Job Description

VM Engineer - Security operations

Department: IT

Employment Type: Permanent - Full Time

Location: Home India

The Vulnerability Detection and Remediation SME is responsible for leading the organization's efforts in identifying, assessing, and remediating vulnerabilities across IT infrastructure, applications, and cloud environments. This role requires deep technical expertise, strategic thinking, and the ability to collaborate across teams to ensure a robust security posture.

Key Responsibilities

• Lead the enterprise-wide vulnerability management program, including detection, prioritization, and remediation.
• Conduct regular vulnerability scans using tools like Qualys, Tenable Nessus, Rapid7, and analyze results to identify risks.
• Collaborate with IT, DevOps, and application teams to ensure timely patching and remediation of vulnerabilities.
• Hands-on experience in patching using different patching tools on different OS, Applications, Cloud and Networks etc.
• Develop and maintain vulnerability management policies, procedures, and playbooks.
• Provide SME-level guidance on scanning signatures, detection capabilities, and remediation strategies.
• Monitor threat intelligence feeds and correlate with internal vulnerability data to assess risk.
• Host remediation meetings with stakeholders and track progress of corrective actions.
• Ensure compliance with industry standards such as NIST, ISO 27001, PCI-DSS, HIPAA.
• Generate detailed reports and dashboards for leadership on vulnerability trends and remediation status.
• Support incident response teams with vulnerability exploitation insights and mitigation strategies.
• Continuously improve scanning, reporting, and remediation processes through automation and orchestration tools (e.g., Service Now, MS Sentinel, Ansible, Terraform, Splunk Phantom).

Skills, Knowledge & Expertise

• Bachelor’s degree in computer science, Information Security, or related field.
• 5+ years of experience in vulnerability management or cybersecurity.
• Strong knowledge of operating systems (Windows, Linux), network protocols, and cloud platforms.
• Hands-on experience with vulnerability management platforms (e.g., Qualys VMDR, Tenable.io, Rapid7 InsightVM).
• Familiarity with patch management tools (e.g., Intune, Qualys, PatchmyPC, Automox WSUS, etc…).
• Excellent analytical, communication, and problem-solving skills.
• Experience with threat modeling techniques (e.g., STRIDE, DREAD).
• Knowledge of forensic tools and incident response procedures.
• Experience in scripting (e.g., Python, PowerShell) for automation.
• Familiarity with SIEM platforms (e.g., Splunk, Sentinel, QRadar).
• ITIL Foundation certification.
• Experience with other ITSM tools and platforms.
• Intune / Qulays