Persistent Systems
Website:
persistent.com
Job details:
About Position:
The Senior VMPT Specialist will lead day-to-day vulnerability management and application security testing activities for the customer environment.
- Role: Vulnerability Management Analyst - Tanium
- Location: All Persistent Locations
- Experience: 5 to 10Years
- Job Type: Full Time Employment
What You'll Do:
- The role requires deep hands-on experience with Tanium for endpoint vulnerability management and Invicti for web application and API security scanning, along with practical pentest knowledge to validate findings, guide remediation, and support risk-based prioritization.
- The specialist will manage scan coverage, vulnerability triage, SLA tracking, exception governance, retesting, dashboards, and evidence packs while working closely with endpoint, server, cloud, application, SOC, GRC, and audit stakeholders.
Expertise You'll Bring:
- Strong hands-on Tanium experience, especially Comply, Asset, Discover, Interact, and Connect in an enterprise environment.
- Hands-on Invicti or Netsparker experience for web application and API vulnerability scanning, target onboarding, authenticated scanning, scan troubleshooting, and report interpretation.
- Strong vulnerability management fundamentals across CVE, CVSS, CISA KEV, exploitability, EPSS, asset criticality, remediation SLAs, exceptions, and risk acceptance.
- Practical AppSec and web/API pentest knowledge, including OWASP Top 10, authentication/session issues, injection, access control, SSRF, XSS, insecure configuration, and evidence validation.
- Experience with Jira or equivalent ITSM tooling for vulnerability tickets, ownership routing, remediation tracking, retesting, and closure evidence.
- Ability to validate vulnerability data quality across Tanium, Splunk/SIEM dashboards, CMDB, and Jira, including deduplication and stale-data investigation.
- Experience producing operational and executive reports with meaningful metrics: coverage, open risk, aged risk, SLA breach, KEV exposure, exception status, and remediation trend.
- Strong stakeholder management, communication, documentation, and escalation skills.
- Lead vulnerability review discussions with infrastructure, application, cloud, SOC, GRC, audit, and customer leadership stakeholders.
- Define and improve SOPs, runbooks, RACI, intake checklists, exception templates, scan rules, reporting packs, and evidence collection processes.
- Perform secure design reviews and threat modeling support for new applications, integrations, or regulated workloads when required by the AppSec program.
Benefits:
- Competitive salary and benefits package
- Culture focused on talent development with quarterly growth opportunities and company-sponsored higher education and certifications
- Opportunity to work with cutting-edge technologies
- Employee engagement initiatives such as project parties, flexible work hours, and Long Service awards
- Annual health check-ups
- Insurance coverage: group term life, personal accident, and Mediclaim hospitalization for self, spouse, two children, and parents
Values-Driven, People-Centric & Inclusive Work Environment:
Persistent is dedicated to fostering diversity and inclusion in the workplace. We invite applications from all qualified individuals, including those with disabilities, and regardless of gender or gender preference. We welcome diverse candidates from all backgrounds.
- We support hybrid work and flexible hours to fit diverse lifestyles.
- Our office is accessibility-friendly, with ergonomic setups and assistive technologies to support employees with physical disabilities.
- If you are a person with disabilities and have specific requirements, please inform us during the application process or at any time during your employment
Let's unleash your full potential at Persistent - persistent.com/careers
"Persistent is an Equal Opportunity Employer and prohibits discrimination and harassment of any kind."
Click on Apply to know more.