Job Summary
Job Summary:
We are seeking a Level 2 Vulnerability Management Engineer with hands-on experience in Qualys for infrastructure vulnerability management. The candidate will be responsible for vulnerability scanning, analysis, reporting, and coordinating remediation activities to ensure a secure IT environment.
Key Responsibilities
Key Responsibilities:
- Perform vulnerability scans using Qualys across servers, network devices, and cloud environments
- Analyze scan results and validate vulnerabilities including false-positive identification
- Prioritize vulnerabilities based on risk, severity, and asset criticality
- Coordinate with remediation teams for vulnerability closure and tracking
- Monitor agent health and asset coverage across infrastructure
- Troubleshoot scan failures including authenticated scanning issues
- Maintain vulnerability reports, dashboards, and compliance documentation
- Support vulnerability lifecycle management including detection, analysis, remediation, and verification
- Work with stakeholders to communicate risks and mitigation strategies
Skill Requirements
Required Skills:
- Hands-on experience with Qualys Vulnerability Management and Policy Compliance
- Strong understanding of vulnerability assessment and remediation lifecycle
- Experience in vulnerability analysis, reporting, and coordination
- Knowledge of infrastructure components (Windows, Linux, Network devices)
- Familiarity with risk-based vulnerability management concepts
- Good analytical and troubleshooting skills
Good to Have:
- Experience with other VM tools (Rapid7, Tenable)
- Knowledge of External Attack Surface Management (ASM)
- Basic scripting (PowerShell/Python)
Certifications (Preferred):
- Qualys Certified Specialist
Soft Skills:
- Strong communication and stakeholder management
- Ability to work in 24x7 shifts
- Good documentation and reporting skills