Analyst Vulnerability Management
Apply now »Date: 7 Jul 2026
Location: Bangalore, KA, IN
Company: Alstom
At Alstom, we understand transport networks and what moves people. From high-speed trains, metros, monorails, and trams, to turnkey systems, services, infrastructure, signalling and digital mobility, we offer our diverse customers the broadest portfolio in the industry. Every day, 80,000 colleagues lead the way to greener and smarter mobility worldwide, connecting cities as we reduce carbon and replace cars.
Could you be the full-time Analyst Vulnerability Management in Bangalore we’re looking for?
Your future role
Take on a new challenge and apply your cybersecurity expertise in a cutting-edge field. You’ll work alongside collaborative and innovative teammates.
You'll play a crucial role in safeguarding Alstom’s digital assets by identifying, assessing, and mitigating security risks. Day-to-day, you’ll work closely with teams across the business (infrastructure, application owners, and external partners), analyze threat intelligence reports, and design actionable security dashboards, among other responsibilities.
You’ll specifically take care of vulnerability assessments and penetration testing, but also implement Secure SDLC (Software Development Life Cycle) programs.
We’ll look to you for:
-
Monitoring new and emerging threats and vulnerabilities, verifying their applicability, and initiating remediation activities.
-
Scheduling and managing penetration testing activities, analyzing results, and engaging stakeholders for remediation.
-
Analyzing assessment reports from vendors and resolving issues within defined SLAs.
-
Removing false positives in assessment reports and providing guidance on remediation plans.
-
Designing and delivering actionable information security dashboards and metrics programs.
-
Creating awareness across the organization about good security practices and the benefits of Secure SDLC programs.
All about you
We value passion and attitude over experience. That’s why we don’t expect you to have every single skill. Instead, we’ve listed some that we think will help you succeed and grow in this role:
-
Bachelor’s/Master’s degree in Engineering/Technology or a related field.
-
6-8 years of relevant IT experience.
-
Professional certifications such as CISSP, CEH, GPEN, or OSCP.
-
Experience or understanding of threat modeling, systems hardening, and Secure SDLC programs.
-
Knowledge of penetration testing methodologies (e.g., OWASP, OSSTMM, PCIDSS) and tools like Qualys, Veracode, Nessus, and AppScan.
-
Familiarity with TCP/IP stack, OSI layers, middleware, and mobile technologies.
-
Strong analytical skills with demonstrated problem-solving ability.
-
Ability to develop custom scripts for vulnerability detection and response.
-
Experience in creating processes within a complex multivendor ecosystem.
-
Proven planning, prioritization, and organizational skills.
-
Professional and concise communication (written and verbal).
Things you’ll enjoy
Join us on a life-long transformative journey – the rail industry is here to stay, so you can grow and develop new skills and experiences throughout your career. You’ll also:
-
Enjoy stability, challenges, and a long-term career free from boring daily routines.
-
Work with new security standards for rail signalling.
-
Collaborate with transverse teams and helpful colleagues.
-
Contribute to innovative projects.
-
Utilise our flexible and inclusive working environment.
-
Steer your career in whatever direction you choose across functions and countries.
-
Benefit from our investment in your development, through award-winning learning.
-
Progress towards leadership roles or specialized cybersecurity expertise.
-
Benefit from a fair and dynamic reward package that recognizes your performance and potential, plus comprehensive and competitive social coverage (life, medical, pension).
You don’t need to be a train enthusiast to thrive with us. We guarantee that when you step onto one of our trains with your friends or family, you’ll be proud. If you’re up for the challenge, we’d love to hear from you!
Important to note
As a global business, we’re an equal-opportunity employer that celebrates diversity across the 63 countries we operate in. We’re committed to creating an inclusive workplace for everyone.
Job Segment:
Testing, Information Security, Middleware, Manager, Technology, Management