With a startup spirit and 115,000+ curious and courageous minds, we have the expertise to go deep with the world&rsquos biggest brands&mdashand we have fun doing it. We dream in digital, dare in reality, and reinvent the ways companies work to make an impact far bigger than just our bottom line. We&rsquore harnessing the power of technology and humanity to create meaningful transformation that moves us forward in our pursuit of a world that works better for people. Now, we&rsquore calling upon the thinkers and doers, those with a natural curiosity and a hunger to keep learning, keep growing., People who thrive on fearlessly experimenting, seizing opportunities, and pushing boundaries to turn our vision into reality. And as you help us create a better world, we will help you build your own intellectual firepower. Welcome to the relentless pursuit of better.

Welcome to the relentless pursuit of better.

Inviting applications for the role of Consultant, Vulnerability Management

Conduent is a business services firm with a focus on high-profile, high-threat private and public-sector customers who demand experience and proven security models to protect their data. We are seeking an experienced Vulnerability Management Analyst who has experience with vulnerability management across an enterprise. The Compliance Monitoring Center (CMC) focuses on helping the organization look deeper and see further into the security of the environment to help improve and embed controls across the company. The CMC will be responsible for evaluating evidence by combining advanced data analysis and technology tools to offer our clients a sustainable yet high quality and efficient approach to managing their compliance. The Vulnerability Management Analyst will be responsible for scoping, scheduling, scanning and remediating any vulnerabilities identified.Responsibilities

.Assist in the responsibility for the reviewing vulnerabilities%27 data from multiple sources (i.e. external / internal penetration testing, internal / external vulnerability scanning, etc.) across multiple technologies and a changing environment including infrastructure and applications to determine risk rating of vulnerabilities to business assets.

.Assist in improving and automating existing vulnerability management lifecycle. Including but not limited, data ingestion & normalization, compliance metrics and detections on assets.

.Assist in partnering with tools and technology teams to troubleshoot, develop, select, implement and automate appropriate security solutions to keep system data protected from internal and external threats.

.Assist in providing support and resolution for scanning and vulnerability remediation reporting issues.

.Assist in working with the Business to effectively communicate the risks of identified vulnerabilities and make recommendations regarding the selection of cost-effective security controls to mitigate identified risks.

.Stay current with vulnerability information across all the products in the Conduent environment.

.Provide technical support for vulnerability management projects.

.Provides analysis and validation post remediation, opportunities for improvements and out of the box thinking for optimizations and solving road blocks.

.Perform reoccurring and on demand scanning activities of both corporate and cloud environments utilizing enterprise platform.

.Assist in ensuring scan results are presented in appropriate dashboards, reports, and forwarded to other data systems as necessary.

.Assist in interfacing with third-party vendors and other Conduent organizations in improving the overall scanning process.

.Perform any other duties as assigned by Conduent management.Qualifications we seek in you!

Minimum Qualifications

.Bachelor%27s degree in Computer Science, Information Technology, Cyber Security, or related discipline.

Preferred Qualifications/ Skills

.Professional services with vulnerability management skills and compliance monitoring.

.Demonstrated experience leading cybersecurity vulnerability management and analysis.

.Strong working understanding of the Tenable IO and Security Center product line required.

.Understanding of a variety of technical concepts with focus on cloud computing, automation, networking, systems administration, application development, and information security best practices.

.Experience in vulnerability scanning, SEIM, penetration testing, network admission control, advanced malware protection and/or mobile device management.

.Experience in design, implementation and operations experience with security technologies that includes, but not limited to: IDS/IPS Firewalls Log Analysis and SIEM Network Behavior Analysis tools.

.Experience in IT controls monitoring for regulatory and compliance requirements like CIS, SOX, HIPAA, HITRUST, SSAE 16 – SOC 1 & SOC 2, PCI compliance – PCI DSS / PA-DSS, NIST, ISO 27001 & ISO 27002 is a plus.

.Flexibility to travel up to 20% or as required.

.IT Security Certifications such as Certified Vulnerability Assessor (CVA), Certified Ethical Hacker (CEH), CIPP (Certified Information Privacy Professional), CRISC (Certified in Risk and Information Systems Control), CISA (Certified Information System Auditor), CISSP (Certified Information Security Professional) or CISM (Certified Information Systems Manager) is a plus.

Genpact is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color, religion or belief, sex, age, national origin, citizenship status, marital status, military/veteran status, genetic information, sexual orientation, gender identity, physical or mental disability or any other characteristic protected by applicable laws. Genpact is committed to creating a dynamic work environment that values diversity and inclusion, respect and integrity, customer focus, and innovation. For more information, visit . Follow us on , , , and .

Furthermore, please do note that Genpact does not charge fees to process job applications and applicants are not required to pay to participate in our hiring process in any other way. Examples of such scams include purchasing a %27starter kit,%27 paying to apply, or purchasing equipment or training