DIGITAL SECURITY - SOC Services

<p style="line-height: normal; margin-bottom: 0cm;"><span style="font-family: Calibri, sans-serif;"><strong>Vulnerability Management Specialist - Qualys ( Cyber security -Tool)</strong></span><br><br><span style="font-family: Calibri, sans-serif;">As an vulnerability management specialist, you will support the SOC team in their daily activity and administrating Operational Security Processes. You will be asked to identify improvements in current processes and formalize it through clear documentation.</span><br><br><span style="font-family: Calibri, sans-serif;">Among the ongoing administration of Processes, your main responsibilities will be to manage the vulnerability scan process. The process is based on Qualys Tools.</span><br><span style="font-family: Calibri, sans-serif;">• Perform global infra vulnerability scanning along with change management process</span><br><span style="font-family: Calibri, sans-serif;">• Help system administrators to deploy and troubleshoot Qualys agent on different operating systems (Windows, Linux, AIX, etc)</span><br><span style="font-family: Calibri, sans-serif;">• Analyze scan results and deploy Qualys appliances(virtual and physical) to enhance scan coverage</span><br><span style="font-family: Calibri, sans-serif;">• Responsible for understanding, reviewing, and interpreting assessment and scanning results, reducing false positive findings, and acting as a trusted security advisor to the client.</span><br><span style="font-family: Calibri, sans-serif;">• Identify and prioritize all vulnerabilities in client environments and provide timely vulnerability assessment reports to key stakeholders</span><br><span style="font-family: Calibri, sans-serif;">• Develop and report enterprise-level metrics for vulnerabilities and remediation progress</span><br><span style="font-family: Calibri, sans-serif;">• User requests administration: manage users request on the platforms. Add Hosts, Assets Groups, create scan, report or Dashboard (using the standard and process delivered by SOC SG). Including Emergency stop of scan.</span><br><span style="font-family: Calibri, sans-serif;">• Manage Vulnerability Scan for GTS: Manage the Change management process to request a scan on GTS infrastructure. Manage the change creation, the achievement of the change process following by the job creation on Qualys platform.</span><br><span style="font-family: Calibri, sans-serif;">• Present Vulnerability Assessment Scanning and guidance, False Positive Validation, Compliance Scanning and, scan profile and policy creation.</span><br><span style="font-family: Calibri, sans-serif;">• Analysis of vulnerability: based on group standards, manage the alerting on critical vulnerability found by a vulnerability scan and follow the mitigation with remediation teams</span><br><span style="font-family: Calibri, sans-serif;">• Ability to identify false positives</span><br><span style="font-family: Calibri, sans-serif;">• Knowledge of vulnerability management frameworks and concepts such as CVE, and CVSS scoring systems and attacking vectors</span><br><span style="font-family: Calibri, sans-serif;">• Dashboard: generate monthly and quarterly reports and dashboards.</span><br><span style="font-family: Calibri, sans-serif;">• Understanding of Qualys tags</span><br><span style="font-family: Calibri, sans-serif;">• Manage Internal Qualys infrastructure: survey the status of Qualys appliances and manage the RMA process and deployment of new appliances.</span><br><span style="font-family: Calibri, sans-serif;">• Implement automated, proactive security measures</span><br><span style="font-family: Calibri, sans-serif;">• Hands on Qualys modules Vulnerability Management, Security Configuration Assessment(SCA)/Policy Compliance, Container Security, Cloud Agent, Container Security, Cloud security</span><br><span style="font-family: Calibri, sans-serif;">• Knowledge and experience on Terraform, python and any scripting is required</span></p><p style="line-height: normal; margin-bottom: 0cm;"><br><span style="font-family: Calibri, sans-serif;"><strong>Required</strong></span><br><br><span style="font-family: Calibri, sans-serif;">Profile required</span><br><span style="font-family: Calibri, sans-serif;">• End to end understanding of Vulnerability management (scanning, remediation follow-up, false positive verification)</span><br><span style="font-family: Calibri, sans-serif;">• Conduct Network and System Vulnerability assessments and documentation of corrective/remediation actions</span><br><span style="font-family: Calibri, sans-serif;">• Drive the end-to-end vulnerability lifecycle from discovery to closure</span><br><span style="font-family: Calibri, sans-serif;">• Identify internal and external threats that could result in unauthorized disclosure, misuse, alteration, or destruction of customer's information assets</span><br><span style="font-family: Calibri, sans-serif;">• Identify and prioritize all vulnerabilities in client environments and provide timely vulnerability assessment reports to key stakeholders</span><br><br><span style="font-family: Calibri, sans-serif;">Ensure timely follow up with patch management and vulnerability remediation in coordination with Countermeasures personnel</span><br><br> </p><p style="line-height: normal; margin-bottom: 0cm;"><span style="font-family: Calibri, sans-serif;"><span lang="EN-US">He/She has good knowledge in the Qualys Vulnerability assessment tool & Management .</span></span></p><p style="line-height: normal; margin-bottom: 0cm;"><span style="font-family: Calibri, sans-serif;"><span lang="EN-US">He/she has to complete certification in Qualys Guard: </span></span></p><ul style="list-style-type: disc;"><li style="line-height: normal; margin-bottom: 0cm;"><span style="font-family: Calibri, sans-serif;"><span lang="EN-US">Qualys VMDR</span></span></li><li style="line-height: normal; margin-bottom: 0cm;"><span style="font-family: Calibri, sans-serif;"><span lang="EN-US">Qualys Cloud Agent</span></span></li><li style="line-height: normal; margin-bottom: 0cm;"><span style="font-family: Calibri, sans-serif;"><span lang="EN-US">Qualys Policy Compliance</span></span></li><li style="line-height: normal; margin-bottom: 0cm;"><span style="font-family: Calibri, sans-serif;"><span lang="EN-US">Qualys CSAM</span></span></li><li style="line-height: normal; margin-bottom: 0cm;"><span style="font-family: Calibri, sans-serif;"><span lang="EN-US">EC-Council CEH </span></span></li></ul><p style="line-height: normal; margin-bottom: 0cm;"><br><br> </p> <br>At Zensar, we’re <i>“experience-led everything”</i>. We are committed to conceptualizing, designing, engineering, marketing, and managing digital solutions and experiences for over 130 leading enterprises. We are a company driven by a bold purpose: <i>Together, we shape experiences for better futures</i>. Whether for our clients, our people, or the world around us, this belief powers everything we do. At the heart of our culture is <i>ONE with Client</i> - a set of four core values that reflect who we are and how we work: <i>One Zensar, Nurturing, Empowering, and Client Focus</i>.<br><br> Part of the $4.8 billion RPG Group, we’re a community of 10,000+ innovators across 30+ global locations, including Milpitas, Seattle, Princeton, Cape Town, London, Zurich, Singapore, and Mexico City. Explore <a href="https://www.zensar.com/careers/" target="_blank">Life at Zensar</a> and join us to <a href="https://www.youtube.com/embed/i2NZsiQqVnU?autoplay=1&fs=1" target="_blank">Grow. Own. Achieve. Learn.</a> to be the best version of yourself.<br><br> We believe the best work happens when individuality is celebrated, growth is encouraged, and well-being is prioritized. We are an equal employment opportunity (EEO) and affirmative action employer, committed to creating an inclusive workplace. All qualified applicants will be considered without regard to race, creed, color, ancestry, religion, sex, national origin, citizenship, age, sexual orientation, gender identity, disability, marital status, family medical leave status, or protected veteran status.