Security Analyst, Global Practices
On-site · Bengaluru, Karnataka, India
Job Summary
Track and manage vulnerabilities from multiple sources across our client-facing technology and proprietary solutions within Global Practices. Act as a dedicated coordination point between Cyber Operations and Product/Platform teams to ensure vulnerabilities are clearly understood, owned, and progressed to remediation. Collaborate with product teams to prioritize and support remediation plans for weaknesses that cannot be fixed within SLAs, and document risk-based justifications and remediation options. Provide timely and accurate reporting on vulnerability status (open, in progress, accepted risk, remediated). Work across multiple data sets and vulnerability sources (external security rating tools, threat intelligence feeds, CNAPP platforms, penetration test results, endpoint security tooling). Demonstrates practical experience in a vulnerability management lifecycle and the ability to interpret outputs from scanners and cloud-security tools, enabling risk-based prioritization and remediation outcomes.
Required Qualifications
- Experience supporting a vulnerability management lifecycle, including identification, analysis, tracking, remediation coordination, and reporting
- Understanding of vulnerability management tooling; scanners, posture management, and cloud workload protection
- Ability to perform risk-based assessments of vulnerabilities considering exploitability, asset context, and actionable threat intelligence
- Broad exposure to OWASP Top 10 risks including Web Application, API, infrastructure, and emerging areas such as AI-enabled applications
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.