![JSC Bank of Georgia Logo](https://storage.hirehive.com/user/Company_8148/logo_1.png?sv=2024-05-04&st=2025-01-08T09%3A55%3A21Z&se=2025-04-08T09%3A55%3A21Z&sr=b&sp=r&rscd=inline%3Bfilename%3D"logo_1.png"&sig=ao0H%2BO9ht47DzPMyRP3AZNgSxCX2otpbxiDQAYgyHuk%3D){kind=logo}
Information Security Vulnerability Analyst
Company Description: JSC Bank of Georgia is a leading Commercial Bank. We are committed to delivering secure and reliable financial services/products to our customers. As part of our ongoing commitment to application security, we are seeking an Information Security Vulnerability Analyst to join our growing team.
Job Description: As an Information Security Vulnerability Analyst, you will play a crucial role in ensuring the security of the bank’s server infrastructure. You will work closely with the development and IT teams to identify, assess, and remediate server’s/application’s vulnerabilities. This is an excellent opportunity for a passionate individual who wants to kick-start their career in application security and grow their expertise in a dynamic environment.
Responsibilities:
Conduct comprehensive vulnerability assessments, including vulnerability scans, on the organization's networks, systems, and applications.
Analyze and interpret vulnerability scan results, identifying and prioritizing critical vulnerabilities.
Conduct in-depth research on newly discovered vulnerabilities and their potential impact on the organization's infrastructure.
Develop and implement strategies and techniques for vulnerability detection, exploitation, and mitigation.
Participate in threat modeling and risk assessment activities to identify and prioritize potential security risks.
Research and stay up-to-date with the latest application security trends, vulnerabilities, and attack techniques to proactively identify emerging risks.
Collaborate with cross-functional teams to ensure the timely remediation of identified vulnerabilities.
Develop and maintain vulnerability management processes, policies, and procedures.
Implement and maintain vulnerability scanning security tools and supplementary utilities.
Contribute to the development of security metrics and reporting mechanisms related to vulnerability management.
Qualifications:
Undergraduate/Graduate degree in Computer Science, Information Security, or a related field.
In-depth knowledge of network protocols, system architectures, and web application technologies.
Knowledge of industry standards and best practices (e.g., ISO 27K, NIST, CIS) would be a plus.
Familiarity with various operating systems (e.g., Windows, Linux, macOS) and their security configurations.
Understanding basics of Offensive security practices
Experience with vulnerability management tools and frameworks (e.g., Nessus, Metasploit, Burp Suite).
Understanding of security concepts such as cryptography, access controls, and secure coding practices.
Hands-on experience with scripting languages (e.g., Python, Bash, PowerShell) for automation and custom tool development.
Strong knowledge of CVSS Scoring System.
Good analytical and problem-solving skills.
Excellent communication and collaboration abilities to work effectively in a team environment.
Desired Skills:
Understanding basics of Offensive security practices.
Knowledge of industry standards and best practices (e.g., ISO 27K, NIST, CIS).
Relevant certifications (e.g.: Security+, CEH or GIAC).
Join our team and be part of an exciting journey to ensure the security of our applications and protect our customers' data. Apply now and contribute to making a positive impact on our organization's security posture. deadline is Jan 15 .