Specialist - Cyber Threat Intelligence and Vulnerable Management

Company:

Marsh Corporate

Description:

We are seeking a talented individual to join our GIS team at Marsh. This role will be based in Gurgaon. This is a hybrid role that has a requirement of working at least three days a week in the office. 

Specialist - Cyber Security and Incident Response

We will count on you to: 

• We are seeking a highly skilled cybersecurity professional with strong hands-on experience in Cyber Threat Intelligence (CTI) and advanced intelligence analysis capabilities, maintaining continuous awareness of global threat trends, actively exploited Known Exploited Vulnerabilities (KEVs), expert analyst in Common Vulnerabilities and Exposures (CVEs), and attacker tradecraft. This role will expertly identify, evaluate, and prioritize CVEs related to Out of Band Vulnerabilities (OOBV), partnering closely with the CTI team to deliver daily SNAP analysis for reporting that informs defensive controls and support the cybersecurity manager’s decision-making. The candidate will lead the full OOBV remediation lifecycle, coordinating with IT operations to ensure timely patching and effective mitigation while managing escalations with precision and professionalism. Key responsibilities include tracking KEVs, flagging OOBVs to management, leveraging real-time CTI for threat analysis and reporting, supporting manager with exploit defense vulnerability data for BCISO executive leadership weekly meetings, and assisting the manager on enterprise-level projects. Strong technical reporting, analytical problem-solving, and adherence to regulatory compliance are essential to strengthen the organization’s security posture.

What you need to have:

• Lead Cyber Threat Intelligence (CTI) Operations: Apply strong hands-on CTI expertise and advanced intelligence analysis skills to continuously monitor and interpret global threat trends, attacker tradecraft, and emerging vulnerabilities, ensuring proactive defense strategies.
• Partner with CTI Team for Daily SNAP Analysis: Collaborate closely with the CTI team to produce and validate daily SNAP reports, delivering actionable intelligence that informs defensive controls and supports cybersecurity management decision-making.
• Expert CVE Identification and Prioritization: Expertly identify, evaluate, and prioritize Common Vulnerabilities and Exposures (CVEs) to escalate for the Out of Band Vulnerabilities (OOBV) program, balancing risk, exploitability, and business impact to guide remediation efforts.
• Manage Known Exploited Vulnerabilities (KEVs): Track and analyze actively exploited KEVs real-time, ensuring rapid assessment and prioritization aligned with regulatory requirements and organizational risk appetite.
• Lead OOBV Remediation Lifecycle: Oversee the end-to-end OOBV remediation process, coordinating with IT operations and security teams to ensure timely patching, effective mitigation, and resolution of escalations with precision and professionalism. Responsible for analyzing and tracking remediation efforts to be reported to Executive Leadership Team (ELT).
• Flag Critical Vulnerabilities to Management: Proactively identify and escalate high-risk OOBVs and KEVs to senior management, ensuring visibility and prompt action on critical threats.
• Support BCISO Executive Leadership: Provide comprehensive exploit defense vulnerability data and CTI insights to support BCISO weekly executive leadership meetings, enabling informed risk management and strategic planning.

• Drive Real-Time Threat Analysis and Reporting: Leverage real-time CTI feeds and threat intelligence platforms to conduct in-depth analysis and generate clear, detailed technical reports that translate complex data into strategic insights.

What makes you stand out?

• Security Awareness and Training: Assist in developing and delivering training programs to educate colleagues about the importance of OOBV and threat management and vulnerability security best practices.
• Awareness Campaigns: Assist in developing and launch awareness campaigns to promote secure practices and vulnerability management, emphasizing the unique challenges of enterprise environments. Commitment to continuous learning and staying current with emerging threats, CVEs, and industry best practices.
• Cross Functional Collaboration: Provide development, BCISOs, operations, and support teams to ensure effective vulnerability management practices throughout all environments. Strong communication skills, capable of engaging with technical and non-technical stakeholders across multiple teams.

  Why join our team:

• We help you be your best through professional development opportunities, interesting work and supportive leaders.
• We foster a vibrant and inclusive culture where you can work with talented colleagues to create new solutions and have impact for colleagues, clients and communities.
• Our scale enables us to provide a range of career opportunities, as well as benefits and rewards to enhance your well-being.

Marsh (NYSE: MRSH) is a global leader in risk, reinsurance and capital, people and investments, and management consulting, advising clients in 130 countries. With annual revenue of over $24 billion and more than 90,000 colleagues, Marsh helps build the confidence to thrive through the power of perspective. For more information, visit corporate.marsh.com, or follow us on LinkedIn and X.

Marsh is committed to embracing a diverse, inclusive and flexible work environment. We aim to attract and retain the best people and embrace diversity of age, background, caste, disability, ethnic origin, family duties, gender orientation or expression, gender reassignment, marital status, nationality, parental status, personal or social status, political affiliation, race, religion and beliefs, sex/gender, sexual orientation or expression, skin color, or any other characteristic protected by applicable law.

Marsh is committed to hybrid work, which includes the flexibility of working remotely and the collaboration, connections and professional development benefits of working together in the office. All Marsh colleagues are expected to be in their local office or working onsite with clients at least three days per week. Office-based teams will identify at least one “anchor day” per week on which their full team will be together in person

Marsh (NYSE: MRSH) is a global leader in risk, reinsurance and capital, people and investments, and management consulting, advising clients in 130 countries. With annual revenue of over $27 billion and more than 95,000 colleagues, Marsh helps build the confidence to thrive through the power of perspective. For more information, visit corporate.marsh.com, or follow us on LinkedIn and X.

Marsh is committed to embracing a diverse, inclusive and flexible work environment. We aim to attract and retain the best people and embrace diversity of age, background, caste, disability, ethnic origin, family duties, gender orientation or expression, gender reassignment, marital status, nationality, parental status, personal or social status, political affiliation, race, religion and beliefs, sex/gender, sexual orientation or expression, skin color, or any other characteristic protected by applicable law.

Marsh is committed to hybrid work, which includes the flexibility of working remotely and the collaboration, connections and professional development benefits of working together in the office. All Marsh colleagues are expected to be in their local office or working onsite with clients at least three days per week. Office-based teams will identify at least one “anchor day” per week on which their full team will be together in person.