Role Responsibilities:

This position is a part of the Vulnerability Management service acting as the primary support to the lead for the Vulnerability Management team and own identifying, quantifying, and managing cyber vulnerabilities across Organization, in conjunction with other parts of the supportive teamsThe role will be responsible for assessing the security vulnerabilities & threats identified by the infrastructure scan. This person should work with appropriate teams across the businesses and associated 3rd parties to ensure appropriate remediation plans are defined and implementedHands-on experience working with Vulnerability assessment tools like Qualys, Nexpose, Nessus & vulnerability response (ServiceNow), SplunkPerform information system security vulnerability scanning to discover and analyze vulnerabilities and characterize risks to networks, operating systems, applications, databases, and other information system componentsPerform compliance scanning to analyze configurations and facilitate implementation of configurations and hardening settings for networks, operating systems, applications, databases, and other information system componentsMaintaining appropriate documentation that defines the Threat & Vulnerability Management Program, Policy and ProceduresParticipated in the calls to resolve information security incidents, including internal events and targeted threatsResearch, evaluate, and assess emerging cyber security threats, incidents, and vulnerabilitiesWork with the stakeholders to develop and maintain a vulnerability intelligence process that monitors for emerging systems vulnerabilitiesPrioritize the remediation of vulnerabilities based on their characteristics, such as threat intelligence, business criticality, and exploit maturityDefine minimum standards in relation to threat management and monitoring compliance across the businessesTake responsibility for scheduling, detecting, and analyzing vulnerabilities and vulnerability-related activity affecting the organization domainHelp create prioritized overviews of cyber vulnerabilities by putting them in the context of IT services and business applications, leading to remediation actions by the respective partiesConduct deep-dive analysis on attacks and share actionable data with partner teamsEnsure the accurate and timely release of vulnerability metricsReport on areas of non-compliance against Policy and/or Group Standards

 

Qualifications:

 

6+ years Security-Threat and Vulnerability-Vulnerability Remediation to include Researching, evaluating, scanning, reporting out on cyber security threats, incidents, and vulnerabilities (automated asset discovery, vulnerability management, threat prioritization, and remediation)Must have Hands-on experience working with Vulnerability assessment tool, Qualys VMDR. Must have client-facing experience

 

Highly Preferred Skills:

Prisma Cloud experience is an advantage to haveThese other Vulnerability tools is highly ideal: Nexpose, Nessus,  vulnerability response (ServiceNow), and/or SplunkStrategic thinker with attention to technical detailStrong communication and leadership skillsCollaborative mindset with a focus on enablement and mentorship