Skip to content

Analyst Vulnerability Management – Alstom Jobs in Bengaluru

    Website Alstom

    Job Description:

    The primary responsibility of the Threat and Vulnerability Management Analyst is to apply ethical hacking principles to safeguard organizations assets. The ideal candidate will enhance the security program by performing activities varied from Vulnerability assessment and management, Penetration testing, Source code review and implementation of Secure SDLC programs


    Job Responsibilities:

    • Keep track of new and emerging threats and vulnerabilities, verify applicability in organizational context and initiate remediation activities as necessary
    • Schedule and manage penetration testing activities, analyze test results and engage the relevant stakeholders across both internal and partner organization for remediation
    • Analyze assessment reports provided by vendors / 3rd parties and resolve them within defined SLAs
    • Identify and remove false positives in assessment reports and challenge remediation teams when issues are highlighted for exception
    • Develop remediation plans by partnering with Infra / Application owners. Provide guidance on patching, configuration settings and/or implementation of additional security controls to prevent vulnerabilities from being exploited
    • Define the scope of assessment activities across both Internal and Partner organization
    • Analyze threat intelligence reports across the internet. Identify gaps in the environment and suggest tools, technologies and processes to address them

    Job Requirements:

    • Professional industry standard certifications like CISSP, CEH, GPEN, OSCP, etc.
    • Exposure to threat modelling, systems hardening and Secure SDLC program would be an added advantage
    • Exposure to Application penetration testing and ethical hacking activities would be an added advantage
    • Ability to developing custom scripts on demand as required for vulnerability detection and response, reporting of results
    • Thorough understanding of tools like Qualys, Veracode, Nessus, AppScan
    • In-depth Knowledge of TCPIP stack, OSI layer, Application Programming interfaces, Middleware and Mobile technologies

    Qualification & Experience:

    • Bachelor’s/Master’s degree in Engineering/Technology or related field
    • Experience in red teaming assignments, manual security testing and source code analysis
    • Minimum 6-8 years of relevant IT experience

    Job Details:

    Company: Alstom

    Vacancy Type: Full Time

    Job Functions: Engineering

    Job Location: Bengaluru, Karnataka, IN

    Application Deadline: N/A