Vulnerability Management Specialist

Greetings from Netsach - A Cyber Security Company.

Job Summary

We are seeking a skilled Vulnerability Management Specialist with strong hands-on experience in vulnerability identification assessment and lifecycle management along with proven expertise in deploying configuring and managing vulnerability management tools. The role requires ownership of tools such as Invicti (application security) and Qualys (infrastructure vulnerability management) ensuring effective and continuous vulnerability coverage across enterprise environments.

Job Title: Vulnerability Management Specialist

Exp: 4 to 8yrs

Location: India (Remote)

Employment Type: Full-Time

Interested candidates please share your resume at and please register at and send us your resume.

Key Responsibilities

Vulnerability Management

• Identify assess and prioritise security vulnerabilities across applications infrastructure endpoints and cloud environments
• Perform regular vulnerability assessments and exposure analysis using automated tools and manual validation techniques
• Analyze scan results to reduce false positives and accurately determine risk severity
• Classify vulnerabilities using CVSS exploitability threat intelligence and business impact
• Manage the end-to-end vulnerability lifecycle from discovery through remediation and closure
• Perform re-testing and validation to confirm remediation effectiveness

Tools Deployment & Management

• Deploy configure operate and maintain vulnerability management tools including Invicti and Qualys
• Independently manage Invicti scans including authenticated scanning scan tuning scheduling and optimization
• Deploy and manage Qualys infrastructure including scanners cloud agents asset groups and scan profiles
• Ensure tools are properly configured to align with client environments and security requirements
• Maintain tool health coverage and reporting accuracy
• Integrate vulnerability tools with ticketing or tracking systems where applicable

Collaboration & Reporting

• Work closely with application owners IT DevOps and cloud teams to explain findings and provide remediation guidance
• Track remediation progress and follow up with stakeholders to meet SLAs
• Prepare detailed technical reports and executive summaries for internal and external clients
• Maintain vulnerability metrics dashboards and continuous improvement initiatives

Continuous Improvement

• Stay up to date with emerging threats CVEs OWASP Top 10 and vulnerability management best practices
• Support audits and compliance requirements (ISO 27001 NIST PCI DSS etc.)

Required Skills & Experience

• 37 years of hands-on experience in vulnerability management
• Strong experience in vulnerability management tools deployment configuration and ongoing management
• Proven hands-on experience managing Invicti or any On prem DAST tools for application vulnerability assessments
• 12 years of experience in Qualys deployment and operations including scanner and agent-based scanning
• Strong understanding of web application vulnerabilities (OWASP Top 10)
• Solid knowledge of Windows Linux networking and security fundamentals
• Experience manually validating vulnerabilities beyond automated scan results
• Strong analytical documentation and stakeholder communication skills

Preferred Qualifications

• Experience with Qualys modules such as VMDR WAS or Policy Compliance
• Exposure to cloud vulnerability management (AWS Azure GCP)
• Experience integrating vulnerability tools with CI/CD pipelines
• Familiarity with ServiceNow or Jira for remediation tracking
• Certifications such as CEH Security GWAPT CISSP or Qualys / Invicti certifications

Key Competencies

• Ownership of vulnerability management programs
• Tool deployment and operational excellence
• Risk-based security decision making
• Strong attention to detail and accuracy
• Ability to communicate risks clearly to technical and non-technical stakeholders

Thank You

Emily Jha

91