Job Summary

kills Required 8+ years for L3: Hands-on experience in 2 or more of the Vuln Assessment tools and Vuln. Lifecycle management \r\n\r\nWell conversant and experienced in Tenable Tool covering both VM & Policy compliance scanning. Tenable One Knowledge preferred. \r\n\r\nWorking knowledge in Qualys, Rapid7 & MS Defender. Certification Preferred. \r\n\r\nStrong knowledge and work experience in handling vulnerability assessment, CSPM on cloud-based architecture using Prisma cloud, Wiz.io etc \r\n\r\nOther tools knowledge pertaining to Attack Surface Management (ASM) will be preferred in addition. \r\n\r\nExperience in defining, implementing, and consulting for vulnerability management framework based on enterprise security. \r\n\r\nOverall knowledge in VM process and remediation Governance. Ability in working with the Business to effectively communicate the risks of identified vulnerabilities and recommend approach for addressing vulnerabilities. \r\n\r\nWorking knowledge in SNOW, threat monitoring tool and Risk based vulnerability assessment integration Platform like Kenna, RiskSense etc. \r\n\r\nDevelopment, revision, and maintenance of Standard Operating Procedures and other Operational Documents

This role is accountable for driving operational excellence and continuous improvement across vulnerability assessment and penetration testing (VAPT) services utilizing Nessus and related security tools. The individual ensures robust service delivery for complex environments, aligns operations to client SLAs, and empowers teams through expert guidance and process innovation to enhance organizational security posture.

Key Responsibilities

kills Required 8+ years for L3: Hands-on experience in 2 or more of the Vuln Assessment tools and Vuln. Lifecycle management \r\n\r\nWell conversant and experienced in Tenable Tool covering both VM & Policy compliance scanning. Tenable One Knowledge preferred. \r\n\r\nWorking knowledge in Qualys, Rapid7 & MS Defender. Certification Preferred. \r\n\r\nStrong knowledge and work experience in handling vulnerability assessment, CSPM on cloud-based architecture using Prisma cloud, Wiz.io etc \r\n\r\nOther tools knowledge pertaining to Attack Surface Management (ASM) will be preferred in addition. \r\n\r\nExperience in defining, implementing, and consulting for vulnerability management framework based on enterprise security. \r\n\r\nOverall knowledge in VM process and remediation Governance. Ability in working with the Business to effectively communicate the risks of identified vulnerabilities and recommend approach for addressing vulnerabilities. \r\n\r\nWorking knowledge in SNOW, threat monitoring tool and Risk based vulnerability assessment integration Platform like Kenna, RiskSense etc. \r\n\r\nDevelopment, revision, and maintenance of Standard Operating Procedures and other Operational Documents

1. Lead and optimize VAPT operations by utilizing Nessus and related vulnerability management tools to ensure continuous improvement in threat detection and mitigation processes.
2. Oversee the execution of complex vulnerability assessments and penetration tests, ensuring accurate reporting and remediation guidance in line with client requirements and industry best practices.
3. Provide expert technical direction and mentorship to the VAPT operations team in the use of Nessus, Metasploit, and other security tools for advanced vulnerability management.
4. Develop and implement advanced operational workflows and reporting mechanisms using Nessus and SIEM platforms to improve information flow, incident response, and management reporting.
5. Innovate and introduce process enhancements in VAPT operations leveraging automation and integration between Nessus and ticketing or orchestration platforms.
6. Drive transparent communication of project goals, security findings, and operational metrics to internal teams and clients, ensuring alignment and service excellence.
7. Solve complex security operations challenges by designing tailored solutions with Nessus and VAPT methodologies that address unique client environments and business objectives.

Skill Requirements

kills Required 8+ years for L3: Hands-on experience in 2 or more of the Vuln Assessment tools and Vuln. Lifecycle management \r\n\r\nWell conversant and experienced in Tenable Tool covering both VM & Policy compliance scanning. Tenable One Knowledge preferred. \r\n\r\nWorking knowledge in Qualys, Rapid7 & MS Defender. Certification Preferred. \r\n\r\nStrong knowledge and work experience in handling vulnerability assessment, CSPM on cloud-based architecture using Prisma cloud, Wiz.io etc \r\n\r\nOther tools knowledge pertaining to Attack Surface Management (ASM) will be preferred in addition. \r\n\r\nExperience in defining, implementing, and consulting for vulnerability management framework based on enterprise security. \r\n\r\nOverall knowledge in VM process and remediation Governance. Ability in working with the Business to effectively communicate the risks of identified vulnerabilities and recommend approach for addressing vulnerabilities. \r\n\r\nWorking knowledge in SNOW, threat monitoring tool and Risk based vulnerability assessment integration Platform like Kenna, RiskSense etc. \r\n\r\nDevelopment, revision, and maintenance of Standard Operating Procedures and other Operational Documents

1. Advanced Skills In Managing Security Operations And Incident Response For LargeScale Environments.
2. InDepth Knowledge Of Security Tools Such As Metasploit, Burp Suite, And Siem Platforms.
3. Excellent Ability To Design, Implement, And Optimize Vapt Operational Processes And Reporting.
4. Strong Understanding Of Security Frameworks, Compliance Standards, And Risk Management Practices.
5. Excellent Communication, Leadership, And Mentoring Abilities Within Security Operations Teams.

Other Requirements

Relevant Certifications

1. Recommended: Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), or Tenable Certified Nessus Auditor (TCNA).
2. Certifications are optional but valuable for this role