CrawlJobs Logo

Vulnerability Management Senior Cyber Security Analyst

India, Noida Employment contract · Job Posted May 05, 2026
Apply Position
Job Link Share

Job Description

Location (Primary) - Noida / Chennai (Secondary) GCF Level - 2A(01 nos) & 2B(01 nos) Role Description:- This role aims to receive, analyse, assess, coordinate, and monitor the remediation of vulnerabilities affecting the Company's information systems. The role covers the full vulnerability lifecycle from detection to validation of fixing close collaboration with technical teams, the CERT, and governance bodies.

Job Responsibility

  • Oversee the receipt, analysis, and tracking of vulnerabilities from various sources (CERT, scanning tools, division reports)
  • manage backlog processing, and create or update vulnerability tickets using multiple detection and asset management tools
  • Assess and identify impacted assets across various environments
  • Qualify vulnerabilities by evaluating exposure, versions, severity, attack vectors, and client context
  • Enhance asset information using CMDB, and promptly issue alerts for critical vulnerabilities
  • Develop, implement, and coordinate remediation plans by analyzing security advisories and scan reports
  • Defining tailored action strategies (including patches, workarounds, and updates)
  • Prioritizing tasks, tracking requests in ServiceNow
  • Sending criticality-based reminders, and supporting remediation teams
  • Monitor and validate patch application by ensuring timely verification
  • Gathering remediation evidence (especially for critical vulnerabilities)
  • Documenting exceptions, and confirming remediation effectiveness prior to ticket closure
  • Rapidly identify and assess impacted components and teams for critical vulnerabilities (P0/P1)
  • Ensure targeted follow-up with dedicated reporting and regular meetings, draft essential documentation (minutes and summaries)
  • Manage urgent vulnerability alerts, and escalate unresolved issues as needed
  • Monitor and assess non-CERT vulnerabilities
  • Evaluate their criticality using external sources
  • Recommend and implement remediation strategies, and escalate issues as required
  • Oversee remediation tracking for CERT Threat Intelligence findings, including asset identification
  • Investigation, remediation coordination, and ticket processing
  • Support weekly CYB coordination
  • Enhance CTI quality, and maintain a comprehensive knowledge base
  • Oversee the execution, monitoring, and remediation tracking of key security controls—including asset management
  • Privileged account onboarding/offboarding
  • Identity administration, endpoint detection and response
  • Patch management with ongoing deployment of additional measures to mitigate cyber risk
  • Develop and maintain consolidated dashboards
  • Prepare monthly reports, conduct incident analysis, recommend service improvements
  • Adapt reporting to meet client expectations for vulnerability management
  • Oversee VM process documentation, monitor performance
  • Develop internal training materials, interface with the product team for requirements and tool evolution
  • Support data exchanges, and drive continuous service improvement

Requirements

  • Must hands on experience with detection and monitoring tools (Microsoft Defender for Endpoint EDR/XDR, WIZ, NESSUS PRO, Dynatrace)
  • Experience information system management and mapping tools (CMDB, VISIT)
  • Good knowledge of software distribution tools (SCCM, Intune, Satellite, Ansible, etc.), and reporting and analysis tools (PowerBI)
  • Experience with ServiceNow (SNOW), specifically the SECOPS module
  • Strong understanding of - On-prem infrastructure, SaaS / IaaS / Cloud workloads, Application vulnerability context
  • Ability to enrich findings using CMDB / asset mapping tools
  • Working knowledge of - SCCM, Intune, Ansible, Satellite
  • Stakeholder & Coordination Skills
  • Documentation & Effective Communication - Clear communication (EN/FR preferred) with structured documentation mindset
  • Process & Continuous Improvement Mindset
  • Bachelor's degree or Master's in Computer Science, Engineering, or related field
  • CompTIA Security+ / ISC² SSCP / ISO 27001 Foundation
  • Tenable Nessus Certification / GIAC Vulnerability Assessment / CREST Practitioner Security Analyst (CPSA)
  • Microsoft SC-200 / SC-300
  • AWS Security Specialty / Azure Security Engineer Associate
  • ServiceNow SECOPS certification

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Vulnerability Management Senior Cyber Security Analyst

