Vulnerability Management & AI Security Engineer

About the job

Job Title: Vulnerability Management & AI Security Engineer

Location: Bangalore/ Gurugram

Experience: 5-10 Years

About us

ConglomerateIT is a certified and a pioneer in providing premium end-to-end Global Workforce Solutions and IT Services to diverse clients across various domains. Visit us at http://www.conglomerateit.com

Our mission is to establish global cross culture human connections that further the careers of our employees and strengthen the businesses of our clients. We are driven to use the power of global network to connect business with the right people without bias. We provide Global Workforce Solutions with affability.

:

We are seeking a skilled professional to lead vulnerability assessments across cloud and on-premise environments, while also developing and integrating AI-driven solutions to automate the detection and remediation of security threats.

Key Responsibilities:

1. Vulnerability Assessment & Analysis

• Conduct thorough vulnerability scans and assessments across enterprise infrastructure and applications.
• Perform application security testing, including SAST, DAST, and IAST on web, mobile, and API platforms.
• Analyze and prioritize findings based on risk impact, CVSS scores, exploitability, and organizational context.
• Document and clearly communicate findings to relevant stakeholders, including developers, operations, and leadership.

2. Infrastructure Security

• Assess system configurations, network architecture, and access controls to identify potential weaknesses.
• Partner with infrastructure and DevOps teams to strengthen system security and enforce baseline configurations.
• Maintain continuous security posture monitoring through appropriate tools (e.g., SIEM, EDR).

3. Application Security

• Perform reviews of code repositories, CI/CD pipelines, and deployment procedures for vulnerabilities.
• Collaborate with development teams to apply secure coding practices and remediate issues.
• Integrate security checks within the SDLC and DevSecOps environments.

4. AI Integration for Automated Remediation

• Design AI/ML-based workflows to detect and classify vulnerabilities in real-time.
• Implement or integrate machine learning models capable of suggesting or automating remediation efforts.
• Work with AI and data science teams to continuously improve detection models using security feedback.
• Configure triggers and automation scripts for tasks such as patching, configuration enforcement, and access revocation.

5. Tooling & Automation

• Evaluate and deploy tools for scanning, monitoring, and remediation (e.g., Tenable, Qualys, Rapid7, GitHub Advanced Security).
• Integrate these tools with cloud-native services and AI frameworks for automated security workflows.
• Maintain dashboards and reports to track vulnerability metrics and remediation progress.

6. Compliance & Reporting

• Align security operations with regulatory and compliance frameworks (e.g., ISO 27001, SOC 2, NIST, GDPR).
• Prepare documentation for audits and external assessments.
• Generate both executive-level summaries and detailed technical reports based on analysis.

Preferred Skills & Qualifications:

• 5+ years of experience in cybersecurity roles focused on vulnerability management and application security.
• Proficiency with cloud platforms (AWS, Azure, or GCP) and containerized environments (Docker, Kubernetes).
• Strong scripting skills (Python, Bash, or PowerShell) for automation and tool integration.
• Familiarity with AI/ML concepts and tools such as TensorFlow or PyTorch.
• Hands-on experience with SOAR platforms and automated remediation tools.
• Strong analytical, problem-solving, and cross-functional communication skills.