Greetings from Netsach - A Cyber Security Company.

Job Summary

We are seeking a skilled Vulnerability Management Specialist with strong, hands-on experience in vulnerability identification, assessment, and lifecycle management, along with proven expertise in deploying, configuring, and managing vulnerability management tools. The role requires ownership of tools such as Invicti (application security) and Qualys (infrastructure vulnerability management), ensuring effective and continuous vulnerability coverage across enterprise environments.

Job Title: Vulnerability Management Specialist

Exp: 4 to 8yrs

Location: India (Remote)

Employment Type: Full-Time

Interested candidates please share your resume at emily@netsach.co.in and please register at netsachglobal.com and send us your resume.

Key Responsibilities

Vulnerability Management

• Identify, assess, and prioritise security vulnerabilities across applications, infrastructure, endpoints, and cloud environments
• Perform regular vulnerability assessments and exposure analysis using automated tools and manual validation techniques
• Analyze scan results to reduce false positives and accurately determine risk severity
• Classify vulnerabilities using CVSS, exploitability, threat intelligence, and business impact
• Manage the end-to-end vulnerability lifecycle from discovery through remediation and closure
• Perform re-testing and validation to confirm remediation effectiveness

Tools Deployment & Management

• Deploy, configure, operate, and maintain vulnerability management tools, including Invicti and Qualys
• Independently manage Invicti scans, including authenticated scanning, scan tuning, scheduling, and optimization
• Deploy and manage Qualys infrastructure, including scanners, cloud agents, asset groups, and scan profiles
• Ensure tools are properly configured to align with client environments and security requirements
• Maintain tool health, coverage, and reporting accuracy
• Integrate vulnerability tools with ticketing or tracking systems where applicable

Collaboration & Reporting

• Work closely with application owners, IT, DevOps, and cloud teams to explain findings and provide remediation guidance
• Track remediation progress and follow up with stakeholders to meet SLAs
• Prepare detailed technical reports and executive summaries for internal and external clients
• Maintain vulnerability metrics, dashboards, and continuous improvement initiatives

Continuous Improvement

• Stay up to date with emerging threats, CVEs, OWASP Top 10, and vulnerability management best practices
• Support audits and compliance requirements (ISO 27001, NIST, PCI DSS, etc.)

Required Skills & Experience

• 3–7 years of hands-on experience in vulnerability management
• Strong experience in vulnerability management tools deployment, configuration, and ongoing management
• Proven hands-on experience managing Invicti or any On prem DAST tools for application vulnerability assessments
• 1–2 years of experience in Qualys deployment and operations, including scanner and agent-based scanning
• Strong understanding of web application vulnerabilities (OWASP Top 10)
• Solid knowledge of Windows, Linux, networking, and security fundamentals
• Experience manually validating vulnerabilities beyond automated scan results
• Strong analytical, documentation, and stakeholder communication skills

Preferred Qualifications

• Experience with Qualys modules such as VMDR, WAS, or Policy Compliance
• Exposure to cloud vulnerability management (AWS, Azure, GCP)
• Experience integrating vulnerability tools with CI/CD pipelines
• Familiarity with ServiceNow or Jira for remediation tracking
• Certifications such as CEH, Security+, GWAPT, CISSP, or Qualys / Invicti certifications

Key Competencies

• Ownership of vulnerability management programs
• Tool deployment and operational excellence
• Risk-based security decision making
• Strong attention to detail and accuracy
• Ability to communicate risks clearly to technical and non-technical stakeholders

Thank You

Emily Jha

+91 8050023824

emily@netsach.co.in

www.netsachglobal.com