Not provided
https://www.randstad.com Logo
Randstad
Expiration Date
July 27, 2026
Flip Icon
Requirements
Requirements
  • Legislative Mastery: Comprehensive, professional-level knowledge of Canadian privacy frameworks, including FIPPA (and MFIPPA), PHIPA, and federal PIPEDA mandates, regulations, and associated jurisprudence
  • Digital Solution Assessment: Proven experience leading and conducting formal PIAs specifically tailored to online ecosystems, cloud configurations, and complex digital platforms
  • Health Information Expertise: Direct, hands-on experience managing assessments that involve Personal Health Information (PHI) crossing boundaries into third-party vendor applications or external systems
  • Modeling Capability: Demonstrated ability to read, interpret, and validate high-level data flow diagrams (DFDs) and business process models to identify privacy vulnerabilities
  • Interpersonal Skills: Elite consultation, negotiation, and report-writing capabilities, with a track record of driving cross-functional project teams toward a privacy consensus
  • Compliance Framework Knowledge: Strong familiarity with internationally accepted Fair Information Practices and the operational rulings of the Information and Privacy Commissioner of Ontario (IPC)
Job Responsibility
Job Responsibility
  • Privacy Impact Assessment Leadership: Lead the end-to-end development of PIAs to determine whether new technologies, cloud configurations, or business policies meet complex legal compliance requirements
  • Risk Mitigation Engineering: Evaluate information architectures and digital solutions to identify privacy threat vectors, design security countermeasures, and author formal privacy risk registries
  • Third-Party & Vendor Validation: Conduct rigorous privacy reviews on third-party application solutions, non-profit sector software providers, and external data service integration partners handling personal health information
  • Data Flow & Systems Auditing: Analyze complex systemic data flows, information architectures, and identity verification mechanisms to assess the current and future privacy implications of system designs
  • Policy Collaboration: Partner with policy development teams to review, compare, and draft privacy-enhancing guidelines, standard operating procedures, and governance baselines
  • Records Governance Oversight: Ensure compliance with information management directories, including strict data classification, secure retention schedules, and legal data disposition procedures
  • Cross-Functional Communication: Serve as a core advisor, translating dense legislative mandates and technical security patterns into plain language for executive sponsors, project managers, and business BAs
  • Fulltime
Read More
Arrow Right

Personnel Security Specialist - Senior

This position is contingent upon several items including, but not limited to, co...
Location
Location
United States , Huntsville
Salary
Salary:
90000.00 - 100000.00 USD / Year
amentum.com Logo
Amentum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active Top Secret US Government Clearance
  • US Citizenship
  • Bachelor's degree
  • 10 years of experience in federal law enforcement or 15 years of experience in the personnel security investigative or investigative analyst field
  • Alternative: Associate's degree with 12 years of experience in federal law enforcement or 17 years of experience in the personnel security investigative or investigative analyst field
  • Technical training/certification as an investigator and/or adjudicator is required
  • Computer skills required: MS Office Suite skills
  • Ability to work effectively and efficiently in a team environment and relate well to others
  • Ability to show initiative and commitment to the company's goals
  • Ability to readily adapt to changing requirements
Job Responsibility
Job Responsibility
  • Provides support for security assessment investigations, including background investigations, periodic reinvestigations, and security clearances
  • Independently develops various types of manuals, forms, instructions, and the like, to facilitate operation of the FBI Security Program
  • Participates in special projects such as planning the implementation of new or revised programs
  • Conducts exhaustive and extensive checks in accordance with the FISs, Federal guidelines, policies and procedures
  • Provides direct support and service to the administration of the FBI Security Program by participating in the direction, from inception to completion, of highly sensitive and complex security assessment investigations conducted by the FBI FO's and rendering appropriate adjudication recommendations
  • Requests, receives, scrutinizes and analyzes FBI Investigative files and related material
  • Conducts critical analysis of incoming material/correspondence outlining possible serious and/or very sensitive security concerns
  • Provides on-the-job training, instruction, guidance and advice to lower-level specialists
  • Prepares in-depth summaries of data obtained and determined to be pertinent or relevant to a case
  • Coordinates with FBI Divisions on foreign nexus/concerns to exploit intelligence for the purpose of making adjudicative determination recommendations
What we offer
What we offer
  • Health insurance
  • Dental insurance
  • Vision insurance
  • Paid time off and holidays
  • Retirement benefits (including 401(k) matching)
  • Educational reimbursement
  • Parental leave
  • Employee stock purchase plan
  • Tax-saving options
  • Disability and life insurance
  • Fulltime
Read More
Arrow Right

