Security Engineer - Vulnerability Management
New
Remote, IndiaFull-TimeMiddle
Salary not disclosed
Apply NowOpens the employer's application page
Job Details
- Experience
- 5+ years
- Required Skills
- PythonJavaRubyJiraMicrosoft Office SuiteServiceNow
Requirements
- 5+ years of experience in vulnerability management within mid-to-large IT organizations, especially in cloud environments
- Proven track record in security risk assessments, web and network vulnerability scanning, reporting, and threat modeling
- Strong hands-on experience with AWS Cloud security, including defining and implementing security controls
- In-depth knowledge of desktop and server OS like RedHat/CentOS Linux and Windows Server
- Conducting detailed vulnerability assessments, impact analysis, perimeter scanning using tools like Tenable and Qualys, and identifying and remediating zero-day vulnerabilities and other critical risks
- Experience crafting automated security solutions using scripting or programming languages such as Python, Shell/BASH, Ruby, Java, C/C++, Perl
- Ability to craft and implement security solutions, identify risks, and build capability roadmaps
- Proficient in tracking/reporting key vulnerability management metrics, monitoring threats, collaborating with compliance teams for scanning/testing/reporting, supporting user remediation and false positives
- Skilled in tools like Microsoft Office Suite, Jira, ServiceNow
Responsibilities
- Craft and implement security solutions to identify risks, build capability roadmaps, and secure GoDaddy’s infrastructure—both cloud and on-prem—through vulnerability scanning, perimeter validation, and remediation support
- Conduct detailed vulnerability assessments, impact analysis, and perimeter scanning using tools like Tenable and Qualys; validate results and provide actionable recommendations and mitigation plans
- Monitor and report data for the Vulnerability Management Program from internal and external sources
- Collaborate with compliance teams to ensure appropriate scanning, testing, reporting, and mitigation efforts meet compliance standards, while also supporting validation of false positives and user remediation efforts
- Drive process maturity and automation by developing policies, tools, practices, and partnerships to enhance security operations and improve efficiency and throughput
- Provide leadership and mentorship to team members while maintaining updated knowledge on evolving threat landscapes, attacker techniques, and effective countermeasures
View Full Description & ApplyYou'll be redirected to the employer's site
