Senior Vulnerability Management Analyst - 100% REMOTE
FinTech giant seeking a seasoned Vulnerability Management Analyst for their enterprise vulnerability scanning team.
Summary of This Role:
Ensures that IS security architecture/designs, plans, controls, processes, standards, policies and procedures are aligned with IS standards and overall IS security . Identifies security risks and exposures, determines the causes of security violations and suggests procedures to halt future incidents. Investigates and resolves security incidents and recommends enhancements to improve security. Develops techniques and procedures for conducting IS security risk assessments and compliance audits, the evaluation and testing of hardware, firmware and software for possible impact on system security, and the investigation and resolution of security incidents.
What Part Will You Play?
Monitors complex systems and response to known and emerging threats against the network via intrusion detection software
? Guides on detailed, comprehensive investigation of security issues, i.e. to review security log data, interpret data in support of security event management process from various data feeds and triage on a wide variety of security events. ? Manages incident handling processes which include implementation of containment, protection and remediation activities.
? Responsible for the design and configuration of security systems, including proxy, remote access, mail gateway, intrusion prevention, wireless networking, data leak prevention, security information and event management and web application firewalls.
? Assesses and disseminates threats related to the enterprise in regard to current vulnerability by managing and developing an emerging threat model. Assesses risks based on changes to implementation of ISO/BSO; enhances knowledge of PCI Logical Security guidelines and models, HIPPA, PII and Card personalization.
? Develops long term strategies for conducting system penetration, vulnerability and web application testing, risk assessments, policy creation.
Experience needed:
Ideal candidate will have 6+ years relevant experience working with security operations, intrusion detection systems, Security Incident Event Management systems, and anti-virus collection logs. Experience with tools like Tenable, Qualys or Rapid7 and exposure to automation and cloud technology is a must. Must have experience troubleshooting scans to understand why they are failing or, conversely, when they are healthy and why. Must have scripting experience with heavy preference to Python. PCI and regulatory compliance knowledge is nice to have but not required. Certifications are a plus: CISSP, CISM, CISA, GSEC, Network+ and Security+.
Fantastic benefits including full suite of medical benefits, matching 401(k), robust PTO, 100% remote work and much, much more! Please send your detailed security resume along with your LinkedIn profile.