Senior Information Security Specialist

As a Senior Information Security Specialist, you will play a critical role in sa...
Location
Location
United States , Clarksburg
Salary
Salary:
Not provided
imts.us Logo
Innovative Management & Technology Services
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent professional experience)
  • Minimum 7 years of experience in information security, IT risk management, or cybersecurity compliance, preferably in a federal or state agency environment
  • Demonstrated experience applying and interpreting NIST 800-53, OWASP, and DISA STIGs in real-world projects
  • Strong hands-on technical background in networking, system administration, or software development
  • Proficiency with SIEM tools—especially Splunk—for event correlation, alerting, and compliance reporting
  • Familiarity with Agile development environments and DevSecOps principles
  • Strong written and verbal communication skills, with the ability to create reports and briefings for technical and non-technical stakeholders
  • Active Top Secret clearance is required
  • U.S. Citizenship is required
Job Responsibility
Job Responsibility
  • Lead comprehensive reviews of management, operational, personnel, and technical controls throughout the system development lifecycle (SDLC)
  • Identify and assess emerging security risks, weaknesses, and vulnerabilities associated with infrastructure, applications, and operations
  • Collaborate with developers and engineers to ensure identified risks are mitigated and documented effectively
  • Ensure compliance with federal and industry security standards including NIST SP 800-53, OWASP Top 10, Common Criteria, DISA STIGs, and SANS Institute recommendations
  • Support and contribute to Authorization to Operate (ATO) packages, including preparation of SSPs, POA&Ms, and continuous monitoring (ConMon) artifacts
  • Advise on policy alignment and security architecture improvements to support secure Agile delivery
  • Apply technical knowledge of networking, system administration, and development to assess the security posture of enterprise environments
  • Utilize Splunk to perform audit log analysis, generate system alerts, and support threat hunting and incident response activities
  • Recommend and implement automated logging, monitoring, and security reporting processes
  • Engage proactively with Agile development teams, product owners, and ISSOs to embed security into project planning and delivery
What we offer
What we offer
  • competitive compensation
  • excellent benefits including tuition reimbursement and employer-contributed 401K
  • referral bonuses
  • Fulltime
Read More
Arrow Right

