EY TC-CS-CTM-Vulnerability Management-Senior 

India, Tamil Nadu, Chennai 

319687428

Your key responsibilities

• Must have handled a Vulnerability Management process for a large enterprise using any one of the solutions: Qualys / Nexpose / Tenable or similar
• Must have thorough understanding about the Vulnerability Management and Exception & Exemption process on Cloud hosted systems, databases, web services and other widely deployed infrastructure components
• Strong knowledge and experience in Linux
• Experience in Nexpose and Tenable administration
• Working in shifts and provide weekend support
• Experience working with vendors to troubleshoot issues and/or operationalize new features
• Scripting rest API for automation (Python and/or Bash)
• Familiarity on databases (Oracle, Sql Server, AWS Aurora, Hadoop, MongoDB)
• Maintain a strong client focus by effectively serving client needs and developing productive working relationships with client personnel. Stay abreast of current business and economic developments and new pronouncements/standards relevant to the client's business.
• Demonstrate industry expertise (deep understanding of the industry, emerging trends, issues/challenges, key players & leading practices)
• Actively contribute to improving operational efficiency through standardization and process automation on client engagements and internal initiatives

Skills and attributes for success

• Knowledge of Windows, Linux, UNIX, any other major operating systems.
• Familiarized with the latest security vulnerabilities and exploit, understanding of web-based application vulnerabilities (OWASP Top 10), cloud security and architecture
• Experience with scripting / programming skills (e.g., Python, PowerShell)
• Hands on operational experience with vulnerability management tools (e.g. Qualys, Nexpose) including the ability to deploy, configure, and run these tools
• Fluency in English, other language skills are considered an asset
• Experience in handling data using Pandas, XML libraries
• Exposure to handling computer networking and operating systems use cases using python.
• Required knowledge for Python libraries: netaddr, ipaddress, qualysapi, lxml, pandas, numpy

To qualify for the role, you must have

• Graduates / BE / BTech / MSc / MTech / MBA in the fields of Computer Science, Information Systems, Engineering, Business or related major with minimum 3 years of work experience especially in penetration testing and vulnerability assessment.
• Any one of the following technical certifications: CEH, Qualys Certified Specialist, CISM
• Knowledge of Windows, Linux, UNIX, any other major operating systems
• Willingness to work in shifts and weekend

Ideally, you’ll also have

• Project management skills
• Certifications: CEH, Qualys Certified Specialist, CISM

What we look for

• Who can perform penetration testing which includes internet, intranet, wireless, web application, social engineering and physical penetration testing and provide analysis for the testing results.

You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:

• Support, coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.