IT Security Specialist - Vulnerability Analyst

Job Title: It Security Specialist - Vulnerability Analyst Location: Remote Job Duration:-6 + Months General Summary:The Vulnerability Management Analyst is a key member of our Threat and Exposure Management team. The team is responsible for Threat and Exposure Management across the organization, and helps with identification, prioritization, remediation, and validation of security exposures. The Vulnerability Management Analyst will be responsible for scoping, scheduling, scanning, and working with the teams to help remediate any vulnerabilities and misconfigurations identified. The Analyst will help mature our Threat and Exposure management program and collaborate with teammates, IT professionals, Infrastructure and Application representatives across the enterprise to identify new threats, discover vulnerabilities and use that information to reduce risk and improve our security posture. Primary Responsibilities:• Manage the life cycle of vulnerabilities from discovery, triage, prioritizing, advising, remediation, and validation.

• Improve and automate the existing vulnerability management lifecycle.
• Work with the business teams to effectively communicate the risks of identified vulnerabilities and make recommendations regarding the selection of cost-effective security controls to mitigate identified risks.
• Maintain and administer vulnerability management platforms.
• Perform reoccurring and on demand scanning activities of both corporate and cloud environments utilizing enterprise platform.
• Provide support and resolution for scanning and vulnerability remediation reporting issues.
• Send out weekly and monthly vulnerability reports to the various teams. Job Complexity• Ability to assess newly identified vulnerabilities, determine exposure, investigate solutions, and recommend controls to minimize risks that could arise.
• Ability to create effective reports and presentations tailored to different audiences to ensure transparency and understanding of the program.
• Ability to troubleshoot issues with credentialed network scans and vulnerability assessment issues with system administrators.
• Ability to identify systemic security issues based on the analysis of vulnerability and configuration data.
• Ability to effectively communicate risk including corrective action plans/recommendations to non-technical audiences.
• Ability to build operational processes using industry best-practice that are tailored to client's organization, system, and processes. Required Skills:• Knowledge of cyber threats and vulnerabilities.
• Experience in automation (Python, PowerShell, Power Automate, API's).
• Experience with the following platforms - Vulnerability Management (VM), Web Application Scan (WAS), External Attack Surface Management (EASM), Cloud Security Posture Management (CSPM), SaaS Security Posture.
• Skill in conducting vulnerability scans and recognizing vulnerabilities/misconfigurations in security systems and web applications. Skill in conducting application vulnerability assessments.
• Ability to sift through large data to prioritize impactful vulnerabilities and reduce noise often associated with vulnerability tools.
• Stays up to date with current vulnerabilities and vulnerabilities related news in various industries.
• Experience working with Windows, Mac, Linux and/or other Unix-like variants.
• Demonstrated strong knowledge of networks, desktops, servers, cloud and software as a service technology.
• Knowledge of cloud platforms, dynamic cloud environments, and cloud security. Additional Desired Skills:• Experience with Unified Vulnerability Management Platforms
• Ability to automate and script tasks using your preferred language (e.g., Python,)
• Ability to write scripts against common web APIs (REST, SOAP). Apply tot his job

Apply tot his job Apply To this Job