VA / MBSS Lead
- Identification of the VA Inventory
- Identification of the assets/node details for VA activity
- Transition of Vulnerability Management process followed at Customer to Nokia Team
- Identification of the respective owners managing different IPs as per circle wise, technology wise and department wise
- Reporting of the VA issues to the respective owners
- Recommendation for Vulnerability closure
- Tracking vulnerability closure within timelines
- Finalizing the unique Node details (Make/Model/OS details)
- Creating Telecom Network elements MBSS for unique node type
- Establishing MBSS automation process
- Running compliance scan periodically
- Reporting of the MBSS control issues to the respective owners
- Project Management
- Vulnerability Assessment
- Wireless Security Assessment
- Configuration Review
- False positive detection
- Good communication skills in order to drive the various operationally required communication processes within the VM Security Infrastructure
- Familiarity with class of vulnerability
- Core competencies, knowledge and experience:
- 5+ years relevant experience invulnerability scanner management & Vulnerability assessment and Telecom Security
- Must have skill set in using tools like RAPID 7 Nexpose & Tripwire scanner management and security scanning
- Industry recognized security certifications like CEH - Ethical Hacking Certification
- Experience in few of the technologies Qualys, Retina, ACUNETIX, Nessus, Open VAS - scanning tools, Penetration testing tools, Metaspolit framework, NMAP, Nagios
- Knowledge on OWASP, Sandbox, Kali Linux, Burp suite, CVE, SSL PKI,2FA, IAM, Perimeter security, SIEM solutions.
- Experience in compiling VAPT reports, penetration testing test environments
- Not mandatory but good to have knowledge on penetration testing and tools
- Must have technical / professional qualifications in Telecom Domain :
- Degree in Computer Science/ Information Technology/ Telecommunication Engineering or similar
- Prior experience as VAPT operations /engineering and Telcom Security
- Prior experience in Vulnerability scanner management, Vulnerability assessment.
- Good knowledge in Networking and security concepts
- A reputation for self-motivation, integrity, cultural sensitivity and strong interpersonal skills
- Telecom security expertise for 2G/3G/4G/5G technologies
- Telecom network secure Design & architecture review
- Expertise in Minimum Baseline security standard of Telecom equipment's
- Security testing’s experience; VAPT - Telecom Components , Application Security Testing, Configuration Review
- Core competencies, knowledge and experience:
- Must have technical / professional qualifications in Telecom Domain :
- Experience in performing network design review
- Experience in designing MBSS controls/documents
- Must have assessed varieties of Telecom Network Elements across major domain e.g. Packet Core, Mobile Core etc. domain
- Good knowledge of core telecom protocols and its related security features (SS7/DIAMETER/GTP etc.)
- Must have experience with different Operator and OEM network elements
- Experience in compiling compliance reports of MBSS and various other assessments e.g. VAPT reports, penetration testing test environments