Senior Consultant _Vulnerability Management
Kyndryl
- Gurgaon, Haryana
- Permanent
- Full-time
Every position at Kyndryl offers a way forward to grow your career. We have opportunities that you won’t find anywhere else, including hands-on experience, learning opportunities, and the chance to certify in all four major platforms. Whether you want to broaden your knowledge base or narrow your scope and specialize in a specific sector, you can find your opportunity here.Who You AreYou’re good at what you do and possess the required experience to prove it. However, equally as important – you have a growth mindset; keen to drive your own personal and professional development. You are customer-focused – someone who prioritizes customer success in their work. And finally, you’re open and borderless – naturally inclusive in how you work with others.Required Technical and Professional Expertise
- Degree in Computing
- 7+ years experience in Vuln scanning and Config compliance
- 5+ year experience in technology support (eg. Sysadmin) OR in Application development
- 2+ year experience stakeholder engagement
- 1+ year experience in management or TL
- Strong awareness of best practice in security and a drive to self-educate in the field
- Experience with Vulnerability scanning for Infrastructure and Applications
- Experience with Policy Compliance scanning
- Good working knowledge of Findings Management
- Experience in IT either, technology support, application development or application support
- Have experience in problem solving across multiple teams
- Be able to build strong productive relationships with key stakeholders
- Have passion, drive, enthusiasm, and will be a self-starter;
- An understanding of Security principles
- Proven ability to work both individually and within a team environment (at times with little guidance), build strong relationships and maintain rapport with internal stakeholders and 3rd party service providers
- Proven relationship mgment experience with suppliers of technology products & services
- Methodical, analytical approach with outstanding attention to detail
- Excellent verbal and written communication skills
- Strong team working skills are essential
- Ability to attend to the detail on multiple concurrent tasks while meeting various deadlines.
- Ability to develop thorough, clear and concise action plans/objectives.
- Ability to work autonomously and organize/prioritize own work schedule on a short-term basis.
- Provide direction for the usage of Vulnerability Scanning as a key protection for the bank for both internally and externally facing assets.
- Provide support for and participate in the creation of technology configuration specifications to support the secure use of technology footprint in the building of new infrastructure and identifying weaknesses in running infrastructure.
- Provide direction for the usage of Policy Compliance Scanning as a key protection for the bank for internally facing assets.
- Promote the use of Vulnerability Scanning and Policy Compliance scanning and establish a BAU rhythm to effectively detect and scan digital assets, including those of Subsidiaries and externally hosted 3rd party vendors.
- Support the bank in an uplift of security across the technology teams by building good relationships with key stakeholders, supporting them in their understanding of the identified issues.
- Promote the remediation of any vulnerabilities or weaknesses identified by the vulnerability and policy compliance scanning.
- Support the development and maintenance of controls, processes, documentation, and automation to support and maintain the efficient running of the Vulnerability and Policy Compliance scanning services.
- Support in the development of the team to be able to support the tools and processes required to provide vulnerability and policy compliance scanning, and Findings management.
- Collaborate in the development of Reporting to understand control effectiveness, vulnerability exposure and security configuration posture.
- Support the use of 3rd party tools and hold vendors accountable for the services purchase by overseeing issues requiring resolution, managing release cycles, assessing new features might adopt and driving a ROI.
- Work within Security to help teams uplift security across their assets.
- Assist with in the usage of Vulnerability Scanning and Policy Compliance scanning as a key protection for the bank for both internally and externally facing assets.
- Assist to promote the use of Vulnerability Scanning and establish a BAU rhythm to effectively detect and scan digital assets, including those of Subsidiaries and externally hosted 3rd party vendors.
- Develop technology configuration policies to support the secure use of technology footprint in the building of new infrastructure and scheduled scanning of key security configurations.
- Assist to promote the use of Policy Compliance Scanning & establish a BAU rhythm to support the scanning of digital assets, including those of Subsidiaries & externally hosted 3rd party vendors.
- Assist to promote the use of Findings Management tooling & establish a BAU rhythm to support the remediation of digital assets, including those of Subsidiaries & externally hosted 3rd party vendors.
- Provide on-call support to assist the Cyber Defence and Incident Management teams to respond to critical exposures or concerns.
- Use excellent communication skills to articulate technical security requirements and recommendations in a business context.
- Use excellent communication skills to articulate technical security requirements and recommendations in a business context.