Wolters Kluwer India Private Limited Hiring For IT Security Analyst at Pune Full Time

Wolters Kluwer Global Business Services (GBS) is designed to provide services to the business units in the areas of technology, sourcing, procurement, legal, finance, and human resources. These global centers promote team collaboration using best practices around a specific focus area to drive results and enhance operational efficiencies. There is a constant endeavor to benchmark against best-in-class industry standards to improve the quality of deliverables, increase cost savings, enhance productivity and reduce time to market for products and applications.

We have an amazing opportunity for an IT Security Analyst (Vulnerability Management), available within our Global Business Services division! This position has been created due to growth! The IT Security Analyst (Vulnerability Management) will be an integral part of our Security Operations Center (SOC) and will be responsible for ensuring the operation and delivery of critical security services to protect and enhance the confidentiality, integrity, and availability of Wolters Kluwer assets. This position is remote.

As the IT Security Analyst (Vulnerability Management), you will assist in efforts to strengthen the secure configuration and hardening of systems within Wolters Kluwer. In this role, you will be required to demonstrate proficiency in systems configuration, data gathering and information synthesis in various areas of IT security including penetration testing. Your role will also include interfacing with and responding to internal business unit IT representatives and stakeholders at all levels during performance of your duties.

Responsibilities:

• Primarily responsible for scheduling, performing analysis, tracking output, delivery to stakeholders and tracking remediation of findings across the Vulnerability Management domain
• Conduct application security penetration testing to identify vulnerabilities and weaknesses in the organization’s systems and applications
• Analyze security breaches and recommend solutions to prevent future incidents
• Monitor and analyze security-related data to identify potential threats and vulnerabilities
• Develop and implement security policies and procedures in accordance with industry standards and best practices
• Provide guidance and direction to the organization on all matters related to security
• Responsible for ensuring the support of WK customers and stakeholders is performed at the highest level
• Ensures Secure Configuration efforts support WK strategic security goals to provide the broadest coverage and best support of other functional areas within the security organization
• Advises on technology solutions implementation, global security controls selection and monitoring/reporting of performance of same
• Provides input based on general policies and management guidance and recommends modifications to operating policies
• Completes work in accurate and adequate manner to meet Wolters Kluwer strategic security objectives
• Contributes to the tracking and reporting on divisional and business units metrics, results, data modelling, processing, calculating and transformation into meaningful metrics, key performance indicators (KPIs) and reports
• Assists with Secure Configuration finding remediation efforts to ensure WK assets are securely configured, patched within prescribed timelines and meet the highest levels of confidentiality, integrity and availability
• Responds to audit and regulatory inquiries and external vendor activities to help represent the company from an information security perspective
• Responsible for working with business units to understand and properly address system configuration issues in accordance with established best practices.
• Assists customer Business Units and other GBS organizations for system security and hardening concerns.
• Ensures work is compliant with WK enterprise policies, procedures and the GIS strategic plan
• Assists in the operationalization of new solutions and technologies during transition to steady-state operations.
• Supports the investigation of reported security breaches and, as directed, implements improvements to secure configuration and hardening to respond to security incidents and assists with ongoing investigations and root cause analysis (RCA).
• Recommends best course of action based on solid security principles
• Responsible for ensuring knowledge of IT security and hardening best practices is current
• Responsible for reviewing threat intelligence sources is support of WK security situational awareness
• Responsible for developing vulnerability and threat-related communications for potential dissemination to warn WK employees of an emerging situation, focused on improving secure configuration and system hardening.

Other Duties

Performs other duties as assigned by supervisor

Job Qualifications

Bachelor’s Degree in Computer Science/MIS or equivalent experience

• 3+ years of total experience in Information Technology
• 1+ years of professional experience in an information security function, including analyzing and applying information security risk management, and privacy practices
• Flexible working hours to support a global operation
• Required Interpersonal Skills
  • Excellent oral and written communication ability
  • Ability to present complex technical issues and findings to diverse audiences in both technical and non-technical parlance, both orally and in writing
  • Diplomacy in working with customers and stakeholders in other parts of the business
  • Ability to follow policy and procedure
  • Ability to work in a team and at times perform under stress
  • Demonstrate integrity in dealing with potentially sensitive data and restricted information
  • Exceptionally self-motivated with a superior analytical, evaluative, and problem-solving abilities
  • Ability to set and manage priorities judiciously
• Required Technical Skills
  • Knowledge of basic security principles to include confidentiality, integrity, and availability access control, authentication, and authorization privacy and non-repudiation
  • Strong understanding of security concepts and technologies, including encryption, firewalls, intrusion detection and prevention, and vulnerability management
  • Experience with penetration testing tools and methodologies
  • Understanding of security vulnerabilities and exposures, and from where they arise
  • Familiarity with the Internet, its network protocols, and network applications and services
  • Knowledge of network security issues and host/system security configuration and hardening
• Required System Security Skills
  • Through good communication and documentation, presents a consistent front to customers and stakeholders
  • Ability to synthesize data from technical skills listed above to understand and convey security best practices
  • Ability to utilize interpersonal skills listed above to communicate with customers and stakeholders and bring quick resolution
  • Demonstrated ability to analyze ongoing situations for the potential of a security incident
  • Ability to maintain inventory oversight in support of WK asset control requirements
  • Familiar with ITIL service management methodology.
• Strong technical skills in security assessments of external service providers and management of partner suppliers
• Preferred certifications: CISSP, ITILv3, CEH, OSCP

Travel requirements

• Occasional Domestic or International Travel as an when required

Physical Demands

Should be able to travel to office and support the work necessary to accomplish successful deliverables within the role. No heavy lifting of equipment is required for this role.