Information Security Analyst - Vulnerability Management

You will be working as a part of the IS department, requiring 2 to 5 years of experience, on a full-time basis with the flexibility to work from anywhere. Your primary responsibilities will include conducting vulnerability assessments and penetration testing on various platforms such as web applications, mobile apps, and network infrastructure. You will be expected to analyze scan results, identify security gaps, and develop actionable remediation plans. Collaboration with development, network, and infrastructure teams will be essential to validate and verify fixes. To excel in this role, you must possess a Bachelor's degree in Computer Science, Information Security, or a related field. Additionally, you should have at least 2 years of relevant experience in VAPT, ethical hacking, or security testing. Proficiency in network protocols, web technologies, operating systems, and security best practices is crucial. Holding certifications like Certified Ethical Hacker (CEH) will be advantageous. You will be responsible for keeping VAPT tools and scripts up to date to ensure effective testing. Detailed reporting following industry standards such as OWASP and CVSS will also be part of your duties. Staying informed about the latest vulnerabilities, threats, attack vectors, and security trends is imperative for this role. Moreover, compliance with internal security policies and external regulatory requirements like ISO 27001 and PCI-DSS will be expected from you. Your involvement in red teaming/ethical hacking initiatives and providing support during security audits, both internal and external, will be required. Additionally, you will play a role in enhancing standard operating procedures (SOPs), testing methodologies, and reporting templates. Overall, your role will be critical in maintaining the security posture of the organization by conducting thorough security testing, identifying vulnerabilities, and recommending appropriate remediation measures.,