Talent.com
No longer accepting applications
Security Analyst

Security Analyst

QualysIndia
8 days ago
Job description

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world

We are looking for a Security Analyst to join our Cyber Fusion Center team, focusing on vulnerability management, policy compliance, and security posture management. In this role, you will support the day-to-day execution of security assessments using industry-leading tools including Qualys TruRISK Platform to detect, report, and coordinate remediation of vulnerabilities across Qualys environments. You will also contribute to improving compliance posture through policy enforcement, container and web application security testing, and audit readiness.

This role is ideal for professionals passionate about security operations, compliance, and automation—driven to make an impact in a fast-paced, technology-focused environment.

Key Responsibilities

Vulnerability Management Program

  • Deploy, configure, and maintain Qualys VMDR for continuous vulnerability scanning across on-premises and cloud-based assets.
  • Manage asset groups, tag configurations, scan schedules, and coverage to ensure full visibility of security posture.
  • Analyze scan results, identify high-risk vulnerabilities, and track remediation efforts across IT and engineering teams.
  • Work with application owners and infrastructure teams to prioritize and resolve security issues within SLA.
  • Generate detailed reports and executive summaries to communicate findings and track trends over time.
  • Support integration of vulnerability data into dashboards or ticketing systems for automation and workflow management.

Policy Compliance

  • Configure and maintain the Qualys Policy Compliance (PC) module to assess systems against CIS, NIST, and internal benchmarks.
  • Regularly review compliance scan results and coordinate with system administrators to resolve violations.
  • Assist in developing and maintaining custom compliance policies based on organizational and regulatory requirements.

    • Container Security

  • Integrate container scanning tools (e.g., Qualys Container Security) into CI / CD pipelines to identify vulnerabilities in images before deployment.
  • Monitor running containers for misconfigurations, outdated components, or privilege escalation risks.
  • Partner with DevOps and engineering teams to embed container security best practices into the build and release lifecycle.

    • Web Application Scanning

  • Set up and manage Qualys WAS (Web Application Scanning) for internal and external web assets.
  • Identify common vulnerabilities such as SQL injection, XSS, and misconfigurations in custom and third-party applications.
  • Collaborate with application developers to review and resolve reported security issues efficiently.

    • File Integrity Monitoring (FIM)

  • Configure and maintain File Integrity Monitoring solutions to detect unauthorized changes in critical system and application files.
  • Monitor alerts and ensure baselines are accurate, relevant, and maintained in line with system updates.
  • Assist in defining rulesets and thresholds for actionable alerting.

    • Audit & Compliance Support

  • Contribute to internal and external audits by providing accurate reports, remediation evidence, and tool configurations.
  • Ensure vulnerability and compliance-related controls are aligned with regulatory requirements such as ISO 27001, SOC 2, PCI-DSS, and FedRAMP.
  • Maintain clear documentation for security tool configurations, scan schedules, and compliance mappings.

    • Security Operations & Automation

  • Identify opportunities for automation within the vulnerability management lifecycle using scripting or orchestration platforms.
  • Maintain dashboards, reports, and alerting mechanisms to provide continuous visibility into security posture.
  • Collaborate with tool vendors, especially Qualys, to resolve issues, evaluate new features, and apply platform updates.

    • Qualifications & Experience

  • Bachelor's or Master's degree in Cybersecurity, Computer Science, or related field.
  • 2–4 years of hands-on experience in vulnerability management and security operations.
  • Strong knowledge of Qualys VMDR, PC, WAS, Container Security, and FIM.
  • Solid understanding of security control frameworks (e.g., CIS, NIST, ISO and compliance requirements.
  • Familiarity with cloud environments (AWS, Azure, GCP) and hybrid infrastructure security.
  • Proficiency in reading scan results, interpreting risk levels, and advising on remediation strategies.
  • Excellent problem-solving skills and attention to detail.
  • Strong written and verbal communication for documentation and stakeholder coordination.
  • Preferred certifications : Security+, CEH, Qualys Certified Specialist, ISO 27001 Internal Auditor, or similar.

    • Good to Have

  • Experience with automation (e.g., Python, PowerShell, APIs).
  • Exposure to security ticketing systems (e.g., ServiceNow, Jira).
  • Knowledge of CI / CD security integration and DevSecOps practices.
    • Create a job alert for this search

    Security Analyst • India

    Related jobs
    • Promoted
    Lead Security Engineer

    Lead Security Engineer

    ArcanaNagpur, IN
    As our Lead Security Engineer, you'll own and elevate Arcana's overall security posture - cloud, on-prem, and everything in between. You'll design and enforce policies, automate controls, and harden...Show moreLast updated: 30+ days ago
    • Promoted
    Illumio- Zero Trust Microsegmentation

    Illumio- Zero Trust Microsegmentation

    CareerXperts ConsultingNagpur, IN
    Hiring : Manager - Zero Trust Microsegmentation.Bengaluru | 💼 5+ Years Experience.Lead Illumio microsegmentation implementations. Design & deploy Zero Trust policies.Analyze network infrastructure &...Show moreLast updated: 3 days ago
    • Promoted
    Telemetry Analyst

    Telemetry Analyst

    Greymatter InnovationzNagpur, IN
    Greymatter Innovationz helps you stay digitally relevant across domains, technologies, and skillsets, every day.Support building an Enterprise Data Lakehouse focused on observability.Define relevan...Show moreLast updated: 6 days ago
    • Promoted
    Actimize Developer

    Actimize Developer

    GenpactNagpur, IN
    Inviting applications for the role of Actimize Developer.Implement, configure, and customize Actimize IFM (Integrated Fraud Management) and SAM (Suspicious Activity Monitoring) solutions.Develop an...Show moreLast updated: 11 days ago
    • Promoted
    Cyber Security Specialist

