Xerox Hiring for Vulnerability Management Engineer at Kochi, India Full Time

Vulnerability Management Engineer

General information

City: Kochi

State/Province: Kerala

Country: India

Department: Information Management

Date: Tuesday, July 19, 2022

Working time: Full-time

Ref#: 20017019

Job Level: Individual Contributor

Job Type: Experienced

Job Field: Information Management

Seniority Level: Associate

Description & Requirements

About Xerox Holdings Corporation

For more than 100 years, Xerox has continually redefined the workplace experience. Harnessing our leadership position in office and production print technology, we’ve expanded into software and services to sustainably power today’s workforce. From the office to industrial environments, our differentiated business solutions and financial services are designed to make every day work better for clients — no matter where that work is being done. Today, Xerox scientists and engineers are continuing our legacy of innovation with disruptive technologies in digital transformation, augmented reality, robotic process automation, additive manufacturing, Industrial Internet of Things and cleantech. Learn more at www.xerox.com and explore ourcommitment to diversity and inclusion. (https://www.xerox.com/en-us/jobs/diversity)

Designation: Analyst II, IM Security (Vulnerability Manager Engineer)

Experience: 5-10 years

Qualification: B. Tech /MCA and Security

Certification Preferred: CISSP, SANS, GSEC, CISA, etc.

Timings: 1 PM to 10 PM(IST)

Primary Responsibilities:

• Maintain scanning solution infrastructure and contribute to the strategic roadmap for the program. As business needs evolve, contribute to the strategic planning and ideation of security tools that aid in the objectives to manage IT security risk to systems and software.

• Configure, schedule, and perform automated/adhoc vulnerability/compliance scanning on both Xerox external and internal infrastructure.

• Troubleshoot and repair vulnerability scanning issues across a complex landscape.

• Analyze the scan results to eliminate false positives.

• Create vulnerability reports and communicate to the asset owners.

• Guide remediation efforts and track vulnerabilities to closure.

• Alert infrastructure owners on critical vulnerabilities and escalate for urgent remediation

• Maintain environment documentation through the tools’ lifecycle as well as operational procedures with vendor/service supplier.

• Cooperate with cyber defense team members to manage overall vulnerability to the Xerox environment, proactively assessing and facilitating closure as warranted by cyber threat intel.

Qualification/Education

• Bachelors Degree in Information Security, Computer Science, Engineering, or related field

Preferred Skills

• Technical cyber security certification CISSP, SANS, GSEC, CISA, etc.

• Experience in enterprise vulnerability scanning tools such as Tenable or Qualys.

• Good technical understanding of infrastructure interconnections.

• Experience in managing risk in a shared services/data center environment with proven results in the reduction/management of risk.

• Strong analytical skills with an emphasis on fact based reporting/summaries using technologies

• Ability to interact with and influence project/program/IT teams in balancing security needs with business needs

• Effectively and persuasively communicate security risk in business terms.

• Good time management and attention to detail

• Take initiative to remain up to date with information security skills and fosters an attitude of continual learning, adapting, and commitment to technical proficiency.