Senior Administrator - NESSUS, Compliance Remediation

Job Summary

HCL CSFC provides a superior foundation for building a professional career - a place for people to learn, to achieve and grow. A philosophy that balances personal lifestyles, perspectives and needs is an important part of our culture.\r\nCSFC Noida is looking for an experienced Vulnerability Management and Penetration testing professional candidate to join its team.\r\n

The Sr. Support Administrator plays a crucial role in ensuring the seamless operation of security measures and technical support. This position is responsible for troubleshooting complex incidents, conducting root cause analysis, and implementing effective solutions, all while adhering to quality standards and regulatory requirements. By focusing on customer satisfaction and operational excellence, the role significantly contributes to the organization's overall security posture and client relationships.

Key Responsibilities

Ability to work with very large and complex network.\r\n• Self-motivated individual and creative thinker who will take ownership of tasks and projects, able to work with the team, and manages tasks effectively and has a proven track record of consist and organized outputs. \r\n• The ideal candidate will demonstrate an eagerness to understand complex problems and requirements, an aptitude for translating these problems into workable designs and solutions, and will possess a keen eye for detail.\r\n

1. Provide Advanced Technical Support By Utilizing Nessus And Vapt Tools To Troubleshoot And Resolve Complex Security Incidents, Ensuring Adherence To Quality Standards And Regulatory Requirements.
2. Perform Detailed Root Cause Analysis On Escalated Incidents And Implement Robust Solutions To Address Technical And Security Issues, Enhancing The Overall Support Process.
3. Contribute To Knowledge Management By Updating The Knowledge Base And Conducting Training Sessions For New Team Members, Fostering A Culture Of Continuous Improvement.
4. Resolve Complex Support Tickets Within Agreed Slas While Collaborating With Cross-Functional Teams To Maintain Operational Efficiency And Strengthen Security Measures.
5. Ensure High Levels Of Customer Satisfaction And Csat By Achieving First Call Resolution, Minimizing Rejected Resolutions And Case Reopens, And Proactively Mitigating Security Threats.

Skill Requirements

Skills Required 4+ years’ for L2 8+ years for L3: Hands-on experience in 2 or more of the Vuln Assessment tools and Vuln. Lifecycle management\r\n• Tools: Qualys Guard, Nessus, Rapid 7, InsightVM, Balbix, Risk Sense, IBM APP Scan, Meta Sploit, Burp suite. VM Tool – Tenable experience is mandatory\r\n• Experience in Vulnerability Assessment and large scale security operations.\r\n• Responsible to maintain and enhance the daily operations of Security team providing 24/7 security support.\r\n• Responsible for Incident Validation, Incident Analysis, Solution Recommendation, Escalation resolution, Maintain Knowledge base, Patch implementation.\r\n• Responsible for closing incidents/reports.\r\n• Taking ownership and accountability of issue escalation from clients.\r\n• Continuous monitoring of vulnerability trends and metrics to assess the impact to platform and applications Security assurance (VM + Policy compliance scan + PT)\r\n• Development, revision, and maintenance of Standard Operating Procedures and other Operational Documents\r\n

1. Advanced Proficiency In Nessus And Vapt Tools For Vulnerability Assessment And Penetration Testing.
2. Strong Analytical And Problem-Solving Skills With The Ability To Perform Root Cause Analysis.
3. Excellent Communication Skills To Effectively Convey Technical Concepts To Non-Technical Stakeholders.
4. Familiarity With Quality Standards And Regulatory Compliance In The Support Operations Domain.

Other Requirements

Penetration Testing and Red Teaming\\r\\n

Shall have good verbal/written communication skills\r\n• Should be willing to work in 24x7 environments\r\n• From time to time travel opportunities may be assigned\r\n• Incumbent should carry continual system improvement mindset and able to demonstrate in work.\r\n• Client facing technical analysis report and presentation skills\r\n

1. Optional But Valuable Certifications: Certified Ethical Hacker (Ceh), Offensive Security Certified Professional (Oscp)