NielsenIQ is maturing its Vulnerability Management programs and is recruiting a Cybersecurity Engineer who will be responsible for maintaining the tools, processes and procedures used to assess, track and remediate vulnerabilities across all environments including public cloud.  You will be supporting programs across all geographies and business units.  

As the Vulnerability Management Engineer, you will be responsible for maintaining the tools and technologies that discover, assess and categorize vulnerability data across endpoints, virtualized servers and cloud-based workloads including containers.  

This position will involve working closely with corporate IT, network / server infrastructure teams and the Governance Risk and Controls team to deploy an enterprise vulnerability management tool and patch lifecycle management.  

Engineer, Cyber - Vulnerability Management - Chennai, India

REFID753164

Responsibilities

• Manage, maintain, and tune the vulnerability management platform 
• Troubleshoot issues with asset discovery such as credentialed scanning, data quality, network discovery 
• Work with business application owners to understand patching exceptions requests 
• Prioritise and socialise vulnerabilities, understanding how associated risks can change based on the business environment 
• Work with internal teams throughout the vulnerability management lifecycle to confirm system patching and vulnerability management is effective 
• Work with the infrastructure team to define vulnerability management in cloud-based systems e.g. agent vs agentless deployment 
• Work with the Security Operations Center for the identification and remediation of critical and 0-day vulnerabilities  
• Partner with the threat intelligence teams to identify shadow IT and create a remediation plan for those systems 
• Provide KPIs, OKRs and other security metrics to support scheduled and adhoc reporting activities 
• Take ownership of additional duties as required 
• Participate in on-call rota  

• A security mindset – always looking for the weaknesses in existing systems 
• At least three years working in a vulnerability management or similar role with any relevant courses or qualifications desirable but not required  
• Experience with sophisticated cybercrime including knowledge of sophisticated hacking techniques, malicious actors, IOCs, TTPs and the ability to translate intelligence into action is highly desirable 
• Experience working with and securing enterprise technologies including Linux, infrastructure administration, understanding of networking, containers, virtualization, secrets management, orchestration, authentication, SSO, MFA, federation in multi-cloud environments, passwordless, zero trust architecture 
• Experience with Vulnerability management tools such as Tanium Comply, Rapid7, Tenable or Qualys 
• Experience with networking, common architectures and how this effects vulnerability management 
• Knowledge of scripting languages such as Powershell or Python would be desirable 
• Ability to manipulate large datasets using tools such as Splunk, PowerBI, SQL  
• Knowledge of MITRE ATT&CK framework  
• Demonstrated engagement in security conferences, training, learning, associations are highly desired and fully supported 
• Ability to work independently on defined tasks and can be relied upon to deliver high quality results 
• Demonstrable problem solving, analytical skills and attention to detail 
• Ability to define problems, collect data, establish facts, carry out logical analysis, and draw valid conclusions. 
• Business and solution-oriented, global mindset of strategic orientation, with ability to act tactically as required. 
• Lifelong learner with endless curiosity 
• Good written and oral communication skills in English 
• Delivering good customer service 

• Enjoy a flexible and rewarding work environment with peer-to-peer recognition platforms. 
• Recharge and revitalize with help of wellness plans made for you and your family. 
• Plan your future with financial wellness tools. 
• Stay relevant and upskill yourself with career development opportunities

About NIQ

NIQ is the world’s leading consumer intelligence company, delivering the most complete understanding of consumer buying behavior and revealing new pathways to growth. In 2023, NIQ combined with GfK, bringing together the two industry leaders with unparalleled global reach. With a holistic retail read and the most comprehensive consumer insights—delivered with advanced analytics through state-of-the-art platforms—NIQ delivers the Full View™.

NIQ, is an Advent International portfolio company with operations in 100+ markets, covering more than 90% of the world’s population. For more information, visit NIQ.com.

Want to keep up with our latest updates?

Follow us on: LinkedIn | Instagram | Twitter | Facebook

Our commitment to Diversity, Equity, and Inclusion

NIQ is committed to reflecting the diversity of the clients, communities, and markets we measure within our own workforce. We exist to count everyone and are on a mission to systematically embed inclusion and diversity into all aspects of our workforce, measurement, and products. We enthusiastically invite candidates who share that mission to join us.

We are proud to be an Equal Opportunity/Affirmative Action-Employer, making decisions without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability status, age, marital status, protected veteran status or any other protected class. Our global non-discrimination policy covers these protected classes in every market in which we do business worldwide.

Learn more about how we are driving diversity and inclusion in everything we do by visiting the NielsenIQ News Center: https://nielseniq.com/global/en/news-center/diversity-inclusion/

NIQ or any of our subsidiaries will never ask you for money at any point of the recruitment or onboarding process.