Apply now »

Associate Lead Consultant - Vulnerability Assessments Job

Date:  Jul 10, 2026
Job Requisition Id:  64855
Location: 

Bangalore, KA, IN Pune, MH, IN Pune, IN Hyderabad, IN Hyderabad, TG, IN

YASH Technologies is a leading technology integrator specializing in helping clients reimagine operating models, enhance competitiveness, optimize costs, foster exceptional stakeholder experiences, and drive business transformation.

 

At YASH, we’re a cluster of the brightest stars working with cutting-edge technologies. Our purpose is anchored in a single truth – bringing real positive changes in an increasingly virtual world and it drives us beyond generational gaps and disruptions of the future.

 

We are looking forward to hire Vulnerability Assessments Professionals in the following areas :

 

Preferred Qualifications 

 

  • The team members shall prepare the assessment plans, test cases, and test scenarios to perform the penetration testing. Experience in web application, infrastructure and network Vulnerability Assessment & Penetration Testing. 
  • Experience in Vulnerability Assessment and Penetration testing using industry standard tools such as Vulnerability Scanners for e.g.: Qualys, Nessus, Nexpose, Acunetix, Metasploit, Burp Suite Pro, Netsparker etc. 
  • Experience in using security frameworks such as Metasploit, Kali Linux, OSSTM etc. 
  • Experience and knowledge of Penetration testing of servers, and any assets (OS, infra & network). 
  • Experience and knowledge of Web Application Security standards such as OWASP/SANS etc. 
  • The Security Test Engineer should have the ability to stay organized and possess excellent communication skills. 
  • Experienced in preparing and presenting detailed penetration testing report.  
  • The security test engineer will be part of the audit team that shall conduct security audits for the clients to identify the gaps in terms of web security. 

 

Skills 

 

  • Support presales engagements by providing technical expertise in vulnerability management solutions, including solution design, client presentations, and proposal development.
  • Work closely with sales teams to articulate security value propositions, conduct client assessments, and recommend tailored solutions aligned with customer environments.
  • Contribute to RFP/RFI responses, solution documentation, and effort estimation for vulnerability management services.
  • Hands-on experience in conducting vulnerability assessments, including scanning, identification, and analysis of security weaknesses across systems and networks.
  • Evaluate the effectiveness and robustness of security architectures and designs, ensuring alignment with industry best practices.
  • Proficient in leveraging network and security analysis tools to identify, assess, and validate vulnerabilities.
  • Maintain up-to-date awareness of vulnerabilities, including exploit complexity, exploit availability, and real-world feasibility.
  • Recommend and implement risk-based remediation strategies to reduce vulnerabilities and minimize impact on business-critical assets.
  • Develop and present vulnerability metrics, dashboards, and executive reports to provide actionable insights and track remediation progress.
  • Strong understanding of enterprise security policies, standards, and frameworks, particularly related to vulnerability assessment and penetration testing.
  • Collaborate with stakeholders to prioritize and coordinate vulnerability remediation efforts based on business risk.
  • Continuously monitor publicly disclosed vulnerabilities (CVEs), threat intelligence sources, and emerging risks.
  • Translate business requirements into effective security solutions, balancing risk, compliance, and operational needs.
  • Engage cross-functional teams to drive remediation, track risk mitigation activities, and manage dependencies effectively.

 

Working Knowledge 

 

  • Cybersecurity principles 
  • Security source code review vulnerabilities  
  • Cyber threats and vulnerabilities 
  • System and application security threats and vulnerabilities 
  • General attack stages (e.g.: foot printing and scanning, enumeration, gaining access) 
  • Escalation or privileges, maintaining access, network exploitation, covering tracks) 
  • Ethical hacking principles and techniques; penetration testing principles, tools, and techniques. 
  • Use of penetration testing tools and techniques and social engineering techniques 
  • Ability to effectively prioritize and execute tasks in a high-pressure environment. 
  • Must be adaptable to changes in the work environment, comfortable with multiple competing demands and able to deal with frequent change, delays or unexpected events in a calm and logical manner. 

 

Minimum qualifications 

  • Bachelor's degree or equivalent practical experience. 
  • 8-12 years of relevant work experience within areas of Vulnerability Management / operations and deployment. 
  • Previous experience with systems administration and/or programming. 
  • Mandatory certifications:  Qualys Certified Mandatory 
  • Offensive Security Certified Professional (OSCP) 

 

At YASH, you are empowered to create a career that will take you to where you want to go while working in an inclusive team environment. We leverage career-oriented skilling models and optimize our collective intelligence aided with technology for continuous learning, unlearning, and relearning at a rapid pace and scale.

 

Our Hyperlearning workplace is grounded upon four principles

  • Flexible work arrangements, Free spirit, and emotional positivity
  • Agile self-determination, trust, transparency, and open collaboration
  • All Support needed for the realization of business goals,
  • Stable employment with a great atmosphere and ethical corporate culture

Apply now »