8 matching positions

Senior Cyber Security Analyst – Incident Response & SOC

We don’t hang up the leash until the job is done. Senior Cyber Security Analyst ...
Location
Location
Salary
Salary:
Not provided
zeektek.com Logo
Zeektek
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Email security fundamentals (SPF, DKIM, DMARC)
  • Phishing and malware investigations
  • DFIR / forensic investigation skills
  • Deep incident response experience
  • Threat analysis across multiple log sources
  • Hands-on tooling knowledge (EDR, SIEM, malware analysis, endpoint/network forensics)
  • Strong troubleshooting and scenario-based thinking
  • Strong written and verbal communication skills
  • Working knowledge of Data Loss Prevention concepts/products, Data Encryption concepts, and endpoint management
  • Technical knowledge of common network protocols and design patterns including TCP/IP, HTTPS, FTP, SFTP, SSH, RDP, CIFS/SMB, NFS
Job Responsibility
Job Responsibility
  • Leading investigations and serving as a subject matter expert while correlating data across multiple log sources and systems
  • Continually improving cyber security procedures and documentation to enhance the security posture of the organization
  • Communicating with users, vendors, and other IT personnel on security-related issues, providing expert guidance and support
  • Staying up to date on evolving cyber threats, identifying their impact, and detecting them in our environment
  • Managing infrastructure security systems such as HIDS/NIDS, SIEM, NGAV, EDR, UBA, WAF, DLP, and vulnerability management tools to meet regulatory requirements
  • Collaborating with business groups to establish and maintain strong working relationships
What we offer
What we offer
  • Weekly Direct Deposit
  • 401K Matching
  • Competitive medical, dental and vision insurance
  • Consistent communication throughout your project
  • ZeekTek Referral Program
Read More
Arrow Right

Senior Cyber Security Analyst

We are supporting a leading international organisation in the search for a Senio...
Location
Location
United Kingdom , London
Salary
Salary:
600.00 - 601.00 GBP / Day
welovesalt.com Logo
Salt
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8-15+ years in Cyber Security
  • Strong focus on Application Security and DevSecOps
  • Experience working closely with engineering and platform teams
  • Strong stakeholder engagement and communication skills
  • Experience within regulated or enterprise environments preferred
  • Financial services, government, or large-scale enterprise experience highly desirable
  • Application Security & Secure SDLC (OWASP Top 10 / ASVS, Secure coding practices, Threat modelling (STRIDE / MITRE ATT&CK), Security architecture and design reviews, Vulnerability management and remediation, Secure Software Development Lifecycle (SSDLC))
  • DevSecOps & CI/CD Security (Integration of security tooling into CI/CD pipelines, Experience with GitHub, GitLab, Jenkins, Azure DevOps, Hands-on experience with SAST, DAST, SCA, Secrets scanning, Container security)
  • Cloud & Platform Security (AWS and/or Azure security, Kubernetes / Docker / container security, API security, IAM / Identity Federation / SSO, WAF and cloud-native security tooling, Infrastructure-as-Code security (Terraform / Checkov / tfsec))
  • Security Tooling (SonarQube, Checkmarx, Veracode, Fortify, OWASP ZAP, Burp Suite, Snyk, Aqua, Wiz, Prisma Cloud, Defender for Cloud, Sentinel)
Job Responsibility
Job Responsibility
  • Perform security risk assessments, secure design reviews, and threat modelling exercises for applications, APIs, and cloud platforms
  • Define and implement secure-by-design principles across software engineering and DevOps teams
  • Embed security controls into CI/CD pipelines using modern DevSecOps practices
  • Lead and support SAST, DAST, SCA, and container security integration activities
  • Conduct application and infrastructure security assessments aligned to OWASP, NIST, and industry best practices
  • Work closely with development teams to triage vulnerabilities and support remediation activities
  • Define security requirements for modern application architectures including APIs, Microservices, Kubernetes / Containers, Cloud-native platforms
  • Support secure architecture reviews across AWS and/or Azure environments
  • Collaborate with stakeholders across Security, Engineering, DevOps, Risk, and Architecture teams
  • Support vulnerability management, security governance, and secure delivery processes
Read More
Arrow Right

