Security Analyst- VM Qualys

Wipro Technologies
Charing Cross, United Kingdom
4 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English

Job location

Charing Cross, United Kingdom

Tech stack

Microsoft Excel
Microsoft Windows
Amazon Web Services (AWS)
JIRA
Azure
Bash
Cloud Computing
Linux
Python
Networking Basics
Powershell
Power BI
Cloud Services
Security Information and Event Management
TCP/IP
Software Vulnerability Management
Data Processing
Firewalls (Computer Science)
Nessus
Tools for Reporting
CIS Benchmarks
Network Server
Api Management
Qualys
ServiceNow
Vulnerability Analysis

Job description

We are looking for a hands-on Vulnerability Management professional with strong operational experience on Qualys VM / VMDR to support BAU vulnerability operations for large enterprise environments.

The role is execution-heavy and requires day-to-day ownership of scanning, validation, remediation tracking, reporting, and stakeholder coordination, rather than advisory or governance-only work., * Perform authenticated and unauthenticated vulnerability scans using Qualys VM / VMDR across: *

  • Servers (Windows & Linux)
  • Network devices
  • Endpoints
  • Cloud workloads (AWS / Azure)

  • Manage asset discovery, tagging, and grouping within Qualys.

  • Configure and maintain scan profiles, schedules, and exclusions based on environment and risk.

  • Troubleshoot scan failures, authentication issues, and agent-related problems.

  • Analyze Qualys scan results and:

  • Validate true positives
  • Identify and eliminate false positives

  • Apply risk-based prioritization using CVSS, exploitability, asset criticality, and threat context.

  • Track zero-day and high-severity vulnerabilities and support expedited remediation

  • Create, track, and manage remediation tickets using:

  • ServiceNow / Jira or equivalent ITSM tools
  • Work closely with:
  • Infrastructure teams
  • Application owners
  • Cloud and platform teams

  • Follow up on remediation SLAs and perform re-scans to confirm closure

  • Prepare and publish:

  • Weekly / Monthly vulnerability reports
  • Executive summaries and dashboards
  • Support compliance and audit requirements (ISO 27001, CIS benchmarks, etc.).
  • Maintain SOPs, runbooks, and BAU documentation.

Tooling & Automation (Good to Have)

  • Support Qualys API integrations with ServiceNow, SIEM, or reporting tools.
  • Basic scripting exposure (Python / PowerShell / Bash) for automation and data handling.

Requirements

  • Strong hands-on experience with Qualys VM / Qualys VMDR (mandatory)
  • Solid understanding of:Vulnerability lifecycle (identify assess remediate
  • validate)
  • CVE, CVSS, exploitability, patching concepts
  • Experience with:
  • Windows & Linux OS
  • Networking fundamentals (TCP/IP, ports, firewalls)
  • Exposure to cloud vulnerability scanning (AWS / Azure) is highly desirable.

Tools & Platforms

  • Qualys VM / VMDR
  • ITSM tools: ServiceNow / Jira
  • Supporting tools: Nessus / Rapid7 (good to have, not mandatory)
  • Reporting tools: Excel / Power BI (basic to intermediate)

Preferred / Nice to Have

  • Experience in managed security services
  • Exposure to:
  • Policy compliance scanning
  • Cloud posture / infrastructure security
  • Certifications (preferred, not mandatory):
  • Qualys certificationCEH / Security+ / ISO 27001 awareness

Apply for this position