Security Delivery Lead

Project Role : Security Delivery Lead
Project Role Description : Leads the implementation and delivery of Security Services projects, leveraging our global delivery capability (method, tools, training, assets).
Must have skills : Security Penetration Testing
Good to have skills : NA
Minimum 7.5 year(s) of experience is required
Educational Qualification : 15 years full time education

Summary: The Vulnerability Management Engineer will be responsible for managing and optimizing the enterprise vulnerability scanning program using Pentra (NW Vulnerability Scanning) and driving orchestration, automation, and remediation workflows through Seemplicity. The role involves establishing scanning schedules, analyzing vulnerabilities, coordinating remediation, and ensuring security posture improvements across the environment. Roles & Responsibilities: - Perform scheduled and on-demand vulnerability scans across servers, network devices, applications, and cloud workloads. - Configure scan profiles, assets, discovery, authentication methods, and scan policies within Pentra. - Validate scan completeness, accuracy, and ensure minimum false positives. - Analyze vulnerability reports, exploitability, CVSS scoring, and risk severity. - Track and monitor high-risk vulnerabilities, exposed services, misconfigurations, and outdated software. - Coordinate with infra, network, and app teams to validate findings and support remediation activities. - Maintain asset inventory alignment with CMDB and ensure proper tagging for scan coverage. - Assist in tuning scanning engines, optimizing performance, and improving detection fidelity. - Integrate vulnerability data from Pentra and other security tools into Seemplicity. - Build automated workflows for ticket creation, triaging, assignment, and remediation tracking. - Monitor SLA adherence and generate dashboards for remediation progress and backlog. - Streamline cross-team collaboration by enabling centralized vulnerability task management. - Improve remediation efficiency by customizing Seemplicity playbooks, rules, prioritization logic, and routing. - Generate executive and operational reports on vulnerability trends, KPIs, and risk reduction. - Support continuous improvement of vulnerability lifecycle processes. - Conduct root cause analysis (RCA) for recurring or critical vulnerabilities. - Provide actionable recommendations to reduce exposure to threats. - Participate in risk acceptance discussions and document compensating controls. - Ensure alignment with organization’s vulnerability management policies and regulatory requirements. - Work closely with IT operations, DevOps, cloud, and network teams for issue resolution. - Partner with SOC, Threat Intelligence, and Security Engineering teams to correlate vulnerability data with emerging threats. - Support incident response with vulnerability insights during security incidents. Professional & Technical Skills: - Hands-on experience with Pentra (preferably NW scanning module). - Experience with Seemplicity (or similar workflow orchestration platforms). - Strong understanding of CVEs, CVSS scoring, exploit patterns, network protocols, and OS/network stacks. - Familiarity with vulnerability management frameworks (NIST, CIS, ISO 27001). - Ability to interpret scan results, validate findings, and guide technical teams. - Proficiency in Excel, dashboards, and reporting tools. - Added advantage: scripting (Python, PowerShell), API integrations. - CompTIA Security+ - CEH / eJPT / Network+ - GIAC Vulnerability Assessment (GVAC) - Any vulnerability management platform certification (Qualys/Tenable experience helpful) Additional Information: - The candidate should have minimum 10+ years of experience in Vulnerability Management. - This position is based at our Bengaluru office. - A 15 years full time education is required.