Talent.com
This job offer is not available in your country.
Qualys - Security Analyst - Vulnerability Management

Qualys - Security Analyst - Vulnerability Management

QUALYS SECURITY TECHSERVICES PRIVATE LIMITEDPune
30+ days ago
Job description

About the job :

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world!

We are looking for a Security Analyst to join our Cyber Fusion Center team, focusing on vulnerability management, policy compliance, and security posture management.

In this role, you will support the day-to-day execution of security assessments using industry-leading tools including Qualys TruRISK Platform to detect, report, and coordinate remediation of vulnerabilities across Qualys environments.

You will also contribute to improving compliance posture through policy enforcement, container and web application security testing, and audit readiness.

This role is ideal for professionals passionate about security operations, compliance, and automationdriven to make an impact in a fast-paced, technology-focused environment.

Key Responsibilities :

Vulnerability Management Program :

  • Deploy, configure, and maintain Qualys VMDR for continuous vulnerability scanning across on-premises and cloud-based assets.
  • Manage asset groups, tag configurations, scan schedules, and coverage to ensure full visibility of security posture.
  • Analyze scan results, identify high-risk vulnerabilities, and track remediation efforts across IT and engineering teams.
  • Work with application owners and infrastructure teams to prioritize and resolve security issues within SLA.
  • Generate detailed reports and executive summaries to communicate findings and track trends over time.
  • Support integration of vulnerability data into dashboards or ticketing systems for automation and workflow management.

Policy Compliance :

  • Configure and maintain the Qualys Policy Compliance (PC) module to assess systems against CIS, NIST, and internal benchmarks.
  • Regularly review compliance scan results and coordinate with system administrators to resolve violations.
  • Assist in developing and maintaining custom compliance policies based on organizational and regulatory requirements.

    • Container Security :

  • Integrate container scanning tools (e.g., Qualys Container Security) into CI / CD pipelines to identify vulnerabilities in images before deployment.
  • Monitor running containers for misconfigurations, outdated components, or privilege escalation risks.
  • Partner with DevOps and engineering teams to embed container security best practices into the build and release lifecycle.

    • Web Application Scanning :

  • Set up and manage Qualys WAS (Web Application Scanning) for internal and external web assets.
  • Identify common vulnerabilities such as SQL injection, XSS, and misconfigurations in custom and third-party applications.
  • Collaborate with application developers to review and resolve reported security issues efficiently.

    • File Integrity Monitoring (FIM) :

  • Configure and maintain File Integrity Monitoring solutions to detect unauthorized changes in critical system and application files.
  • Monitor alerts and ensure baselines are accurate, relevant, and maintained in line with system updates.
  • Assist in defining rulesets and thresholds for actionable alerting.

    • Audit & Compliance Support :

  • Contribute to internal and external audits by providing accurate reports, remediation evidence, and tool configurations.
  • Ensure vulnerability and compliance-related controls are aligned with regulatory requirements such as ISO 27001, SOC 2, PCI-DSS, and FedRAMP.
  • Maintain clear documentation for security tool configurations, scan schedules, and compliance mappings.

    • Security Operations & Automation :

  • Identify opportunities for automation within the vulnerability management lifecycle using scripting or orchestration platforms.
  • Maintain dashboards, reports, and alerting mechanisms to provide continuous visibility into security posture.
  • Collaborate with tool vendors, especially Qualys, to resolve issues, evaluate new features, and apply platform updates.

    • Qualifications & Experience :

  • Bachelors or Masters degree in Cybersecurity, Computer Science, or related field.
  • 2 to 4 years of hands-on experience in vulnerability management and security operations.
  • Strong knowledge of Qualys VMDR, PC, WAS, Container Security, and FIM.
  • Solid understanding of security control frameworks (e.g., CIS, NIST, ISO 27001) and compliance requirements.
  • Familiarity with cloud environments (AWS, Azure, GCP) and hybrid infrastructure security.
  • Proficiency in reading scan results, interpreting risk levels, and advising on remediation strategies.
  • Excellent problem-solving skills and attention to detail.
  • Strong written and verbal communication for documentation and stakeholder coordination.
  • Preferred certifications : Security+, CEH, Qualys Certified Specialist, ISO 27001 Internal Auditor, or similar.

    • Good to Have :

  • Experience with automation (e.g., Python, PowerShell, APIs).
  • Exposure to security ticketing systems (e.g., ServiceNow, Jira).
  • Knowledge of CI / CD security integration and DevSecOps practices

    • (ref : hirist.tech)

    Create a job alert for this search

    Analyst Vulnerability Management • Pune

    Related jobs
    • Promoted
    Security Engineer - Vulnerability Management Tools

    Security Engineer - Vulnerability Management Tools

    Worldline Global ServicePune
    Consultant-Security Engineer About Worldline : Worldline helps businesses of all shapes and sizes to accelerate their growth journey q...Show moreLast updated: 21 days ago
    • Promoted
    Rapid7 - Security Engineer - Vulnerability Management

    Rapid7 - Security Engineer - Vulnerability Management

    Rapid7Pune
    Job Description : Obsessed with security? Are you looking for a new opportunity to channel your security expertise into building, integrati...Show moreLast updated: 30+ days ago
    • Promoted
    Qualys - DevSecOps Engineer - Vulnerability Management

