Senior Infrastructure Vulnerability Analyst

Overview

Join our leading AI-driven Global Supply Chain Solutions Software Product Company—recognized as one of Glassdoor’s “Best Places to Work.” In this pivotal role, you will be responsible for scanning and securing our global infrastructure, spanning data centres and cloud environments. As a key member of our centralized information security team, your expertise will drive the continuous enhancement of our security posture through proactive vulnerability management, cloud security posture improvements, and advanced automation.

Scope :

• Global Coverage: Assess and remediate vulnerabilities across assets in multiple regions and data centers worldwide.
• Centralized Role: Act as a strategic member of the information security team, influencing secure architecture and control implementations across the organization.
• Automation & Efficiency: Leverage automation and scripting to streamline vulnerability scanning, threat analysis, and remediation processes—integrated within our DevSecOps pipeline for improved efficiency and rapid incident response.

What you will Do:

Vulnerability & Threat Management

• Conduct comprehensive vulnerability scans on both on-premise and cloud networks using tools such as Retina, Qualys, Nessus, and Nexpose.
• Discover and continuously monitor global cloud assets to detect security vulnerabilities and misconfigurations.
• Analyze scan results, document findings, and develop actionable remediation plans to address identified risks.
• Publish periodic vulnerability status reports to senior management, tracking progress on remediation efforts.
• Identify and assess potential threats to the organization’s infrastructure and information assets.
• Define, implement, and monitor security architecture and controls across on-prem and cloud environments.
• Collaborate with internal teams to ensure compliance with security frameworks (e.g., NIST, ISO 27001/2, SSAE-18) and regulatory requirements.

Automation

• Develop and maintain automated scripts (using Python, PowerShell, Bash, etc.) to execute regular vulnerability scans and parse outputs efficiently.
• Implement automation tools for prioritizing vulnerabilities, generating alerts, and triggering remediation workflows to minimize manual intervention.
• Leverage real-time data aggregation and analytics to build dynamic dashboards, delivering actionable insights and detailed metrics for management reporting.

Incident Response & Continuous Improvement

• Participate in and support the incident response team to address emerging security events promptly.
• Evaluate, select, and integrate new security tools to enhance threat detection and prevention capabilities.
• Proactively identify security gaps and recommend enhancements to fortify the overall security posture.
• Prepare and present comprehensive system security reports by analyzing and summarizing security data trends.

What are we looking for:

Experience & Education

• Experience: 6+ years in Vulnerability Management, Vulnerability Assessment & Penetration Testing (VAPT), or a closely related field.
• Education: Bachelor’s degree in information security, Information Technology, Computer Science, or a related field.
• Certifications: Preferred certifications include CISM, CEH, CISSP, or equivalent.

Technical Skills

• Vulnerability & Threat Management: Proven expertise in utilizing vulnerability management tools (e.g., Retina, Qualys, Nessus, Nexpose) to assess and remediate security risks.
• Network & System Security: Strong experience in architecting and implementing secure network designs, including firewalls, IDS/IPS, SIEM, and endpoint protection.
• Automation & Scripting: Proficient in developing automation scripts (Python, Bash, PowerShell) and integrating security processes within CI/CD pipelines.
• Security Frameworks: Familiarity with industry-standard frameworks and regulatory requirements such as NIST, ISO 27001/2, and SSAE-18.

Soft Skills

• Excellent written and verbal communication skills, with the ability to distill complex security issues into clear, actionable recommendations.
• Detail-oriented and analytical with a strong aptitude for interpreting data trends to manage risks effectively.
• Proven ability to work collaboratively with cross-functional teams in a fast-paced, dynamic environment.

Shift Flexibility

• Ability to work the 2nd shift to overlap with global customer hours and ensure continuous security coverage.

Our Values

If you want to know the heart of a company, take a look at their values. Ours unite us. They are what drive our success – and the success of our customers. Does your heart beat like ours? Find out here: Core Values

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.