Cyber Security Analyst

About WeRize

Founded in 2019 by Vishal Chopra and Himanshu Gupta, WeRize is building India’s largest full stack fintech platform for 500 million underserved middle-class customers who live in 5000+ small towns of India. WeRize (Wortgage technologies pvt ltd) also owns RBI registered NBFC subsidiary (Wortgage Finance pvt ltd). This customer segment is not served by private sector banks, Insurers and Mutual Fund companies due to their low ticket-size and lifetime value and is dependent on PSU/Govt banks, PSU/Government banks rarely provide financial products beyond basic savings accounts and these customers lack access to unsecured loans, MSME loans, credit cards, affordable housing loans, loan against property, health and life insurance and investment products. WeRize manufactures innovative unsecured consumer credit, mortgages, loan against property, MSME loans, savings and insurance products designed for this customer base keeping in mind their needs, requirements and purchasing power, with a view to add a layer of financial security to their lives and enable access to credit.

While customers in these geographies use smartphones, they need proper guidance and support when purchasing the right financial products for themselves. So, a pure digital model doesn’t work for this segment. WeRize has innovated on this front through its ‘Finance ki online dukaan (Social Shopify of Finance)’, a first of its kind social distribution tech platform in the financial services space that educates and enables local financially literate freelancers across these small towns to source business through online and offline channels, recommend the right financial product(s) to customers as well as provide after sales support. These freelancers, who are located in more than 5000+ towns and cities, earn as much as INR 30,000 a month from WeRize in commissions.

Our social distribution platform supported by financially literate freelancers means exceptionally low cost of customer acquisition (CAC) and operations costs compared to both fully digital and on the-ground financial services providers. Digital conversions among this target group are way lower when compared to upper income customers in metros and hence pure digital CAC doesn’t workfor this segment. While companies like LIC and Fino Bank also rely on freelancer distribution, they deploy local on-field teams/branches to manage freelancers in every city. That results in very high CAC and operations costs for such companies. WeRize on the other hand, has been able to acquire, train and manage thousands of freelancers in 5000+ cities only through its tech platform and without any feet-on-street team of its own. This results in highly profitable business model for Werize.

To know more about the company, please visit: https://www.werize.com/

About the Role:

We are looking for a Cybersecurity Analyst to join our Information Security team. In this role, you will be responsible for identifying and managing security vulnerabilities across our infrastructure. You will work with internal teams to ensure that patches and updates are deployed on time, mitigating security risks.

Responsibilities:

• Identify and assess security vulnerabilities across servers, endpoints, and cloud assets.
• Perform regular scans using tools such as Tenable, Qualys, or Burp Suite.
• Analyze vulnerabilities, prioritize them based on risk (CVSS/CVE), and eliminate false positives.
• Coordinate with IT and DevOps teams to ensure timely patch deployment and remediation.
• Manage patching tools (e.g., SCCM, WSUS, or ManageEngine) for OS and third-party updates.
• Maintain asset inventories and patch compliance metrics.
• Generate dashboards and reports for leadership and audit purposes.
• Stay updated on zero-day threats, CVEs, and security advisories.
• Ensure alignment with security standards such as ISO 27001, PCI DSS, and NIST.

What We’re Looking For:

• 2–4 years of experience in cybersecurity, vulnerability management, or related fields.
• Strong knowledge of vulnerability assessment tools (e.g., Tenable, Qualys, Burp Suite).
• Experience with patching tools (e.g., SCCM, WSUS, ManageEngine).
• Familiarity with security frameworks such as ISO 27001, PCI DSS, and NIST.
• Good communication and collaboration skills.
• Ability to prioritize tasks and manage vulnerabilities based on risk assessment.
• Detail-oriented and proactive in ensuring security compliance.