Vacancy expired!
- Conduct vulnerability scans, analyze reports, and validate potential findings
- Coordinate PCI-DSS vulnerability scans and remediation efforts
- Track and provide metrics and insights on vulnerabilities and remediation
- Patch Windows systems with in on-prem and cloud environments
- Implement and utilize automation to improve processes
- Create risk narratives that explain threat exposure to the enterprise
- Gather vulnerability and threat information from various internal and external sources
- Generate and manage asset inventory reports
- Develop and maintain vulnerability management processes and standards
- Support, maintain and integrate the vulnerability management solutions with various systems and applications
- Conduct market analysis and proof-of-concepts on various vulnerability management tools
- Provide technical assistance to owners of the impacted system s and application s to remediate and mitigat e vulnerabilities
- Other duties as assigned
- 3 + years of hands-on Information Security experience within a large enterprise .
- Comprehensive understanding of Vulnerability Management capabilities and functions .
- Extensive experience with vulnerability scanning technologies, e.g. Nessus, Rapid7, Qualys .
- Expert knowledge of Windows & Linux operating systems.
- Expert knowledge in validating and triaging vulnerabilities .
- Assertive, proactive attitude to assist with and solve challenging issues .
- Stays current with new and existing vulnerabilities , threat intelligence and related news.
- Ability to automate and script tasks using Python or Powershell .
- Experience in a regulated environment, e.g. PCI-DSS, Sarbanes Oxley .
- Ability to participate in cross functional teams, including global remote resources .
- Bachelor's degree in Computer Science with an Information Security focus.
- Information Security industry certification, e.g. CI SSP, SANS/GIAC, Security+, CEH.
Vacancy expired!