CI Specialist - Research Analyst Support - Senior

As an experienced CI Specialists, you will support the mission to identify, moni...
Location
Location
United States , Fort Meade
Salary
Salary:
140000.00 - 145000.00 USD / Year
amentum.com Logo
Amentum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in a relevant field and 14 years’ relevant intelligence analysis experience
  • with a portion of the experience within the last 2 years
  • High school diploma and 20 years of relevant experience
  • Associate degree and 16 years of relevant experience
  • Master’s degree and 12 years of relevant experience
  • Must have experience with all the following: AR 381-12 (Threat Awareness and Reporting Program)
  • AR 381-20 (US Army Counterintelligence)
  • AR 381-10 (US Intelligence)
  • and DoDI 5240.23 (CI Activities in Cyberspace)
  • Must be a graduate of in-residence Fundamentals of Intelligence Analysis course or Military Service equivalent
Job Responsibility
Job Responsibility
  • Conduct, develop, produce, and present programs of instruction in specified collection operations TTPs, and related or supporting processes, relevant to the various human intelligence and technical intelligence operations under DoD authorities
  • Provide research and analysis of existing and emerging threats and vulnerabilities to the Army Commanders and their Staff
  • Provide recommendations regarding the management, coordination, and training executed by the Detachment
  • Analyze and develop recommendations regarding the Operations Calendar to ensure requirements levied are executable against current tasks to ensure there are no conflicts, and training requirements are synchronized with operations
  • Conduct analysis and provide reports on personnel operations tempo to Government Team/Branch/Division Chiefs
  • Provide an analysis of finalized products, including Damage Assessments, Threat Assessments, and OPSEC Assessments to supported organizations
  • Monitor and disseminate all operations orders received from higher headquarters and ensure completion of all required administrative tasks and Army mandatory training
  • Conduct analysis and provide recommendations to the commander on the training readiness of the unit
  • Analyze and compare unit compliance with AR 350-1 training requirements, and additional requirements levied by the higher headquarters and the unit commander
  • Provide analysis of trends within the Battalion for use in future planning and efficiency improvement
What we offer
What we offer
  • Health, dental, and vision insurance
  • Paid time off and holidays
  • Retirement benefits (including 401(k) matching)
  • Educational reimbursement
  • Parental leave
  • Employee stock purchase plan
  • Tax-saving options
  • Disability and life insurance
  • Pet insurance
  • Fulltime
Read More
Arrow Right

Senior Monitoring, Evaluation, Accountability, and Learning (MEAL) Specialist

World Relief in Chicagoland seeks a Senior Design, Monitoring, Evaluation, Accou...
Location
Location
United States , Chicagoland
Salary
Salary:
80000.00 - 100000.00 USD / Year
latinomemphis.org Logo
Latino Memphis
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Mature and personal Christian faith
  • Committed to the mission, vision, and values of World Relief
  • Desire to serve and empower the Church to impact vulnerable communities
  • Able to affirm and/or acknowledge World Reliefs Core Beliefs, Statement of Faith, Christian Identity and National Association of Evangelicals' For the Health of The Nation document
  • Master’s degree (or equivalent experience) in Program Evaluation, Statistics, Public Policy, Social Work, or a related field
  • 10+ years of progressive experience in outcomes management, program evaluation, or Monitoring, Evaluation, and Learning (MEL), preferably within a non-profit or social services environment
  • Proven expertise in developing and refining data collection instruments (surveys, assessments, scales) to test program efficacy and theory of action
  • Advanced proficiency in statistical software (e.g., SPSS, Stata) and/or business intelligence/dashboarding tools (e.g., Tableau, Power BI)
  • Demonstrated ability to translate complex data into clear, actionable insights for diverse audiences, including frontline staff and executive leadership
  • Deep understanding of validity and reliability as they pertain to social science measurement tools
Job Responsibility
Job Responsibility
  • Development, refinement, and piloting of data collection tools to determine feasible set of indicators that show the organization’s outcomes both as a whole and within program areas
  • Create a seamless flow of data collection and provide training support for staff
  • Prepare systems and train staff for ongoing data collection and analysis
  • Outcomes and Evaluation Framework Development
  • Data System and Reporting Infrastructure
  • Evaluation, Analysis & Learning
  • Produce high-quality evaluation reports, learning briefs, and syntheses of findings
  • Ensure evaluation results inform program adaptation and organizational learning
  • Conduct statistical and qualitative analyses
  • interpret findings for practical application
What we offer
What we offer
  • competitive benefits package
  • employee discount program
  • Gold-level Cigna Healthy Workforce Designation
  • Fulltime
Read More
Arrow Right

Cybersecurity Specialist (Financial Services Consulting)

