Senior Information Security Analyst - Vulnerability Management

About The Company : ARA's client delivers data protection and management for the cloud era. Cloud Platform is built on AWS and offered as-a-Service, delivering globally accessible, infinitely scalable and completely autonomous enterprise data resiliency. Customers drive down costs by up to 50 percent by freeing themselves from the burden of unnecessary hardware, capacity planning, and software management. They has raised over $350m in venture capital, is trusted by over 4,000 global organizations and protects over 200 PB of data. The Role : Senior Information Security Analyst Key Responsibilities : Manage comprehensive vulnerability management across IT infrastructure; spearhead remediation efforts with key stakeholders. Execute and expand DAST and security testing for web applications. Assist in security assessments and penetration testing of in-house and web-facing applications. Synergize with cross-functional teams to integrate information security safeguards into existing systems and workflows, within designated operational domains. Perform regular attack surface analyses, Address application/OS security vulnerabilities promptly, identify and neutralize exploit paths for publicly accessible assets. Triage and resolve bug bounty submissions, ensuring expeditious resolution and transparent communication. Support in implementing access controls across the systems and applications, utilizing OAuth, SAML, Okta, or similar platforms. Skills Required : Minimum 5 years of experience in Information Security or related technological domains. Strong understanding of security principles, vulnerability taxonomies, threat vectors, and frameworks (CVSS, OWASP Top 10 & ASVS, SANS CWE). Proficiency in security scanning tools (Qualys, Nessus, Rapid7, OpenVAS, OWASP ZAP, Burp Suite). Comprehensive grasp of OS ecosystems (Windows, Mac, Linux/Unix, VDI) and cloud architectures (VPC, SG, EC2, S3, CloudTrail, IAM, GuardDuty). Enthusiasm for staying up-to-date on emerging cybersecurity threats, vulnerability and exploits techniques. Security certifications (CEH, CompTIA Security , CCSP) are advantageous. Exceptional analytical acumen and adept problem-solving in high-velocity environments. Qualifications & Experience : Engineering graduate/Postgraduate (computer science or allied field). 5 Years (ref:hirist.tech)

Location: pune, IN

Posted Date: 10/28/2024