Vulnerability Management - L3

Vulnerability Management - L3

Location : Bangalore

Mode : Hybrid

• On the portal where vulnerabilities are listed, each vulnerability must be analyzed;

Within each record of each vulnerability, analyze the required fixes and the vendor involved

Contact the vendor to discuss the vulnerability fix (usually the vendor applies the fix in a test environment)

Support the vendor during the application of the fixes in the production environment Security Operations Lead Roles and Responsibilities ( Grade IS3 / IS4) Vulnerability Analysis & Tracking

Review and analyze vulnerabilities listed on the security portal & Servicenow

Assess each vulnerability record to identify required fixes and determine the responsible vendor.

Maintain a centralized tracking system for all open vulnerabilities and remediation status. Vendor Coordination

Contact vendors to discuss and plan the application of fixes, typically in a test environment first.

Support vendors during the fix deployment in production environments.

Ensure rollback protection by coordinating virtual machine snapshots before any intervention. Intervention Planning

Coordinate with T-Systems to schedule interventions and confirm snapshot creation for rollback capability. Remediation Execution

Facilitate and monitor the application of fixes in production environments.

Ensure all remediation activities are completed within agreed timelines and with minimal disruption. Documentation & Reporting to CSO

Document all remediation steps, communications, and outcomes.

Provide regular updates and reports to management on vulnerability status and resolution progress to CSO.

Participate in the weekly and monthly review with CSO.