Forvis Mazars is a leader in audit, tax and advisory services worldwide, operati...
Location
Location
Hong Kong , Hong Kong
Salary
Salary:
Not provided
Forvis Mazars
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A bachelor’s degree in Information Systems, Computer Science, Engineering, or a related field
  • 2-5 years of experience in cybersecurity, advantage with specific expertise in penetration testing and/ or simulation attacks. Candidate with more experiences will be considered for a senior role
  • Experience with Big4 or similar consulting firms. Experience in virtual assets, blockchain technology, or related fields is highly preferred
  • Relevant industry certification such as CISM, CISSP. Additional certifications in cybersecurity or blockchain technology, such as OSCP, OSCE, OSEE, GPEN, CREST, are advantageous
  • Demonstrated ability to think analytically and solve complex problems
  • Excellent interpersonal and communication skills, capable of engaging effectively with both technical and non-technical stakeholders
  • Proficiency in English
  • fluency in Cantonese and Putonghua is highly preferred
  • Advanced skills in report writing and the creation of professional, insightful presentations and reports
  • Familiar with security standard references such as OWASP, SANS, NIST
Job Responsibility
Job Responsibility
  • Provide expert advice on security frameworks and best practices
  • Develop and implement cybersecurity strategies tailored to financial institutes and collaborate with clients to enhance their cyber security posture and compliance with regulations
  • Conduct risk assessments, vulnerability analyses, penetration testing and/or attack simulation to identify potential threats
  • Monitor and respond to security incidents, ensuring rapid remediation
  • Stay updated on emerging threats, technologies, and regulatory changes
  • Conduct training and awareness programs for clients and internal teams
  • Prepare and present reports on cyber security status and improvements
  • Conduct detailed penetration tests and vulnerability assessments across various IT systems within financial institutions, including but not limited to systems handling virtual assets
  • Develop security testing plans that are tailored not only to traditional financial systems but also to emerging technologies associated with virtual assets, such as blockchain
  • Collaborate with clients to assess and enhance their cybersecurity measures, with a particular focus on technologies involved in the management and transaction of virtual assets
What we offer
What we offer
  • Medical and dental insurance
  • Life insurance
  • 5-day working week
  • Discretionary performance bonus
  • Birthday leave
  • Marriage leave
  • Fulltime
Read More
Arrow Right

Discretionary Portfolio Management Analyst

This is an exciting opportunity to join Barclays Private Bank Singapore as a Dis...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
barclays.co.uk Logo
Barclays
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5 to 7 years of relevant work experience in investment management in either an asset management firm or a private bank
  • Previous trading or portfolio management experience in fixed income markets preferred
  • Deep interest in financial markets, investments and portfolio management is a must
  • Excellent analytical skills with an aptitude for automating workflows and handling quantitative work
  • Prior experience in dealing with order management systems such as Blackrock Aladdin, Bloomberg AIM or Charles River is preferred
  • Excellent working knowledge in VBA and Python
  • CFA charterholder is preferred
Job Responsibility
Job Responsibility
  • Allocation and monitoring of securities within a portfolio, aligned to the banks risk tolerance to framework and changing market conditions, investment objectives and regulatory requirements, utilising specialist software and data analytics tools, to enhance the portfolio management efficiency and effectiveness
  • Execution of research and analysis on various securities (equity, bond, funds) to identify profitable investment opportunities, aligned to the banks risk tolerance
  • Communication of the banks investment philosophy, decision making and investment selection to Clients and other key stakeholders such as Relationship Managers and Investment Advisors
  • Performance monitoring against benchmarks and objectives, analysing risk metrics, and creation of reports for senior colleagues and internal stakeholders
  • Implementation of risk management strategies to identify, assess, and mitigate potential financial risks associated with the portfolio, such as market fluctuations, credit risk, and liquidity risk
  • Conducting of simulations to assess the portfolio's resilience to different market scenarios and economic downturns, identification of potential vulnerabilities and informing on risk mitigation strategies, and communicate key findings to senior executives and board members
  • Monitoring of economic data, industry news, and geopolitical events to anticipate potential impacts on the portfolio and adjust strategies accordingly
  • Research of emerging asset classes, innovative investment strategies, and alternative investments to potentially enhance portfolio returns
  • Stakeholder management of investment banks, market makers, and other external partners as needed for portfolio transactions and information gathering
  • Fulltime
Read More
Arrow Right