Job Information
Gap Inc. Infosec Engineer in Hyderabad, India
About Gap Inc.
Our past is full of iconic moments — but our future is going to spark many more. Our brands — Gap, Banana Republic, Old Navy and Athleta — have dressed people from all walks of life and all kinds of families, all over the world, for every occasion for more than 50 years.
But we’re more than the clothes that we make. We know that business can and should be a force for good, and it’s why we work hard to make product that makes people feel good, inside and out. It’s why we’re committed to giving back to the communities where we live and work. If you're one of the super-talented who thrive on change, aren't afraid to take risks and love to make a difference, come grow with us.
About the Role
In this role you will be part of the Defensive Engineering team within Enterprise Security. Defensive Engineering comprises of Endpoint Protection, Vulnerability Management & Attack Surface Management is responsible to upkeep the security state of all the assets within the organization. You will build relationships and collaborate with senior members of technical and product teams to understand the technical & business context around applications and processes and influence decisions around improving the security state of the estate
What You'll Do
Coordinate internally within Defensive Engineering & develop a mitigation plan for TTP’s, IOC’s & Threat Advisories
Review Vulnerability information from multiple data sources to determine risk rating to organization assets
Analyze & Report Vulnerabilities to multiple stakeholders for remediation purposes
Partner with Product, Information Security & Patching teams in investigation & Response of Critical Incidents
Supports Compliance & Risk Management activities by flagging risks associated with Obsolete OS/Software
Ensure Rapid Response processes are rehearsed & kept up to date to handle any Zero Day Vulnerabilities or real time attacks
Maintain strong partnerships with people to drive end to end Vulnerability Management program
Monitor Organization Network for any potential Zero Day Vulnerabilities/Exploits
Provide support in resolving Vulnerability Scanning & Reporting issues
Perform continuous periodic scans across the estate to identify known & unknown vulnerabilities
Publish monthly Vulnerability Management bulletin to InfoSec Leadership
Who You Are
Bachelor s degree in related filed, to include computer science, or equivalent combination of education and experience
3+ years of directly related experience as a Vulnerability Management SME or similar role
Technical Knowledge of other security technologies like EDR, SIEM, OS Hardening
Proven understanding of Common Vulnerability Frameworks (CVE, CVSS, OWASP Top 10)
Preferred Scripting or Programming experience
Benefits at Gap Inc.
One of the most competitive paid time off plans in the industry
Comprehensive health coverage for employees, same-sex partners and their families
Health and wellness program: free annual health check-ups, fitness center and Employee Assistance Program
Comprehensive benefits to support the journey of parenthood
Retirement planning assistance
See more (https://corporate.gapinc.com/en-in/careers/gap-inc-benefits) of the benefits we offer.
Gap Inc. is an equal-opportunity employer and is committed to providing a workplace free from harassment and discrimination. We are committed to recruiting, hiring, training and promoting qualified people of all backgrounds, and make all employment decisions without regard to any protected status. We have received numerous awards for our long-held commitment to equality and will continue to foster a diverse and inclusive environment of belonging. In 2022, we were recognized by Forbes as one of the World's Best Employers and one of the Best Employers for Diversity.
Gap Inc.
- Gap Inc. Jobs