Senior Cyber Security Analyst

At Boeing, we innovate and collaborate to make the world a better place. We’re c...
Location
Location
Australia , Enoggera
Salary
Salary:
Not provided
boeing.com Logo
Boeing
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Relevant degree or 6 years+ relevant experience in similar role
  • Prior Defence, aerospace or cyber industry experience (desirable)
  • Effective communication and interpersonal skills, and demonstrated ability to engage, influence and cooperate with a wide range of internal and external stakeholders
Job Responsibility
Job Responsibility
  • Defines, develops, integrates, designs and maintains security technical controls in a variety of IT environments and systems
  • Defines security product specifications tools and techniques for intrusion detection, intrusion prevention, data loss prevention, Encryption of data, Identity/Access management and authentication methods
  • Analyses security designs and recommends design solutions to lower security risk along with being knowledgeable of national and international privacy requirements
  • Reviews design data elements (threat models, data flow diagrams, requirements, etc.) along with known vulnerabilities associated with IT systems and creates designs and recommendations that lower or eliminate security risk
  • Leads the maintenance of the Apache Assessments and Authorisation
  • Capable of attaining AASB Engineering Authority: Design Engineer
What we offer
What we offer
  • Competitive base pay and incentive programs
  • Industry-leading tuition assistance program pays your institution directly
  • Resources and opportunities to grow your career
  • Up to $10,000 match when you support your favorite nonprofit organizations
  • Fulltime
Read More
Arrow Right

Senior Cyber Security & Network Analyst

We're seeking a Senior Cyber Security & Network Analyst to support and manage ou...
Location
Location
United Kingdom , Tadworth
Salary
Salary:
Not provided
https://www.office-angels.com Logo
Office Angels
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in cyber security operations and network infrastructure
  • Strong knowledge of Palo Alto firewalls, SIEM tools, and endpoint security
  • Experience with L2/L3 networking (Nexus, LAN/WAN, Wi-Fi)
  • Vulnerability management (e.g. Qualys) and incident response expertise
  • Understanding of data security, threat analysis, and security best practice
  • Strong problem-solving and analytical skills
  • Excellent communication and stakeholder management
  • Ability to work independently in a fast-paced environment
  • Methodical, organised, and detail-oriented approach
Job Responsibility
Job Responsibility
  • Manage day-to-day cyber security operations and incident response
  • Monitor and optimise security tools (SIEM, firewalls, endpoint security)
  • Maintain and support network infrastructure (LAN/WAN, Wi-Fi, L2/L3)
  • Identify threats, conduct investigations, and implement security fixes
  • Support delivery of cyber security projects and ongoing improvements
  • Fulltime
Read More
Arrow Right

Cyber Architect - Info Security Tech Senior Analyst

The Cyber Architect - Info Security Tech Senior Analyst is an intermediate level...
Location
Location
Hungary , Budapest
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-8 years of relevant experience
  • Additional technical certifications are preferred
  • Demonstrated ability to research and apply current information regarding the IS field
  • Threat modelling using industry standard methodologies (e.g. STRIDE/DREAD) Experience developing Reference Security Architecture and Design Patterns to support proactive and automated controls
  • Strong knowledge of security for applications related to authentication / authorization, data protection, session management, data validation, and end point protections
  • Consistently demonstrates clear and concise written and verbal communication
  • Proven influencing and relationship management skills
  • Proven analytical skills
  • Bachelor’s degree/University degree or equivalent experience
Job Responsibility
Job Responsibility
  • Plan, research, and design security architecture for IT systems and applications (internally developed as well as vendor supplied) for processing multiple classification levels of data on prem, and cloud
  • Determine the security controls for above, document appropriately and partner with IT architecture/development stakeholders to implement during early in system development life cycle
  • Perform security architecture and risk assessment of internally developed or acquired IT systems and applications using best practices including threat modelling. Ensure that security design and controls are consistent with organization's security architecture principals
  • Establish relationships with cross-functional areas including Business, Technology, and Compliance stakeholders and serve as a SECURITY subject-matter expert
  • Manage risk by analyzing the root cause of security issues, determining compensating controls, and driving remediation
  • Coordinate with system development and infrastructure units to identify Information Security (IS) risks and the appropriate controls for development, day-to-day operation, and emerging technologies
  • Perform regular assessments based on changes in the threat landscape
  • Provide information security support with related activities during systems development (e.g. authentication, encryption)
  • Identify significant IS threats and vulnerabilities
What we offer
What we offer
  • Cafeteria Program
  • Home Office Allowance (for colleagues working in hybrid work models)
  • Paid Parental Leave Program (maternity and paternity leave)
  • Private Medical Care Program and onsite medical rooms at our offices
  • Pension Plan Contribution to voluntary pension fund
  • Group Life Insurance
  • Employee Assistance Program
  • Access to a wide variety of learning and development programs, online course libraries and upskilling platforms, such as Udemy and Degreed
  • Flexible work arrangements to support you in managing work - life balance
  • Career progression opportunities across geographies and business lines
  • Fulltime
Read More
Arrow Right

