Job Description

IT Vulnerability Remediation Specialist
Location India, Remote (Work from Anywhere in India)
Minimum Qualification Bachelor's Degree or relevant experience required
Indicative Experience 6+ Years
Domain Preferably Life-Sciences/Pharma.
Other benefits Health Insurance, Provident Fund, Life Insurance, Reimbursement of Certification
Expenses, Gratuity, 24x7 Health Desk



About Norstella At Norstella, our mission is simple: to help our clients bring life-saving therapies to market quicker--and help patients in need.
Founded in 2022, but with history going back to 1939, Norstella unites best-in-class brands to help clients navigate the complexities at each step of the drug development life cycle --and get the right treatments to the right patients at the right time.
Each organization (Citeline, Evaluate, MMIT, Panalgo, The Dedham Group) delivers must-have answers for critical strategic and commercial decision-making. Together, via our market-leading brands, we help our clients:
Citeline accelerate the drug development cycle
Evaluate bring the right drugs to market
MMIT identify barrier to patient access
Panalgo turn data into insight faster
The Dedham Group think strategically for specialty therapeutics



By combining the efforts of each organization under Norstella, we can offer an even wider breadth of expertise, cutting-edge data solutions and expert advisory services alongside advanced technologies such as real-world data, machine learning and predictive analytics.
As one of the largest global pharma intelligence solution providers, Norstella has a footprint across the globe with teams of experts delivering world class solutions in the USA, UK, The Netherlands, Japan, China and India.



The overall ITOps team deploys and maintains systems, hardware, software, and technology for all business units across the Norstella enterprise. Within that growing organization we are seeking a IT Vulnerability Remediation Specialist with experience in enterprise vulnerability assessment and management. This role will utilize expertise with information security to discover, analyze, and characterize risks to our network, applications, databases, and other components of our information system. The ideal applicant should be passionate about vulnerability and patch management and remediation, stay up to date on the latest technology and security best practices, and work well in a collaborative, technical team environment.
SCOPE OF ROLE: In this role as IT Vulnerability Remediation Specialist , you will work with the larger ITOps team and deliver exceptional support related to vulnerability management and remediation. Reporting to the VP of IT Operations, you will be responsible for managing the vulnerability management function and escalating issues and concerns where necessary. The role will require ongoing cross-functional work with InfoSec and other key teams.



These duties include but are not limited to: • Oversee the vulnerability management process and function
• Own and administer the patch management platform (Automox)
• Become a subject matter expert in vulnerability tooling and related scans
• Perform recurring and on-demand scanning of EUC and corporate infrastructure
• Create regular compliance reports and be comfortable reporting out to senior leaders
• Resolve vulnerabilities across the corporate enterprise, including targeted threats and internal incidents
• Maintain documentation regarding vulnerability threat management, including policies and procedures
• Assist technology teams to develop, implement, and automate security solutions
• Improve and automate existing vulnerability management systems
• Monitor intrusion detection systems to identify potential threats
• Research and assess emerging security threats and vulnerabilities
• Provide technical support for vulnerability management projects
• Communicate the risks of identified vulnerabilities and recommend security controls to mitigate them
• Help to train and mentor junior and/or cross-functional team members as the function grows
• Work closely with internal stakeholders and third-party vendors to complete projects
• Maintaining and implementing runbooks, automation and similar operational improvements
• Identifying trends in common issues and offer suggestions for mitigation
• Supporting integration projects and processes following corporate acquisitions
Propose solutions to address complex problems
•



Relevant Skills and Experiences: • 6+ years of experience in vulnerability management or compliance monitoring
• Experience operating in an IT security environment
• Expertise with patch remediation software, preferably Automox
• Experience in vulnerability scanning, penetration testing, network admission control, and/or SIEM
• Expertise in vulnerability data management and reporting process automation
• Experience in design and implementation of security technologies
• Experience with IT controls monitoring for regulatory and compliance requirements
• Experience with visualization tools
• In-depth knowledge of information security best practices
• Knowledge of technical concepts such as cloud computing, automation, networking, and application development
• Knowledge of scripting languages is highly beneficial
• Process Improvement and Automation
• Create Detailed Documentation, Provide Clear and Effective Communication
• Maintain Knowledge Base, Both for Internal Use (Teammates) and External Use (End Users)
• Able to deliver and participate in projects
• Experience with using a service desk system (ITSM Tool) i.e. ServiceNow
• Microsoft Windows/macOS
• Microsoft 365 Platform (Exchange, Teams, OneDrive, SharePoint, etc)
• Azure Platform (Azure AD, Azure Virtual Desktop, Intune, etc)