McAfee Enterprise Hiring for Cloud Vulnerability Management Engineer at Bangalore, India Full Time

Job Title:

Cloud Vulnerability Management Engineer

Role Overview:

McAfee enterprise is looking for Cloud Vulnerability Management Engineer who will use various security tooling to identify, classify and track remediation of vulnerabilities in our systems (both on-prem and public clouds). You will interact with other teams to enable prioritization, escalation and remediation of vulnerabilities, as needed. You will use both automated scanners as manual penetration testing to assess the security posture of the environment. You will document policies, standards and processes related to Vulnerability Management, and keeps them current. You will keep track of remediation of vulnerabilities as they are handed off to the other teams.

Company Overview:

Organizations and governments around the world may have different priorities and transformation initiatives, but one thing in common is that all are faced with growing risk, advanced threats, and complex environments. Today, cybersecurity strategies are critical to long-term success, and McAfee Enterprise is here to provide the industry’s only comprehensive, proactive, cloud security platform. Our technology is designed to protect the people, hybrid infrastructure, IP, and reputation of your business through our actionable threat intelligence and world-class solutions. With a cloud-native portfolio that spans from device to cloud edge and multi-cloud, you can stay ahead of threats by predicting, preventing, detecting, and correcting them. Backed by our 30+ year history, you can trust that we have the focus, experience and expertise needed to continually innovate, and are committed to help you protect what matters most.

About the role:

• Leverage Tenable, McAfee MVSION Cloud and other tools to perform vulnerability management scans on a regular cadence.

• Perform analysis of scan results and determine criticality ratings for vulnerabilities impacting all production environments.

• Collaborate with key stakeholders on remediation strategies, provide guidance, and follow through closure.

• Report on and track all open vulnerabilities and key metrics around time to completion.

• Provide technical guidance to engineering teams regarding the impact of security issues

• Improve existing security process by automation and integration

• Document security guidance, process and related policy

• Champion security in the engineering organization

About you:

• At least 5 years of experience in Vulnerability Management

• At least 3 years of experience in Vulnerability Management in public cloud environments such as AWS, GCP, Azure.

• Experience tuning, improving and devising efficient scanning workflows across Tenable.

• Experience implementing solutions in the cloud

• Experience communicating and collaborating within an engineering organization to report on and correct vulnerabilities.

• Good understanding of network and web related protocols (such as, TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)

• Development experience with one of the following languages: Python, Java, Go or Ruby

• Familiarity with vulnerability management frameworks and concepts such as CVE, and CVSS

• Experience with common CI/CD and software deployment automation tools

• Excellent written and verbal communication skills

• Possess self-drive to keep moving things forward even in the face of ambiguity and imperfect knowledge

• Strong Knowledge of AWS (Amazon Web Services), GPC (Google Private Cloud), Azure, or other cloud platforms and related technologies is strongly desired.

Company Benefits and Perks:

We work hard to embrace diversity and inclusion and encourage everyone at McAfee Enterprise to bring their authentic selves to work every day. We offer a variety of social programs, flexible work hours and family-friendly benefits to all of our employees.

• Pension and Retirement Plans

• Medical, Dental and Vision Coverage

• Paid Time Off

• Paid Parental Leave

• Support for Community Involvement

We’re serious about our commitment to diversity which is why McAfee prohibits discrimination based on race, color, religion, gender, national origin, age, disability, veteran status, marital status, pregnancy, gender expression or identity, sexual orientation or any other legally protected status.

Organizations and governments around the world may have different priorities and transformation initiatives, but one thing in common is that all are faced with growing risk, advanced threats, and complex environments. Today, the cybersecurity strategies you have in place are critical to your businesses long-term success.

McAfee Enterprise is here to provide the industry’s only comprehensive, proactive, cloud security platform. Our technology is designed to protect the people, hybrid infrastructure, IP, and reputation of your business through our actionable threat intelligence and world-class solutions. With a cloud-native portfolio that spans from Endpoint security (EPP, EDR, XDR), to SASE security (CASB, NG-SWG, Unified DLP, RBI, Private Access), to multi-cloud infrastructure security (CNAPP), we have what you need to help you stay ahead of threats by predicting, preventing, detecting, and correcting them.

Your business needs and desired outcomes matter to us, and as one of the few cloud cybersecurity providers in the industry, we pride ourselves on being an open platform with strong technology and value-added services partnerships to allow you to customize solutions to fit your specific needs. Over 140 partners have integrated their solutions into our platform via MVISION Marketplace, enabling automation and orchestration of various security controls from within a unified security management environment.

Backed by our 30+ year history, 1,800+ security patents, and quality solutions, you can trust that we have the focus, experience and expertise needed to continually innovate to provide you best-in-class security. This innovation has been formally recognized by analysts and other third parties – for both completeness of vision and quality of execution. In the last twelve months, we’ve received industry-leading recognition from Gartner and Forrester; highest threat efficacy rating from MITRE, AVTEST, MIERCOM and SE Labs; and top awards from CRN, InfoSec, and more thanks to our deep knowledge, rich insights, and best-in-class threat intelligence. 86% of the Fortune 100, 78% of the Fortune 500 and 86% of the world’s largest banks choose and trust us; and we hope you will too.

Together with our partners, we are committed to help you protect what matters most. McAfee Enterprise – the industry’s leading cloud-native, holistic security provider.