Security Operations Center (SOC) Cyber Threat Senior Analyst

The Security Operations Center (SOC) Cyber Threat Analyst will be part of the Gl...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4-8 years of relevant experience in Cyber
  • Proven influencing and relationship management skills
  • Understand the life cycle of network threats, web attacks, attack vectors, and methods of exploitation
  • Ability to conduct analysis utilizing network traffic (packet capture), web logs, endpoint logs and others to identify unusual behavior that may indicate malicious activity
  • Proven and strong analytical skills
  • Attentive to detail and possess a strong investigative mindset
  • A good team player, self-driven and able to act as individual contributor
  • Consistently demonstrates clear and concise written and verbal communication
  • Relevant cyber security certification is a bonus
  • Regular weekly work shift will include one of the weekends (e,g, Saturday, Sunday)
Job Responsibility
Job Responsibility
  • Analyze security events to identify potential threats and intrusions. Events include but not limited to Intrusion Detection/Prevention tools, anomaly detection systems, Firewalls, Antivirus and EDR systems, proxy devices, cloud security solution and data leakage prevention system
  • Assess and investigate potential security threats sourced from other channel leveraging variety of data and tools
  • Drive a continuous effort to improve SOC process. Execute adhoc tasks or small projects as needed
  • Undertakes root cause analysis of events, perform risk assessment on threat or vulnerability and make recommendations to improve detection capability
  • Drive a continuous effort to review and fine tune detection rule/use case/signature to reduce unnecessary noise and increase alert fidelity
  • Handle threat incidents call like DDOS incidents, adhoc high severity cases including collaboration and escalation to other support groups
  • Participate in daily and adhoc conference calls, self-assessment processes and documentation related tasks
  • Stay updated with the latest cybersecurity trends, emerging threats and technologies
  • Fulltime
Read More
Arrow Right

