1-3 years of experience
Concerned about your lack of experience? Learn More...
Employment Type:
Full time
Job Category:
Information Services
Security Vulnerability Analyst
(This job is no longer available)
Grad Date

Not sure what types of jobs you are interested in?

Explore Jobs
Based on Your Education

Follow This Company

Job Description

Vulnerability Management Analyst

Looking for a candidate who has some experience within a company doing monitoring, collection, reporting vulnerabilities in Agile within Cloud Solutions. Threat Intelligence Network Security Incidence Response, Security, Risk Management vulnerability scanning tools. Qualys - Preferred very large enterprise environment PCI, HIPAA, ISO, NIST, IT Controls.


Perform as a vulnerability management SME in one or more of the following areas: Microsoft platform (Server, Workstation, applications), Open Systems platforms (Linux, UNIX, VM Ware ESX), Java, Adobe, Web Application, Java web app virtualization platforms (eg WebSphere), Networking, Databases (Oracle, SQL Server, DB2, IMS), and others.
Understand and develop enterprise policy and technical standards with specific regard to vulnerability management and secure configuration.
Be able to successfully partner with other security and IT professionals to assess potential impact from vulnerabilities specific to Company's environment, and determine and implement mitigating controls.
Identify and recommend appropriate measures to manage and remediate vulnerabilities and reduce potential impacts on information resources to a level acceptable to the senior management of the company.
Build strong partnerships with technical teams to promote best practices for managing vulnerabilities in an agile manner and within cloud solutions.


Bachelors and/or Masters Degree
3-5+ years experience in either vulnerability management
Familiar with industry standard security best practices and vulnerability management processes including compliance reporting
Advanced experience with vulnerability scanning tools (Qualys preferred) and other vulnerability management tools.
Demonstrate knowledge of (Windows, Unix, Linux), end-user application, and network security
Demonstrate knowledge of networking concepts and devices (Firewalls, Routers, Switches, Load Balancers, etc)
Excellent analytical and problem solving skills
Demonstrated ability to participate in cross functional teams, including offsite, remote and offshore resources
Experience working in very large enterprise environment with diverse teams.
Effective written, verbal communication skills. Ability to tailor communication style to audience at hand
Ability to effectively communicate with technical and non-technical resources
Strong organizational skills
Self-directed, works with minimal guidance, and recognizes when guidance needed
Demonstrated ability to stay abreast securing evolving technology such as cloud and mobile computing.
Knowledge of PCI, HIPAA, ISO, NIST, and IT Controls
CISSP, GCIH, GPEN, or other industry certification or expected completion of certification within 1 year of hire.


Applicants must be eligible to work in the specified location