Vulnerability Assessor - Remote Opportunity

About the Role

Join our team as a Vulnerability Assessor remote position where you will play a crucial role in enhancing our cybersecurity posture. This is an exciting opportunity to work with NTT DATA, one of the world's largest global security service providers, and contribute to protecting our clients' assets.

What You'll Do

• Conduct vulnerability assessments using tools like Nessus, Qualys, Rapid7, and OpenVAS.
• Perform manual validation of automated scan results to eliminate false positives.
• Analyze vulnerabilities to assess exploitability and business impact.
• Create detailed reports with actionable remediation guidance.
• Evaluate vulnerabilities using CVSS scoring and business context.
• Prioritize remediation efforts based on risk exposure and asset criticality.
• Collaborate with threat intelligence teams to incorporate emerging threat data.
• Work with IT teams to develop and implement remediation strategies.
• Provide technical guidance on mitigation techniques and validate fixes.
• Maintain up-to-date vulnerability databases and track remediation progress.
• Support compliance initiatives, including PCI and regulatory audits.
• Prepare executive and technical reports on vulnerability posture.
• Stay informed about emerging vulnerabilities and attack techniques.
• Evaluate and recommend new vulnerability assessment tools and methodologies.
• Contribute to knowledge sharing and best practices within the team.

Requirements

• Bachelor’s degree in Cybersecurity, Computer Science, IT, or related field (or equivalent experience).
• Minimum 1–3 years of experience in cybersecurity or IT security roles.
• Proficiency with vulnerability scanning tools (e.g., Nessus, Qualys, Rapid7, OpenVAS).
• Strong understanding of common vulnerabilities (e.g., OWASP Top 10, SANS Top 25).
• Knowledge of network protocols, operating systems, and application security.
• Experience with scripting languages (Python, PowerShell, Bash) for automation.
• Familiarity with CVSS scoring and risk assessment frameworks.
• Strong analytical and problem-solving abilities.
• Excellent written and verbal communication skills.

Nice to Have

• Direct experience working in government, military, or intelligence organizations.
• CREST Practitioner Security Analyst (CPSA), CEH, GCIH, Security+, or equivalent certifications.
• Vendor-specific certifications (e.g., Nessus, Qualys).

What We Offer

• New beginnings can be a challenge. We promise a smooth integration and a supportive mentor.
• Pick your working style: choose from Remote, Hybrid or Office work opportunities.
• Early bird or night owl? Our projects have different working hours to suit your needs.
• Sharpen your tech skills with our sponsored certifications, trainings and top e-learning platforms.
• Enjoy our Private Health Insurance – it’s custom-made for you.
• Attend individual coaching sessions or join our accredited Coaching School.
• Participate in our epic parties or themed events designed for our people and their families.