Home
Communities
Companies
- Companies
  
  Discover best places to work
- Compare Companies
  
  Compare & find best workplace
- Add Office Photos
  
  Bring your workplace to life
- Add Company Benefits
  
  Highlight your company's perks
Reviews
- Company reviews
  
  Read reviews for 6L+ companies
- Write a review
  
  Rate your former or current company
Salaries
- Browse salaries
  
  Discover salaries for 6L+ companies
- Salary calculator
  
  Calculate your take home salary
- Are you paid fairly?
  
  Check your market value
- Share your salary
  
  Help other jobseekers
- Gratuity calculator
  
  Check your gratuity amount
- HRA calculator
  
  Check how much of your HRA is tax-free
- Salary hike calculator
  
  Check your salary hike
Interviews
- Company interviews
  
  Read interviews for 40K+ companies
- Campus placements
  
  Interviews questions for 2K+ colleges
- Share interview questions
  
  Contribute your interview questions
Jobs
Awards

WINNERS AWAITED!
- ABECA 2025
  
  WINNERS AWAITED!
  
  AmbitionBox Employee Choice Awards - 4th Edition
- ABECA 2024
  
  AmbitionBox Employee Choice Awards - 3rd Edition
- AmbitionBox Best Places to Work 2022
  
  2nd Edition
- AmbitionBox Best Places to Work 2021
  
  1st Edition

Add office photos

Engaged Employer

FactSet

Compare

3.9

based on 1.4k Reviews

49 FactSet Jobs

Cybersecurity Engineer - Vulnerability Management

FactSet Systems India Pvt Ltd

3.9

based on 1.4k Reviews

7-12 years

Hyderabad / Secunderabad

1 vacancy

Cybersecurity Engineer - Vulnerability Management

FactSet

posted 6d ago

Job Role Insights

Flexible timing

Key skills for the job

Data Analysis SQL Automation Testing Linux Administration PHP Windows System Administration

+ 4 more

Job Description

Responsibilities:

Identify potential risks, threats, vulnerabilities and exploits in systems and applications through vulnerability and compliance assessments, and penetration testing.
Define information security policies and standards that support OS Hardening and secure configurations.
Support the automation of security testing and more efficient discovery, tracking, and resolution of security vulnerabilities. Automate repetitive processes and improve operational efficiencies.
Support the writing and creation of vulnerability database queries and the presentation of vulnerability data in dashboarding technologies.
Generate detailed vulnerability reports for internal and external stakeholders.
Educate employees on applying updates and configuration best practices.

Job Requirements:

Bachelors or master s in Computer Science/Engineering/Security or related field
4+ years of relevant Security Engineering with a focus on Vulnerability Management, Penetration Testing or Security Assurance.
2+ years of experience with scripting/query languages such as SQL and Python.
Extensive understanding of vulnerability scanning tools Nexpose or Nessus and Wiz .
Working experience on Wiz Platform Administration Operations:
- Serve as the primary administrator for the Wiz platform, managing configurations, integrations, and updates.
- Develop and enhance dashboards, reports, and alerts within Wiz to provide actionable insights for stakeholders.
- Troubleshoot and resolve platform issues, ensuring its continuous availability and performance.
Detail-oriented and quality-driven with excellent communication and interpersonal skills
Knowledge of common operating system and common vulns and their potential impact, such as the Bluekeep, Spectre, WannaCry, Heartbleed, etc.
Strong understanding of network topology.
Experience with Windows and Linux.
Experience in security testing for cloud services (AWS, Azure) is a plus.
Relevant industry training and/or certification is a plus: CSSLP, CISSP, CEH, GPEN, CCNP
Ability to deliver quality results in high-pressure situations.
Ability to multi-task and manage demands of many projects, issues, and tasks.
Ability to perform duties with minimal supervision.

Tools and Capabilities:

Nexpose, Nessus, nmap, Metasploit
TCP/IP, HTTP(S), XMPP and DNS
Firewalls, IDS/IPS
MySQL, MSSQL, NoSQL
Perl, Python, Shell Script or PHP
Cloud Platforms (AWS, Azure)

Professional Position Overview:

The Vulnerability Management Security Engineer will be responsible for completing the following tasks:

Perform risk assessments and security testing as part of the Risk Management Framework (RMF) Assessment and Authorization (AA) Process.
Develop, document, and implement process changes that lead to improved efficiency and depth of assessments.
Demonstrated ability to conduct root cause analysis when identifying problems.
Proactively monitoring the security of an enterprise network.
Assessing security controls in accordance with security standards, frameworks, laws, and policies.
Collaborate with infrastructure, application, and cloud teams to ensure timely remediation of vulnerabilities.
Collaborate with cloud engineering teams to ensure best practices in cloud security.
Ability to interpret policies, procedures, standards, guidelines, and regulations to include National Institute of Standards and Technology (NIST) and Federal Information Security Management Act (FISMA).
Perform automated system security scans using Nessus.
Collect, track, and manage security artifacts and documentation.
Enhancing and maintaining existing scripts and managing the process of asset tracking and scanning in a localized database
Building out new capabilities related to asset management and tracking.
Reporting, including but not limited to:
- Draft, track and update technical reports.
- Creation and maintenance of reporting dashboards to assist teams and leadership.
- Organize, analyze, and develop detailed asset state and vulnerability reports.