    Qualys - DevSecOps Engineer - Vulnerability Management

    QUALYS SECURITY TECHSERVICES PRIVATE LIMITEDPune
    About the job : Come work at a place where innovation and teamwork come together to support the most exciting missions in the world! Prevent issues from becoming inci...Show moreLast updated: 30+ days ago
    • Promoted
    Security Operations Center Manager - Vulnerability Management

    Security Operations Center Manager - Vulnerability Management

    TESTQ Technologies LimitedPune
    About the Role : We are seeking a highly skilled and proactive SOC Manager to lead and mature our 24x7 Security Operations Center (SOC).Thi...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Security Analyst

    Senior Security Analyst

    Energy Exemplarpune, maharashtra, in
    Energy Exemplar is looking for a Senior Security Compliance Analyst who will perform duties related to compliance certifications, continuous monitoring of the controls and operational security admi...Show moreLast updated: 21 days ago
    • Promoted
    Qualys - Senior Compliance Research Analyst

    Qualys - Senior Compliance Research Analyst

    QUALYS SECURITY TECHSERVICES PRIVATE LIMITEDPune, India
    Come work at a place where innovation and teamwork come together to support the most exciting missions in the world!.We are looking for a detail-oriented and technically skilled Senior Compliance R...Show moreLast updated: 30+ days ago
    • Promoted
    L3 Security Operations Center Implementation Engineer / Analyst

    L3 Security Operations Center Implementation Engineer / Analyst

    TESTQ Technologies LimitedPune
    About the Role : We are looking for an experienced SOC Level 3 Implementation Engineer / Analyst to join our team.In this role, you will be responsible for designing an...Show moreLast updated: 30+ days ago
    • Promoted
    Qualys - Senior Security Engineer

    Qualys - Senior Security Engineer

    QUALYS SECURITY TECHSERVICES PRIVATE LIMITEDPune
    Job Description : As a Cloud Security QA Engineer, you will be part of an engineering team responsible for researching, developing, and delivering compliance signatu...Show moreLast updated: 30+ days ago
    • Promoted
    Qualys - Lead GRC Analyst

    Qualys - Lead GRC Analyst

    QUALYS SECURITY TECHSERVICES PRIVATE LIMITEDPune
    Brief Description : Qualys seeks to hire a Senior and Mid-level Global Risk and Compliance specialist.As a Governance, Risk, and Compliance (GRC) specialist the candi...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Information Security Analyst

    Senior Information Security Analyst

    AccopsPune, Maharashtra, India
    Qualification : MCA / BE / BTech / ME / MTech (Preferably in Comp Sc / IT / Cybersecurity).Expertise in web, mobile, and API security with a strong understanding of security-by-design principles.Proficienc...Show moreLast updated: 30+ days ago
    • Promoted
    Security Analyst

    Security Analyst

    ACL Digitalpune, maharashtra, in
    Should have experience in VAPT,pentesting, vulnerability risk management, PCI,compliance.Web, API, Mobile and Network, is,.Show moreLast updated: 15 days ago
    • Promoted
    Senior Cyber Security Specialist - Vulnerability Management

    Senior Cyber Security Specialist - Vulnerability Management

    MNR SolutionsPune
    About the Role : We are seeking an experienced Senior Specialist CyberSecurity to join our team as an Automated Security Scanning Business Analyst....Show moreLast updated: 11 days ago
    • Promoted
    Information Security Lead - Vulnerability Management

    Information Security Lead - Vulnerability Management

    AllianzPune
    You will lead a team of dedicated security professionals, providing strategic direction and technical guidance.This position requires a strong blend of leadership, technical expertise, and a forwar...Show moreLast updated: 4 days ago
    • Promoted
    Sr. Analyst - Secure Configuration

    Sr. Analyst - Secure Configuration

    Northern Trustpune, maharashtra, in
    Northern Trust has commitment to ensure that all the technologies are secure, reliable and resilient.As part of that Northern Trust has a Vulnerability Management function to identify vulnerabiliti...Show moreLast updated: 8 days ago
    • Promoted
    Qualys - Security Research Engineer - Vulnerability Management

    Qualys - Security Research Engineer - Vulnerability Management

    QUALYS SECURITY TECHSERVICES PRIVATE LIMITEDPune
    About the job : Come work at a place where innovation and teamwork come together to support the most exciting missions in the world! We are seeki...Show moreLast updated: 30+ days ago
    • Promoted
    Evolent - Security Operations Center Analyst

    Evolent - Security Operations Center Analyst

    EvolentPune
    Evolent Health has a bold mission to change the health of the nation by changing the way health care is delivered.Our pursuit of this mission is the driving force that brings us to work each day.We...Show moreLast updated: 30+ days ago
    • Promoted
    Threat and Vulnerability Management Analyst

    Threat and Vulnerability Management Analyst

    SHI | Locuz - An SHI Companypune, maharashtra, in
    Position - Threat and Vulnerability Management Analyst.Interested candidates can apply by sending their resume to rekha.Conduct in-depth reviews of vulnerability scans, penetration test results, th...Show moreLast updated: 8 days ago
    • Promoted
    Security Engineer - Vulnerability Management

    Security Engineer - Vulnerability Management

    FinJoPune
    Key Responsibilities : - Vulnerability Triage & Risk Assessment.Review and analyze vulnerability findings from tools (e.Snyk, Trivy, Aqua, Qua...Show moreLast updated: 30+ days ago