    Cyber Security Specialist

    Tiger AdvisoryNagpur, IN
    Tiger Advisory provides premier cybersecurity consulting services, helping clients manage risks, strengthen resilience, and achieve compliance in an ever-evolving digital landscape.Our mission is t...Show moreLast updated: 24 days ago
    • Promoted
    Senior Security Architect

    Senior Security Architect

    DautomNagpur, IN
    Role : Senior Security Architect.Location : Offshore, India (Remote).You’ll drive end-to-end security design across platforms, lead threat modeling and control gap assessments, oversee IT security r...Show moreLast updated: 3 days ago
    • Promoted
    Information Security Analyst

    Information Security Analyst

    PeoplefyAre, India
    We are urgently hiring for the role of Information Security Analyst with 7 to 12 years of experience with below required skills : . Global Security operations center.Interested candidates please appl...Show moreLast updated: 7 days ago
    • Promoted
    Application Security Engineer

    Application Security Engineer

    FoodsmartNagpur, IN
    Foodsmart is the leading telenutrition and foodcare solution, backed by a robust network of Registered Dietitians.Our platform is designed to foster healthier food choices, drive lasting behavior c...Show moreLast updated: 11 days ago
    • Promoted
    Senior Security & Compliance Manager

    Senior Security & Compliance Manager

    ConfidentialNagpur, IN
    Senior Security & Compliance Manager (Independent Contractor, Remote).Remote (Must work US hours, 6 AM – 2 PM Pacific Time or 9am - 5pm Eastern Time). The Senior Security & Compliance Manager will o...Show moreLast updated: 13 days ago
    • Promoted
    Cyber Security Trainer

    Cyber Security Trainer

    Veherenagpur, India
    Vehere is seeking a Cybersecurity Trainer to design, develop, and deliver world-class training for our customers, partners, and internal teams. You will play a key role in enabling users to master V...Show moreLast updated: 4 days ago
    • Promoted
    Senior Security Engineer

    Senior Security Engineer

    CBTSnagpur, India
    Senior level roles as IT Security Architect, IT Security Engineer, IT Security Auditor, Cyber-Security Analyst, Cyber-Intelligence Analyst. Certifications, Accreditations, Licenses.One or more of th...Show moreLast updated: 4 days ago
    • Promoted
    Tactical Analyst

    Tactical Analyst

    MAX SecurityNagpur, IN
    Max is Global Risk Management organization based out in Tel Aviv, Israel and its APAC HQ is based out of Mumbai.Led by veterans from Israeli Military Special Forces, Intelligence, Cyber and Secret ...Show moreLast updated: 30+ days ago
    • Promoted
    Forward Deployed Analyst (Ex-IB / PE / HF / Buyside)

    Forward Deployed Analyst (Ex-IB / PE / HF / Buyside)

    ArcanaNagpur, IN
    Forward-Deployed Analyst – Portfolio Intelligence.Arcana builds institutional-grade analytics for leading hedge funds and asset managers. We’re hiring exceptional analysts to partner with portfolio ...Show moreLast updated: 30+ days ago
    • Promoted
    Sr. Lead - Cloud Security

    Sr. Lead - Cloud Security

    Sycamore Informatics Inc.Nagpur, IN
    Cloud security framework; Strong scripting skills with PowerShell and.Solid understanding of version control tools, particularly Git. Experience with cloud platforms, including AWS, Azure and GCP.Pr...Show moreLast updated: 30+ days ago
    • Promoted
    SAP Security Consultant (GRC)

    SAP Security Consultant (GRC)

    Avensys ConsultingNagpur, IN
    Avensys is a reputed global IT professional services company headquartered in Singapore.Our service spectrum includes enterprise solution consulting, business intelligence, business process automat...Show moreLast updated: 12 days ago
    • Promoted
    Workday Security System Analyst

    Workday Security System Analyst

    AvalaraNagpur, IN
    Avalara is an AI-first company.We expect every engineer, manager, and to actively leverage AI to enhance productivity, quality, innovation, and customer value. AI is embedded in our workflows, and p...Show moreLast updated: 14 days ago
    • Promoted
    Security Engineer (Detection and Response)

    Security Engineer (Detection and Response)

    FoodsmartNagpur, IN
    Foodsmart is the leading telenutrition and foodcare solution, backed by a robust network of Registered Dietitians.Our platform is designed to foster healthier food choices, drive lasting behavior c...Show moreLast updated: 11 days ago
    • Promoted
    Contractor Security Engineer Level 3 – GRC Tech Solutions

    Contractor Security Engineer Level 3 – GRC Tech Solutions

    MindlanceNagpur, IN
    Remote Role | Contractor Security Engineer Level 3 – GRC Tech Solutions.This position focuses on enabling process clarity, automation, and efficiency while creating insights that empower our busine...Show moreLast updated: 6 days ago
    • Promoted
    Senior SAP Security & Cloud Operations Consultant

    Senior SAP Security & Cloud Operations Consultant

    Hexad Infosoft INNagpur, IN
    Job Title : Senior SAP Security & Cloud Operations Consultant.We are seeking a highly experienced.Senior SAP Security & Cloud Operations Consultant. SAP transformation program spanning both on-premis...Show moreLast updated: 5 days ago
    • Promoted
    Lead Security Engineer

    Lead Security Engineer

    interface.ainagpur, India
    Our cutting-edge Generative AI-powered platform serves over 100 banks and credit unions, delivering hyper-personalized customer interactions across voice, chat, and employee-assisting solutions.To ...Show moreLast updated: 7 days ago