IT Security Specialist - Vulnerability Management (3-6 yrs)

Position : IT Security Specialist - AMEA IT SWAT.

Location : Gurugram, India.

Job Type : Contract for 1 year +.

About Us :

Securitas IT in AMEA delivers IT services across 12 countries in Africa, the Middle East, and Asia Pacific. We prioritize a client-centric, data-driven, and people-focused strategy to build, protect, and transform our IT landscape in a professional and cost-efficient manner.

As part of the IT SWAT team, your mission is to safeguard the IT environment from digital security threats. You will work collaboratively with the Global CERT, local IT teams, and divisional IT asset/service managers.

This role requires a balance of technical expertise, problem-solving, and effective communication to guide teams toward a security-first posture.

Key Responsibilities :

Vulnerability Management :

- Lead vulnerability validation and remediation efforts.

- Define actionable work packages for IT teams and track the implementation of security controls.

- Automate workflows for control monitoring and reporting.

Log Collection and Analysis :

- Develop processes for efficient log collection, analysis, and threat detection.

- Use tools for log correlation and incident diagnostics.

Cyber Risk Evaluation :

- Conduct cyber risk assessments, prioritize risks, and recommend remediation strategies.

- Perform root cause analysis and risk impact assessments.

Incident Response Management :

- Define and communicate a robust cyber incident response strategy.

- Collaborate with teams to ensure readiness for incident handling and recovery.

Training & Awareness :

- Build cyber awareness programs for IT and management teams.

- Conduct workshops and training sessions on security best practices.

Security Design & Implementation :

- Support solution design phases with a security-first approach.

- Implement security controls when necessary.

Key Skills and Qualifications :

Technical Skills :

- Proven expertise in vulnerability management, including validation, prioritization, and remediation.

- Strong knowledge of log collection, correlation, and analysis tools (i.e., Splunk, ELK stack).

- Hands-on experience with scripting languages such as PowerShell and Python.

- Familiarity with cyber risk evaluation frameworks (i.e., NIST, ISO 27001).

- Experience in designing and implementing cyber incident response strategies.

Soft Skills :

- Communication: Ability to explain technical concepts clearly to non-technical stakeholders.

- Collaboration: Work effectively with global and local teams, including senior management.

- Problem-Solving: Pragmatic approach to solving security challenges under time constraints.

Certifications (Preferred) :

- CISSP, CEH, CISM, or equivalent cybersecurity certifications.