Info Security Analyst

Tata Consultancy Services Limited
Irving, United States of America
19 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Intermediate
Compensation
$ 100K

Job location

Irving, United States of America

Tech stack

Microsoft Windows
Computer Security
Databases
Linux
Software Vulnerability Management
Patch Management
Qualys
Vulnerability Analysis

Job description

We are seeking a skilled Information Security Analyst to support enterprise security operations with a strong focus on vulnerability management, patching, and risk remediation. The ideal candidate will work closely with engineering and infrastructure teams to proactively identify, analyze, and mitigate security risks while improving operational efficiency through automation and metrics-driven reporting. Key Responsibilities Vulnerability & Patch Management

  • Manage the vulnerability remediation lifecycle, ensuring timely patching and mitigation across servers, applications, databases, and endpoints.

  • Analyze vulnerability scan results, prioritize remediation based on risk, and track fixes through closure.

  • Collaborate on patch deployments, addressing failures, system dependencies, and post-deployment validation.

Security Risk & Incident Support

  • Partner with engineering, infrastructure, and application teams to identify and mitigate security risks.

  • Conduct root cause analysis (RCA) for security incidents and recurring vulnerabilities, driving permanent fixes.

  • Assist in security incident response activities and remediation recommendations as needed.

Automation & Process Improvement

  • Identify opportunities to automate repetitive security and operational processes, improving efficiency and consistency.

  • Support continuous improvement of remediation workflows, escalation processes, and SLAs.

Metrics, Reporting & Governance

  • Maintain vulnerability metrics, dashboards, and reports to track remediation status, aging vulnerabilities, and compliance.

  • Provide regular status updates to security leadership and technology stakeholders.

  • Support audit, risk, and compliance activities related to vulnerability management.

Collaboration & Communication

  • Act as a liaison between security and technology teams to ensure smooth remediation execution.

  • Clearly communicate technical risks, remediation plans, and timelines to diverse stakeholders.

Requirements

  • 4-10 years of experience in Information Security, Cybersecurity, or IT Risk Management.

  • Hands-on experience with vulnerability management tools (e.g., Qualys, Tenable, Rapid7).

  • Strong understanding of patch management processes across Windows, Linux, and application environments.

  • Experience performing root cause analysis and implementing corrective actions.

  • Strong analytical, problem-solving, and documentation skills.

Apply for this position