Endpoint Vulnerability Analyst

Endpoint Vulnerability Analyst

About Our Company

Ameriprise India LLP has been providing client based financial solutions to help clients plan and achieve their financial objectives for 20 years. We are part of Ameriprise Financial Inc., a US financial planning company headquartered in Minneapolis with a global presence and diversified financial services leader with more than $1.5 trillion in assets under management, administration and advisement as of year-end 2024. The firm’s focus areas include Asset Management and Advice, Retirement Planning and Insurance Protection.

Be part of an inclusive, collaborative culture that rewards you for your contributions, and work with other talented individuals who share your passion for doing great work. You’ll also have plenty of opportunities to make your mark at the office and a difference in your community. So, if you're talented, driven and want to work for a strong, ethical company that cares, take the next step and create a career at Ameriprise India LLP.

Job Description

The Endpoint Vulnerability Analyst supports endpoint vulnerability remediation efforts across enterprise endpoint environments. This role executes the vulnerability remediation lifecycle for assigned work—triage, risk-based prioritization, root-cause analysis, solution validation, deployment coordination, and reporting—partnering with security, operations, engineering, and application teams. The ideal candidate demonstrates endpoint technical depth, works independently on complex issues, contributes to automation and process improvements, and supports governance activities (SLAs, exception handling, and risk reporting) that improve the firm’s overall risk posture.

Key Responsibilities:

• Monitor and analyze endpoint vulnerability findings using Tenable/Nessus
• Assess findings to determine business impact, root cause, and remediation requirements
• Apply risk-based prioritization aligned to vulnerability severity, exploitability, asset criticality, and remediation SLAs
• Coordinate endpoint remediation activities, including:
  • Windows and macOS updates and configuration changes
  • Patch management activities (OS and third-party applications)
  • Application and browser updates and configuration changes
  • Driver, firmware, and UEFI/BIOS updates
  • Removal, upgrade, or retirement of outdated applications
• Develop, test, and troubleshoot PowerShell scripts to support remediation and automation
• Partner with testing teams to validate remediation solutions prior to deployment
• Create and manage ServiceNow incidents/requests and change records; support the change management process
• Coordinate remediation execution with cross-functional teams (testing, deployment, operations, policy, and application owners)
• Provide endpoint troubleshooting support related to vulnerabilities and remediation deployments
• Facilitate meetings with internal teams (and business partners, as needed) to drive timely vulnerability resolution
• Maintain remediation tracking data (task lists, status, owners, and timelines)
• Prepare regular status reporting on remediation progress, exceptions, and outstanding risk
• Support remediation exceptions and risk acceptance/waiver workflows; ensure documentation and approvals meet governance requirements
• Produce and communicate vulnerability remediation metrics (e.g., aging, SLA attainment, recurrence) and provide insights to support decision-making
• Prioritize and manage multiple concurrent remediation efforts in a deadline-driven environment
• Follow established security, operational, and documentation standards; document work performed and outcomes
• Build strong working relationships with partner teams to ensure consistent remediation outcomes
• Identify recurring remediation gaps and contribute to process improvements (standard operating procedures, playbooks, automation) to reduce repeat vulnerabilities.

Required Qualifications: 

• Bachelor’s degree or equivalent experience
• 1+ years of experience in endpoint engineering/operations, vulnerability management, patch management, or a closely related discipline
• Experience supporting Windows and macOS endpoints in an enterprise environment
• Working knowledge of Microsoft Intune (device management and policy)
• Experience with vulnerability scanning and reporting tools (e.g., Tenable/Nessus)
• Experience with endpoint security, patching, or vulnerability remediation processes
• PowerShell scripting skills (writing, testing, troubleshooting, or modifying scripts)
• Proficiency with Microsoft 365 tools (Excel, PowerPoint, Word) for tracking and communication
• Experience using ServiceNow for ticketing and change management
• Experience with remote support and troubleshooting tools.

Additional Required Qualifications:

• Demonstrated ability to influence cross-functional partners and drive work to completion without direct authority
• Demonstrated organization and time-management skills
• Ability to manage multiple priorities and deliver results with minimal supervision
• Strong written and verbal communication skills, including status reporting
• Ability to partner with technical and non-technical stakeholders to drive outcomes
• Growth mindset with a willingness to learn new tools, technologies, and security practices.

Preferred Qualifications:

• Relevant certifications (e.g., Security+, CISSP, GIAC) and/or ITIL foundation
• Experience with components of a vulnerability management program (SLA tracking, exception handling, risk reporting)
• Exposure to Microsoft Azure and/or cloud security concepts
• Familiarity with enterprise endpoint deployment and software distribution processes
• Experience producing operational/security metrics and dashboards (e.g., vulnerability aging, SLA attainment).

Full time(2:00p-10:30p)AWMPO AWMP&S President's OfficeTechnology

Ameriprise India LLP is an equal opportunity employer. We consider all qualified applicants without regard to race, color, religion, sex, genetic information, age, sexual orientation, gender identity, disability, military status, veteran status, marital status, pregnancy, family status or any other basis prohibited by law.

We are committed to fostering an inclusive and accessible recruitment process for individuals with disabilities. If you require a reasonable accommodation to participate in the application or interview process, speak to your recruiter to discuss how we can support you.

Experience Level

Mid Level