CareerStation
RA

Vulnerability Management-Policy Compliance

RARR Technologies
Bangalore4-6 LPA Posted 14 May 2025
FULL TIME
policy compliance
Qualys
Regex
Nessus
Risk Assessment
+1 more

Job Description

  • Develop hardening standards and translate into tool recognized format. [Example : should aware regex writing skill and implement in Policy Compliance module in Qualys ]
  • Knowledge of identifying true and false positive against to the hardening standards
  • Perform Vulnerability assessment & Policy Compliance using leading Vulnerability Scanning solutions like Qualys, Nessus etc.
  • Experience in Cloud Agent, VMDR
  • Perform false positive validation and ensure delivery of quality reports.
  • Act as a technical SME to analyse the configuration compliance & underlying mechanism on the identification of compliance results.
  • Provide technical advice and support on remediation to infrastructure / application support teams.
  • Review findings and identify root causes for common issues and provide recommendations for sustainable improvements.
  • Understand security policies, procedures and guidelines to all levels of management and staff.
  • Communicate effectively orally and in writing and establish cooperative working relationships.
  • Provide suggestion to improve vulnerability Management service based on current trends in information technology (Network, system security software and hardware).
  • Act as line manager in the absence of team lead.
  • People & Talent *
  • Minimum 4-6 years of experience in Information security and preferably in Banking and Financial services sector
  • In-depth working experience on Operating System, Network devices such as routers, switches, firewalls, load balancers and proxy will be added advantage for the role.
  • Bachelor Degree in Engineering, Computer Science/Information Technology or its equivalent.
  • Industry certifications will be a plus e.g. CISSP, CCNA Security, CCIE, CCNP Security, CISA, CRISC and CISM.
  • Strong knowledge and subject matter expertise in multiple areas within Information Security.
  • Hands on skill and expertise in performing risk / threat assessments/risk consulting.
  • Excellent written, oral communication and reporting skills.
  • Provides technical leadership, expertise and direction working with district and college technical staff for design and implementation of information technology security systems.
  • Develops strategy for propagating, maintaining, and measuring compliance against security policies, standards, and guidelines district-wide.
  • Time management and organizational skills
  • Ability and desire to learn new skills quickly
  • Performs other related duties as assigned.
  • ROLE SPECIFIC TECHNICAL Skills And Competencies and Proficiency Levels *
  • Technical Competency Name:
  • Proficiency Levels
  • Knowledge in industry hardening standards on operating systems, network devices
  • Advanced
  • Qualys, RAPID7, Tanium COMPLY, Nessus
  • Expert
  • Strong Linux Shell experience and Solid knowledge of programming languages is needed, Python etc.,
  • Core
  • ITIL Concepts
  • Core
  • Knowledge on latest vulnerabilities & threats
  • Expert
  • Hands on skill and expertise in performing risk / threat assessments/risk consulting
  • Core
  • (Please select target proficiency level)
  • Policy Compliance, Qualys

Required Skills

policy complianceQualysRegexNessusRisk AssessmentVulnerability Assessment
Join WhatsApp Channel