The Cybersecurity Engineer in this position will spend 50% of their time providing vulnerability tracking and reporting. In this role you are expected to:

Conduct vulnerability scans at the network, operating system, database, and application levels on both internal and external systems within org s enterprise
Generate reports to inform and work with system owners / stakeholders about mitigation steps.
Create tickets to report (notify) and track mitigation.
Create exclusions in the vulnerability scanner.
Resolve tickets after findings have been mitigated.
Assist engineers with remediation recommendations needed to resolve identified vulnerabilities.
Assist in the implementation of security tools to security and development environments.

The Cybersecurity Engineer in this position will spend 40% of their time providing development and maintenance support of an internal, enhanced vulnerability database. In this role you are expected to:

Create automation scripts using the vulnerability management platform.
Architect scalable data analysis for assisting and influence engineers with remediation recommendations.
Create compelling and scalable reporting using the vulnerability information from the vulnerability management platform.
Create impactful tools for efficient triaging and resolving tickets.
Develop and implement automation to eliminate End of Life Systems in the organization.
Analyze the vulnerability findings along with asset information to create impactful decisions and reporting for senior leadership.

The Cybersecurity Engineer in this position will spend 10% of their time focused on process improvement initiatives. In this role you are expected to:

Identify situations where our program is not functioning as expected, EX: failed credentials.
Improve the report process through various means like data exportation or via dashboards.
Assist with the creation and maintenance of internal tools/scripts for security.
Facilitate educational opportunities for patching and configuration practices.
Continuously consider ways to improve the vulnerability management program and our processes.
Look for ways to streamline or improve the jobs of other teams at our org.

Employment Type: Full Time, Permanent

Read full job description

Prepare for Security Engineer roles with real interview advice

What people at FactSet are saying

What FactSet employees are saying about work life

based on 1.4k employees

59%

83%

74%

62%

Flexible timing

Monday to Friday

No travel

Day Shift

View more insights

Compare FactSet with

Thomson Reuters

4.1

Compare

Bloomberg

3.4

Compare

Morningstar

3.9

Compare

S&P Global

4.1

Compare

MSCI

3.9

Compare

Moody's

4.1

Compare

Fitch Ratings

4.9

Compare

Dun & Bradstreet

3.3

Compare

Wells Fargo

3.9

Compare

JPMorgan Chase & Co.

4.0

Compare

HSBC Group

4.0

Compare

Cholamandalam Investment & Finance

4.0

Compare

Citicorp

3.7

Compare

BNY

3.9

Compare

American Express

4.2

Compare

UBS

4.0

Compare

State Street Corporation

3.8

Compare

Motilal Oswal Financial Services

3.7

Compare

IDFC FIRST Bharat

4.5

Compare

HDFC Sales

4.0

Compare

Similar Jobs for you

Security Engineer at Tekfortune IT India Pvt Ltd

6-8 Yrs

₹ 20-35 LPA

Infrastructure Engineer at Epergne Solutions

10-12 Yrs

₹ 28-34 LPA

Vice President at Mashreq Bank

Bangalore / Bengaluru

10-15 Yrs

₹ 40-45 LPA

Senior Staff Engineer at Nagarro Software Pvt. Ltd

Remote

10-15 Yrs

₹ 30-33 LPA

Information Security Engineer Lead at 6d Technologies

5-12 Yrs

₹ 10-30 LPA

Security Engineer at Kiash Solutions LLp

7-15 Yrs

₹ 20-34 LPA

Security Manager at Siemens Limited

Bangalore / Bengaluru

10-15 Yrs

₹ 25-30 LPA

Servicenow Engineer at Luxoft

Pune

5-10 Yrs

₹ 20-30 LPA

Security Lead at Qylis Cloud Data & Cyber Security Services

Hyderabad / Secunderabad

10-20 Yrs

₹ 20-32.5 LPA

Security at Capgemini

Bangalore / Bengaluru

7-12 Yrs

₹ 27.5-40 LPA

FactSet Hyderabad / Secunderabad Office Location

View all

Hyderabad / Secunderabad (1)

Hyderabad Office

FactSet Systems India Pvt Ltd, 7th Floor, Block-4, DivyaSree NSL Infrastructure Pvt. Ltd., SEZ,Gachibowli, Hyderabad, Telangana Hyderabad
500032