Cyber / Tech 2nd LOD Senior Lead Analyst, Senior Vice President

The Technology and Cyber Compliance and Operational Risk Office (TCCORO) at Citi...
Location
Location
Poland , Warsaw
Salary
Salary:
340990.00 - 580610.00 PLN / Year
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in technology and cyber risk assessments, metrics, enterprise technology services, risks, and controls within globally complex, dispersed, and diverse organizations
  • Advanced knowledge and experience leading control design and operating effectiveness evaluation, testing, and reporting with a track record of influencing effective risk mitigation strategies
  • Excellent presentation skills as well as the ability to effectively communicate complex topics to a broad audience
  • Advanced proficiency in creating written executive materials and mastery in verbal presentation to Executive audiences
  • Outstanding communication and influencing skills, with the ability connect with individuals throughout all levels of the organization and with external partners and vendors
  • Exceptional relationship management skills, including demonstrable experience managing through conflict and issue resolution with senior stakeholders
  • Proven ability to work within teams, manage cross-functional projects, influence executive-level strategic decision-making, and effectively translate technology / cyber risk insights to value-add risk mitigation solutions
  • Subject matter expert in one or more industry standard risk management frameworks (including ISO27001, COBIT, TOGAF and CRI for example), and an in-depth understanding of technology and cyber risk mitigation strategies
  • Deep knowledge of products within the coverage area (e.g, Markets, Banking), including a technical understanding of current and emerging trends as well as the ability to apply in-depth understanding of the business impacts of technical contributions
  • In-depth knowledge of technology and cyber risks and controls across various information system architecture and engineering domains including data protection, identity and access management, vulnerability management, network security, endpoint security, logging and monitoring, incident management, and third-party management
Job Responsibility
Job Responsibility
  • Manages internal projects on threat issues that support a variety of participants and stakeholders measuring the effectiveness and comprehensiveness of Citi’s first line defenses
  • Establishes and oversees the application of compliance and technology and cyber policies and procedures, technology and tools, and governance processes to provide credible challenge for minimizing losses from technology and cyber risks
  • Independently assesses technology and cyber risks and drive actions to address the root causes that persistently lead to operational risk losses by challenging both historical and proposed practices
  • Leads independent assurance activities to assess areas of concern including substantive and controls testing
  • Monitors, evaluates, and challenges Key Risks and associated Key Risk Indicators triggers and thresholds
  • Identifies potential risks associated with program/project delivery on a technical and detailed level
  • Leads various second line of defense technology and cyber assessments including risk assessments, control assessments, maturity assessments etc
  • Assesses technology and cyber risks associated with new initiatives and programs being proposed for implementation
  • Challenges the design, adequacy and strength of the control environment associated to technology and cyber and recommends actions to ensure the operational risk profile is in line with the technology and cyber risk appetite
  • Executes ad-hoc activities for the TCCORO organization, including but not limited to: researching and producing materials for presentations of deep dives into selected topics, coordinating deliverables related to audits and examinations, and maintaining associated data for executive reporting
What we offer
What we offer
  • Employer paid Defined Contribution Pension Plan contribution of 6% of employee’s pensionable earnings (PPE Program)
  • Employer paid Private Medical Care Package for employees and Private Medical Care Packages for certain family members available at preferential rates
  • Employer paid Life Insurance Program for employees and Life Insurance for certain family members available at preferential rates
  • Employee Assistance Program financed by Employer
  • Paid Parental Leave Program (maternity and paternity leave
  • statutory and 2 weeks additional paid paternity leave)
  • Sport Card for employees subsidised via Social Benefits Fund and Sport Cards for certain family members available at preferential rates
  • Additional benefits from Company’s Social Benefit Fund, in particular: Holidays Allowance, support for sport and cultural activities, team building events
  • Additional day off for volunteering
  • Cafeteria/ flex benefit
  • Fulltime
Read More
Arrow Right

InfoSec Risk Senior Analyst / Analyst

Location
Location
Salary
Salary:
Not provided
ethicshr.com Logo
Ethics HR
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree in Computer Science or Electronics & Communication Engineering or a related field from a reputable university
  • Minimum 4 years of experience for the Senior Analyst and 2 years of experience for the Analyst in the banking sector and information security field, including the following background: Risk assessment, identification and mitigation
  • Security controls, security baseline, technology best practices
  • Has an integration knowledge across different security technologies and systems
  • Security control enforcement, measure of effectiveness and proposing compensating controls
  • CBE regulations
Job Responsibility
Job Responsibility
  • Review & maintain the Risk profile according to the bank's Cyber Security Risk appetite
  • Identify information security controls necessary to remediate identified risks and follow up remediation with the concerned business lines
  • Assess information security risks for IT assets and propose appropriate measures to eliminate/reduce risk
  • Coordinate with Information Security teams to manage the risk assessment activities
  • Engage InfoSec Teams in all new initiatives and projects to handle InfoSec risk assessment for new projects/technologies with concerned stakeholders
  • Follow up on Audit reports along with audit Findings/Recommendations by Internal Audit/External Audit, CBE and ensure remediation with the related parties
  • Ensure maintaining Global InfoSec Risk Register for all assessed IT assets & follow up on open risks until closure
  • Review the cases performed by the InfoSec Governance & Compliance Teams from risk perspective side
  • Participate in the Change Advisory Board (CAB) meeting
  • Work on standard and ad-hoc threats providing InfoSec risk assessment as needed
Read More
Arrow Right